Weekly Digest – Week 22, 2021
Articles and News
NOYB Aims to End “Cookie Banner Terror” and Issues More Than 500 GDPR Complaints
»By law, users must be given a clear yes/no option. As most banners do not comply with the requirements of the GDPR, noyb developed a software that recognizes various types of unlawful cookie banners and automatically generates complaints.«
https://noyb.eu/en/noyb-aims-end-cookie-banner-terror-and-issues-more-500-gdpr-complaints
#noyb #cookie-banner #gdpr
This Is Not a Drill: VMware Vuln With 9.8 Severity Rating Is Under Attack
A vCenter pre-auth remote code execution vulnerability with a severity rating of 9.8 out of 10 is under active exploitation.
#vmware #security #virtualization-security
Kinda a Big Announcement
Joel Spolsky’s announcement on Stack Overflow is joining Prosus.
https://www.joelonsoftware.com/2021/06/02/kinda-a-big-announcement/
#stack-overflow
Cores That Don’t Count
Paper by Google on mercurial processor cores that cause computational errors that were not detected during manufacturing tests.
https://sigops.org/s/conferences/hotos/2021/papers/hotos21-s01-hochschild.pdf
#cpu #hardware
UNIX Shell Programming: The Next 50 Years
This article analyzes the different aspects of shells and provides ideas for future improvements.
https://sigops.org/s/conferences/hotos/2021/papers/hotos21-s06-greenberg.pdf
#unix-shell
NVMe 2.0 Specification Released: Major Reorganization
Version 2.0 of the NVM Express specification has been released.
https://www.anandtech.com/show/16702/nvme-20-specification-released
#nvme #hardware #specification
EllaLink Completes Marine Installation and Turns to Infinera for Network Lighting
EllaLink is a new submarine cable linking the European and South America with a latency <60 ms round-trip delay time between Portugal and Brazil.
#submarine-cable #internet-infrastructure
Submarine Cable Map 2021
https://submarine-cable-map-2021.telegeography.com/
#submarine-cable #internet-infrastructure
Producing a Trustworthy x86-Based Linux Appliance
»Let’s say you’re building some form of appliance on top of general purpose x86 hardware. You want to be able to verify the software it’s running hasn’t been tampered with. What’s the best approach with existing technology?«
https://mjg59.dreamwidth.org/57199.html
#linux-appliance #boot-chain #secure-boot #uefi
Password Managers
Post on how the integration of password managers into other applications, especially web browsers, increases the attack surface significantly.
https://lock.cmpxchg8b.com/passmgrs.html
#password-manager #security
Building a Healthy On-Call Culture
Christine Patton, Back End Engineer at SoundCloud, shares best practices for on-call work in this blog post.
https://developers.soundcloud.com/blog/building-a-healthy-on-call-culture
#on-call #soundcloud
How Facebook Deals With PCIe Faults to Keep Our Data Centers Running Reliably
This article gives insight into the workflows and tools Facebook is using to detect and address PCIe faults.
#facebook #pcie #datacenter
Projects and Releases
openSUSE Leap 15.3
SUSE released openSUSE Leap 15.3. The first release that shares sources and binaries with SUSE Linux Enterprise (SLE) and comes with new features and stability improvements.
https://doc.opensuse.org/release-notes/x86_64/openSUSE/Leap/15.3/
#suse #type:release #opensuse-leap
Open Source Insights
Open Source Insights is an experimental service by Google to better understand the dependencies of open-source software packages. Currently, supported are Cargo (Rust), Go’s module system, Maven (Java), and npm (Node.js).
#google #supply-chain
NixOS 21.05
https://nixos.org/manual/nixos/stable/release-notes.html#sec-release-21.05
#type:release #nix-os #nix
CentOS Linux 8 (2105)
CentOS 8, based on the Red Hat Enterprise Linux 8.4 source code, was released.
https://blog.centos.org/2021/06/centos-linux-8-2105-released/
#centos #type:release
PolarDB for PostgreSQL
Alibaba’s PolarDB extends PostgreSQL to become a share-nothing distributed database.
https://github.com/alibaba/PolarDB-for-PostgreSQL
#postgresql #polardb #alibaba
gpg-tui
gpg-tui
is a GPG key management interface.
https://github.com/orhun/gpg-tui
#rust #gpg #tui
GNU poke
»GNU poke is an interactive, extensible editor for binary data.«
#binary-editor
cake
Drop-in replacement to run your make targets inside a container.
https://github.com/wurosh/cake
#make #build-system
gource
Animated version control visualization tool.
#git #visualization #version-control
:wq