Open Source - Page 12 of 17

Company data protection: Berners-Lee and Inrupt bring Enterprise Solid Server

The Inrupt team around the web inventor Tim Berners-Lee has published an Enterprise Solid Server. This ESS is the existing Solid platform, but it is tailored to corporate use. The aim of the platform is to give users back control of their data and for this purpose chooses a technical and not a regulatory approach PODs: Each Personal Online Data Store stores the user information and can be used to grant read and write rights for the desired services and applications. Data does not flow into separate silos in which the user would lose track of them.

Functions especially for companies At the start of the project in the year 2018, server software was already available, but the ESS adds further security functions such as OIDC / OAuth authentication and E2E TLS encryption added. It also offers monitoring and data backup tools and offers 24 / 7 support. Interested companies can find more information on inrupt.com.

The ESS was created together with the first professional users, including the BBC and Bank NatWest, the National Health System of Great Britain (NHS) and the Government of Flanders. While Inrupt announced these pilot projects in the second half of the year, the team has been working on the corporate use of their platform for two years.

Although companies provide details on the ESS If you have to make an abrupt request, you can try out the server software and the PODs yourself: the former is available as open source software on GitHub, and a personal online data store can also be provided on your own system or obtained free of charge from a provider. (fo)

Bitdefender is struggling with serious security problems

A computer science student immediately discovered 10 errors in the memory management of Bitdefender’s antivirus software. Most of them should be easy to use to inject and execute your own code. It then runs with the rights of the anti-virus software on the Windows computer concerned – i.e. with SYSTEM rights and without sandbox. In plain language: If you take advantage of these loopholes, you can get a system completely under your control with little effort.

Computer science student David L. has Bitdefender’s code analyzed for unpacking UPX-compressed files and found critical errors in almost every step. All of the bugs are not really hard to find gaps, but rather bread and butter gaps for security researchers, as can be easily found with fuzzing, for example. Almost half caused the lack of the important length check in memory operations. Tavis Ormandy, who himself has already uncovered several such gaps in AV software, promptly commented that it was “irresponsible to deliver code in this way” The finds once again confirm the fact that heise Security has already 2007 in antivirus software as a gateway that actually whenever a security researcher “knocks on anti-virus software”, critical security gaps tumble out below. That illustrated researcher 2014 again and it doesn’t seem to have fundamentally changed. Antivirus software is a potential security problem. This is all the more true the further one moves away from the mainstream – i.e. Windows Defender AV. At least Ormandy and others have already shaken it up violently and should not have such easy to find and trivial exploitable gaps.

The basic problem is that AV software has to analyze and unpack countless file formats. In many cases, the code of simple tools, such as an open source unpacker, is simply used; David L. was able to trace many of the loopholes he discovered back to the original UPX tools. But they were not written for the highest security requirements. Who, as an administrator on a productive system, will unpack a Trojan on the command line?

But that is exactly what antivirus software does: not on the command line, but automatically in the background, it unpacks every suspicious data record that passes her. With system rights! And in the case of Bitdefender, without additional shielding, such as a sandbox. An attacker only has to push his exploit code roughly in the direction of his victim – the rest happens almost automatically.

Safe after several attempts No glory either: Bitdefender often required several attempts to properly close the reported security holes. In one case, it didn’t work until the fourth patch. After all, these holes in Bitdefender have all been fixed since the beginning of November. It’ll start all over again when someone performs the next analysis function for an obscure file format.

(ju)

Honor 10X Lite: New mid-range cell phone for 230 euros

Huawei sells a new Honor cell phone in Germany: The Honor 10 X Lite is a mid-range cell phone with a Price of 230 euros. It is equipped with a quad camera on the back and has a 6, 67 inch screen with a resolution of 1080 x 2400 pixels. In addition to the display, the battery with its capacity of 5000 mAh is also quite large. The new Honor smartphone is powered by a Kirin 710 A with eight cores. Huawei also installs 4 GB of RAM.

The internal flash memory of the Honor 10 X Lite measures 128 GByte and can be expanded using a microSD card. The main camera on the back takes photos with therefore both rem rem rem organized here, there is an ultra-wide angle camera with 8 megapixels and a macro camera and a depth sensor with two megapixels each . The Honor 10 X Lite comes onto the market without a licensed Android due to the US sanctions against Huawei. Instead, the Honor OS is based on the open source version of Android – Google services such as the Play Store are missing on it.

Honor is about to be sold The future of Honor is currently open: According to media reports, the Huawei brand is about to be sold. After the sale of its smartphone subsidiary, Huawei could concentrate on its own upper-class smartphones, reports the Reuters news agency.

Huawei is negotiating with a consortium led by the distributor Digital China and the government of the Shenzhen Special Economic Zone a possible Honor sale. The tech company is hoping for a sum of 100 billion yuan (12, 8 billion euros), reports Reuters.

The US government has cut off important resources for the Chinese manufacturer, which, among other things, affects the production of smartphones. Even the production of its own Kirin chips is made more difficult because the contract manufacturer TSMC is no longer allowed to produce for Huawei.

(dahe)

4x Xe-LP migrate to the server for game streaming

As expected, Intel has to make an announcement in the server area shortly before the end of the year. However, this is not the new Xeon generation based on Ice Lake, but an Intel server GPU. This has also been announced in the recent past, because like the integrated graphics unit of the Tiger Lake processors and the dedicated Iris-Xe-Max-GPU, it is based on the Xe-LP architecture.

With the initially meaningless server GPU, Intel is targeting the market for video and game streaming on the Internet. High growth rates are expected in this area in the coming years and in addition to Google Stadia, NVIDIA, Sony and Microsoft have also started corresponding services.

The server GPU now presented goes by the name of H3C XG 310. It is actually not a GPU, instead there are three Xe-LP GPUs on the PCI Express card. In addition to the hardware, Intel offers the associated software ecosystem, which consists of the necessary drivers, APIs and developer tools. Intel relies on a mixture of open source and licensed software.

For rendering, the focus is initially on services that offer Android games in the cloud. The games are rendered on the execution units of the GPU via Android in Container (AIC). An interface called Intel Cloud Rendering (ICR) receives the inputs of the Game Service Streamer – the rendered frames of the AIC are brought together and an audio and video stream is created from this, which is then delivered via the Game Service Stream.

On the video stream side, the GPUs or the server GPU support AVC, HEVC, MPEG2, VP9 (encode and decode) and AV1 (decode) as expansion cards. Intel can also offer a corresponding FFMPEG package with corresponding hardware acceleration for Xeon processors and the server GPU.

While the Iris-Xe-Max-GPU with 4 GB LPDDR4 on a 128 Bit wide memory interface, the Xe-GPU offers the server GPU an 8 GB LPDDR4 memory. Four of these GPUs are located on the XG 310 from H3C, which is a 3/4 Length – Full Height PCI-Express card that supports PCIe 3.0 and 16 Lanes is connected. The card or GPU is cooled passively and via the air flow from the server. The additional power supply is provided via an 8-pin connector. Four of these cards can be used per server / Xeon processor.

In a demo, Intel showed an Android RPG or the streaming of the same 60 Instances each with 30 FPS. Initially, only one XG 310 with four GPUs is used. With two XG 310 cards 120 instances / streams can be executed. Depending on the game and server configuration, 100 to 160 users can work on one server with a Xeon processor and two servers at the same time -GPUs play. This is of course particularly interesting for the operators of cloud streaming services.

One of the first customers for Intel’s server GPU is Tencent in China.

Another outlook on the Xe roadmap

Intel also gave another outlook on the Xe roadmap. The Xe-LP architecture is already used in the integrated and dedicated GPUs for notebooks. The server GPU is now the third area in which it is used.

In the coming year, the next generation of dedicated graphics solutions is expected with the Xe-HPG architecture, aimed at gamers and desktop systems. Intel has already announced that the first samples of this GPU will work in the laboratory. Xe-HP is the data center variant that is already delivered to partners in the form of samples. We are still working on Ponte Vecchio based on the Xe-HPC architecture, but we have already received the first revision of all chip sets for Ponte Vecchio from production.

heise + | Build Maker Faire mascots as stamps with FreeCAD

This time we build a stamp with the open source software FreeCAD and manufacture it in the 3D printer with the appropriate elastic material.

FreeCAD is free, open source software for creating three-dimensional models. In the make article “Ring free for FreeCAD”, we have already shown how to use FreeCAD to design a finger ring with embossed and attached lettering and have it manufactured by the service provider using metal 3D printing. The FreeCAD drawing tools were only briefly discussed, which is why this time a stamp is constructed with the help of an image template and also 3D printed. The stamp plate is made of flexible, rubber-like material, while the handle is made of solid plastic.

You can download FreeCAD (Download) for the Microsoft Windows, macOS and Linux operating systems. After you have installed the program, start a new document via the Dashboard . First save it under File / Save under the name “Makey”, because in this example the contours of the Maker-Faire mascot, the robot Makey.

On the left side of the program there is a tree view in which the document structure is shown. As soon as you create a new object, it is there again. If you click on it, the properties window opens below the tree view, in which the parameters of the object can be adjusted.

Access to all contents of heise + exclusive tests , Advice & background: independent, critically sound c’t, iX, Technology Review, Mac & i, Make, c’t read photography directly in the browser register once – read on all devices – can be canceled monthly first month free, thereafter monthly 9, 95 € Weekly newsletter with personal reading recommendations from the editor-in-chief Start FREE month Start your FREE month now heise + already subscribed?

Containerization: Cilium 1.9 introduces bouncers and new load balancers

Version 1.9 of the open source tool Cilium for providing secure network connections between containerized applications has been released. The release works with Google’s Maglev Load Balancer and introduces Deny Network Policies to set guidelines to completely block certain connections. In addition, Cilium can now be used on any VM or bare metal node.

Balancing act to the correct backend Version 1.8, released in June, already brought with it a fundamental extension for load balancing by relying on the eXpress Data Path (XDP) anchored in the Linux kernel to relieve the CPU. The current release is supposed to improve the communication to the backend and relies on the Maglev Load Balancer developed by Google.

The previous load balancing approach via Cilium or Although kube-proxy ensures fail-safe communication in the cluster, it is not guaranteed to have a consistent backend. The load balancer chooses a random path through the nodes and apparently makes sure that the traffic remains stable. If a node fails, the load balancer again chooses a new path at random. However, the load balancing node has no information about the originally selected backend and potentially selects a new one, which can mean that the communication between the client and the new backend has to start over.

Maglev tries if the load fails Balancing node to restore the connection to the original backend.

(Image: Cilium)

Maglev uses a hashing algorithm for a lookup table so that each load balancing node has a has a consistent view of the backends. In this way, if a node fails, a replacement can establish the connection to the original backend. The price for the more stable communication and improved resilience is a higher memory requirement for the lookup tables. Therefore, in addition to the new maglev Datapath for the eBPF Load Balancer (extended Berkeley Packet Filter) still the random – path

You can’t get in here! Another innovation is the Deny-based Network Policy, which overrides all other network policies. This allows administrators to completely block individual sources or targets and thus react, for example, to attacks from certain entities.

Cilium can use the Refuse communication completely.

(Image: Cilium)

It is also worth mentioning that version 1.9 can now integrate workloads outside of a Kubernetes cluster. In this way, Cilium manages any number of nodes on physical servers or in the form of virtual machines. The release also improves the interaction with OpenShift, and the documentation recently contains a special guide for installation on the Kubernetes distribution OpenShift OKD.

Cilium secures connections between containers The open source tool Cilium offers secure network connections between containerized applications. It is compatible with the Container Networking Interface (CNI) and offers numerous additional functions, among other things for the implementation of policies as well as for services and load balancing. In August, Google announced a Dataplane V2 for the Kubernetes Engine (GKE) that relies on eBPF and Cilium.

Other new features in version 1.9 such as the mutual TLS authentication for the Hubble observability platform can be found on the Cilium blog.

(rme)

HarmonyOS on selected Huawei smartphones in December

Huawei does not intend to passively look at the effects of tensions over the US-China trade war that fell to the company. The inability to use Google services on the manufacturer’s devices is the result of entering the brand on the black list of the US Department of Commerce. Due to the decision, the company had to accelerate the development of its proprietary platform for devices from a wide range of categories. HarmonyOS, as the new system is called, will hit the first mobile devices as early as 18 December, i.e. at the end of the year. However, it will not be the final software for smartphones, but a development version. Nevertheless, the soft should hit 90 percent. Huawei smartphones, which will happen in the coming months.

The first Huawei smartphones will be able to install HarmonyOS in mid-December. Who will be able to use the platform?

Huawei Mate 40 Pro smartphone test. HMS instead of Google

HarmonyOS, previously known by other names, is not exactly a new project. Huawei was developing its vision even before tensions escalated between China and the US. After the intensification of trade disputes over the superpowers, the company simply intensified work on HarmonyOS in the world, preparing to partially abandon Android in the current release. The smartphone version will be available to developers on December 18. A few months later, consumer tests will start, and their success depends on how quickly end users will be able to update their devices.

Huawei: HarmonyOS 2.0 will go to smartphones in December this year

At this point it is worth noting that HarmonyOS should be compliant with 90 proc. Huawei and Honor devices. Of course, the Mate series 40, this year’s flagship of the manufacturer, will go first. Then users of Mate series devices can count on the update 30, Mate 20, P 30, P 40, Honor 20 and Honor 30. An interesting fact is that HarmonyOS is an open source project, just like AOSP (Android Open Source Project). This means that the system can also be used by other companies willing to cooperate freely.

Source: Gizchina, GSMArena

Hackers have tapped source code from SonarQube instances several times

The Cyber Division of the Federal Bureau of Investigation (FBI) has had some attacks on US government agencies as well as private ones since April 2020 American companies, among others, in the technology and financial sectors. The target of the attack were insecurely configured instances of the open source platform SonarQube, which is designed for automated static code analysis.

The hackers use a known vulnerability in the SonarQube Platform that allows operation with a standard configuration: Without modification it runs on port 9000 and offers administration access with username admin and password admin . Mind you, with software that the associated site advertises with the slogan “Your teammate for Code Quality and Security”, and that is designed to find bugs and vulnerabilities.

Static analysis including vulnerability search SonarQube carries out a static code analysis for a total of 27 programming languages. The platform examines the source code for possible errors such as null pointer assignments and security risks such as keys that are too short or the unchecked use of any user input.

SonarQube helps, among other things, to find inadequate safety precautions.

(Image: SonarQube)

Source code that gets into insecure SonarQube instances for testing can be downloaded from access there using the standard combination of name and password.

From April to today According to its own information, the FBI has detected source code leaks from insecurely configured SonarQube instances since April 2020. In August, unknown persons reportedly released internal data from two organizations via a public lifecycle repository tool. Previously, data from companies that had been tapped in the same way had already appeared in a privately hosted and publicly accessible repository in July.

The report recommends a few measures, the first of which should be self-evident: Administrators must use the default settings to change. In addition, the authority recommends that the SonarQube instances be placed behind a log-in process and to check whether unauthorized users had access to the platform. Those responsible should also exchange all credentials that were available in the affected instances. Finally, the FBI recommends placing SonarQube installations behind a firewall.

Since the FBI focuses on the United States, the findings mentioned in the report only relate to it. However, it can be assumed that European developers and administrators also operate unsecured SonarQube instances.

(rme )

Machine learning: ONNX 1.8 increases serialization when capturing sequence types

The ecosystem and exchange format Open Neural Network Exchange (ONNX) has been released in version 1.8. The release has revised the serialization of inputs and outputs of the sequence and card data types to enable operator unit testing.

With the serial test the size of elements in make_tensor should allow users to ensure that proportions and elements in a tensor are consistent. A highlight for Windows users should be that the current version of ONNX contains a new conda package.

Updated training module Further changes affect the output loops and the shape inference, which has received some corrections at the node and graph level. Recently, the module should also be able to be used in models over 2 GB. To take advantage of this change, users can modify the ONNX API. The ONNX team has revised the modules for training and shape inference. For the definition of the gradient operator, the training module has been given differentiable tags and a tool that supports developers in storing training information using Protobuf messages. The GraphCall is omitted, instead the ONNX team has updated the IR and graphics of the training module.

Open source exchange format for ML models Facebook and Microsoft originally initiated ONNX 2017 so that ML practitioners can switch between machine learning frameworks. The goal is a new standard that allows developers to use their models outside of the context in which they were created. Since 2019 the Linux Foundation has been taking care of the ONNX project and developing it further in order to establish a manufacturer-independent standard exchange format for machine learning models. The previous version ONNX 1.7 was released in May 2020 and marked the first step towards exchanging ML models during training.

Details for the current version can be found in the release notes on GitHub. Further information on the project and its operators can be found on the ONNX website.

(sih)

heise + | Programming with Python: Create a user interface via PyQt

We show you how to create a graphical login program with PyQt. You will learn the basics of the popular GUI toolkit for Python.

Programming with Python: Create user interface via PyQt PyQt against Pyside and Tkinter Hello World with PyQt Create login window Add widgets Make the button clickable Conclusion Buttons, checkboxes, dropdown menus – what normal users love can turn into a nightmare for the developer to be. After all, he has to overload his well-functioning code with lines for graphical elements. That can be another source of error. Nevertheless: Normally a decent graphical user interface (GUI) is required so that every user can operate the respective program efficiently.

We will show you how to use a simple login window the GUI toolkit PyQt. The window consists of a note, two labels for password and user name, two input fields and a button. The user should enter his data for heise online and after clicking the button receive a response as to whether the login worked. There should also be a small menu that the user can use to exit the program.

PyQt against Pyside and Tkinter PyQt integrates the open source toolkit Qt in Python and is developed by Riverbank Computing Limited. Qt has been developed since 1991 and stands as a binding for many different Languages available, e.g. for Ruby, Java or C #. For PyQt you will find extensive documentation on all elements on the internet.

Access to all contents of heise + exclusive tests, advice & background: independent, critically sound c’t, iX, Technology Review, Mac & i, Make, c’t read photography directly in the browser register once – read on all devices – can be canceled monthly first month free, then monthly 9, 95 € Weekly newsletter with personal reading recommendations from the editor-in-chief Start FREE month Start your FREE month now heise + already subscribed?

Sign in and read Register now and read the article immediately More information about heise + Programming with Python: Create user interface via PyQt PyQt against Pyside and Tkinter Hello World with PyQt Create login window Add widgets Make the button clickable Conclusion

The failure of click days: a cultural issue, not a technological one

This year’s click days they failed for the same reason. Which, contrary to what one might think, is not technological. It is cultural. A direct reflection of the country’s immobility, which seems refractory to any change

of Riccardo Robecchi published on 06 November 2020 , at 14: 36 in the Innovation channel

The digital revolution promised to change everything and revise many aspects of our lives, in in particular those linked to the relationship with the State and its institutions . These promises were however largely disregarded , with inefficiencies and complications that make doing business in Italy more difficult than necessary . A striking example of this failure is the use of the so-called “click days” for the payment of bonuses and compensation. A symbol of failure not due to improbable hacker attacks or infrastructure problems, but to a digital re-presentation of analog dynamics. Ultimately, a cultural problem .

Why was the bike bonus a failure? Cultural reasons

Unless a huge infrastructure is available, it can be expected that hundreds of thousands of users attempting to carry out operations lead to problems A concept that appears elementary even to non-experts, but which does not seem to have frightened the creators of the “click day” for the bicycle bonus, who have implemented a code system absolutely Byzantine with the illusion of being able to manage the amount of requests. Which, given the aforementioned system, was widely expected.

The problem, in this case, does not lie in the fact that the infrastructure did not hold up. It was not the real problem even for the “click day” in April, when the INPS servers did not withstand the connection requests from professionals. The real problem is that someone decided that a “click day” was a good idea .

As I wrote at the beginning, the promise of digital was to change the dynamics and relationships between citizens and institutions. This promise was not broken because digital is not able to fulfill it, but because the logic prior to the digital world has been applied . Google does not queue users when they do a search, nor does Amazon ask them to wait their turn to be able to make their purchases. So why should citizens have to be asked to queue up with their computer as if they were in a post office?

The system is so convoluted and irrational that it borders on the absurd. The complication at a technical level in implementing a similar system is considerable and far superior to the many alternatives present: just to name two, there is the return to the current account following the presentation of the tax return, or the application of discounts from part of the resellers who subsequently receive a refund. Ideas are wasted and are in any case better than the one actually implemented.

The reason why we insist on proposing these inadequate methods lies in the mentality : those who think about these implementations are firmly in the first half of the twentieth century and seems to have no intention of going further. The cultural approach is the same as fifty years ago and, given the complete revolution introduced by the digital in our society, one cannot but think of the Gattopardo by Tomasi di Lampedusa: everything must change so that nothing changes. And until politics decides to put a stop to these modalities by imposing more modern ones, we will continue to make virtual queues .

“Click days” are the fruit of an immobile culture and the proverbial tip of the iceberg of a bureaucratic system that harms everyone, starting with taxpayers. But for there to be a change on this front, one must first take place on another: we must each assume their responsibilities and that you pay the consequences of your actions, whether positive or negative. Only then will all the rest come.

Technological and cultural changes: an inseparable pair

Understandably, it does not take well the disservices of the PA

The various innovations that technology offers – open source tools, cloud, containers and so on – suddenly become less useful, less profitable, less able to realize their potential if there is no core culture ready to embrace change that new technologies require and make them their own. Because otherwise the risk is to use the hydrogen tractor, yes, but to have it pulled by oxen instead of the plow. The evolution of the means of production influences that of culture and vice versa, but if one of the two is blocked (in this case the cultural one) then the other will also block; the change of technological means cannot but proceed hand in hand with a change in the approach to them. This can be seen very well in the corporate world, where companies that manage to make this evolution their own thrive and those that remain firm encounter difficulties and, if they do not change, end up being overtaken by their competitors and close.

Using the cloud makes little sense if you use it exactly like a server from twenty years ago , just as using containers makes no sense if you do not take advantage of their intrinsic characteristics of flexibility and agility. To exploit these new means, a profound change of approach is required, which challenges many of the concepts already learned and used. But just as each of us is required to continue learning, hone their skills and move into new and unexplored fields, so must the public administration be required. Let’s be clear: the problem is not only in the public, as evidenced by several studies (it was discussed, for example, at the D-Avengers conference at the Bocconi University in Milan). In Italy we do not invest in training, which means that we do not invest in preparing for change and evolution . But the world, since it has existed, has never stood still and expects us to move with it. Otherwise you are left behind, with all the consequences of the case.

Linux for everyone: Emmabuntüs collective publishes EmmaDE3 1.03

Participation in digital life is a matter of course for many people. Those who have to turn over every cent several times, on the other hand, often have no opportunity to invest in computers, tablets and smartphones. Aid organizations such as the Emmaus Brotherhood in France help those affected by setting up and passing on donated computers with free software.

The Linux distribution EmmaDE of the Emmabuntüs collective emerged from this motivation and is now available in version 1. 03. Two factors are always the focus of development: EmmaDE should work well on old and very old hardware and be easy to use and modify for aid organizations.

New version focused on “Reuse for all” Central innovation in EmmaDE3 1. 03 is the implementation of a customizable “OEM installation mode” based on Calamares. Aid organizations that have been given a whole batch of identical computers will in future be able to create a single matching EmmaDE image and then install it automatically. In this way, according to the developers, it takes less than 64 seconds to supply a single old PC with a fresh operating system.

The implementation and introduction of the new installation mode is not a solo effort by the EmmaDE developers, but part of a larger reuse campaign that the Emmabuntüs collective launched at the beginning of September together with the Debian-Facile, Blabla Linux and Tugaleres.com launched. The release announcement for EmmaDE3 1. also links (albeit in French) videos of the implementation the new installation mode in Blabla Linux.

The new mode is technically implemented via the multi-image bootloader LiveUSB. This makes it possible to select one of several images stored on a USB stick, which the system then starts. Supplied scripts allow a variety of modifications to the standard images.

(Image: emmabuntus.org)

Solid Debian base refreshed The DE in EmmaDE stands for “Debian Edition” in contrast to earlier versions that were based on Ubuntu. EmmaDE3 1. 03 based on Debian GNU / Linux 10. 6. Its software is no longer brand new, but it is completely sufficient for everyday needs. Especially since a little model update was carried out as part of the update: Firefox ESR, Thunderbird and VeraCrypt were updated. In addition, there are various new drivers for peripheral devices, primarily printers.

As before, Xfce is used as the standard desktop environment, which is careful with the resources of its host system; alternatively, LXQt can also be selected. The Warpinator, which was taken over from Linux Mint and simplifies the exchange of files between different systems, has also been added.

Furthermore, the developers in EmmaDE3 1. 03 the support for zRAM has been significantly improved. On systems with little memory, zRAM ensures that the system only starts using the swap space later when the memory is full. This is made possible by a kernel function that first compresses the RAM contents before accessing the swap space.

EmmaDE3 1. 03: Download and installation Further details on the new version can be found in the release announcement for EmmaDE3 1. 03. On the official EmmaDE download page there is one 32 – and one 64 – Bit version of the new version ready.

Who in the course of the new OEM / Reuse for all mode USB sticks will find links to Clonezilla ISOs in various languages as well as a detailed description of the procedure on a separate information page.

Topic page “Linux and Open Source” at heise online (ovw)

Programming language: After 30 years, Haskell gets its own foundation

During the Haskell Exchange conference, Simon Peyton Jones announced the establishment of the Haskell Foundation. The foundation is primarily intended to promote the spread of the programming language. Peyton Jones is one of the designers of the functional language that 1990 saw the light of day.

The Haskell Foundation is a non-profit organization and is looking for nominations for its board to start. Until 11. January 2021 the foundation accepts suggestions by email. An interim board of directors, whose members come from haskell.org, Facebook, Microsoft Research, Epic Games and the universities of Utrecht and Pennsylvania, among others, evaluates the proposals to hand over the work to the permanent board and then to dissolve. Interested parties can also register for two mailing lists: HF-Announce distributes announcements, while HF-Discuss is open for any form of discussion about the programming language or foundation. The Foundation also wants to spread announcements via Twitter.

Functional, clean, unusual Haskell is a purely functional programming language that provides very clear concepts. It has a good reputation for being difficult to learn. At the same time, it is considered to be particularly secure, as the strict specifications prevent some programming errors. As a basis, Haskell has a very strict type system that relates to variables, functions and parameters.

(Image: Haskell Foundation)

Unrestricted immutability applies to all variables: As with constants in other programming languages, the values must not change. Haskell doesn’t know any mutable objects like Java or C ++ either. The development does not take place imperatively as a sequence of instructions, but via functions. The language owes its logo with the Greek letter lambda to the lambda calculus, a formal language for exploring functions that is the foundation of Haskell.

The strictly functional and immutable concept requires some rethinking for those who are used to languages such as Java, C ++, Kotlin, JavaScript or Python. However, it has the advantage that the functions basically have no side effects and thus, among other things, the order of execution can be arbitrary. However, software developers have to think abstractly to create the functions, and the design phase is longer than with languages like Python. The final code is much more structured and mostly more compact, which in turn improves readability and protects against errors.

Facebook sets among other things to fight spam on Haskell and in the summer published a code refactoring tool for the programming language as an open source project called Retrie.

Further details on the establishment of the Foundation can be found in the official announcement. If you want to take your first steps in Haskell, you will find an overview of tutorials and other starting aids in the official wiki of the programming language.

(rme)

Enterprise Search: Apache Lucene and Solr released in version 8.7

The Apache projects Lucene and Solr are now available in version 8.7.0. While the update of the Java library Lucene Core comes up with extended compression functions for stored fields, the Solr enterprise search server features both performance improvements for the ExportWriter and the first approaches for a new so-called circuit breaker infrastructure, the switches or breakers for a more efficient handling of indexing and search queries.

Better compression The Java library Lucene Core provides indexing and search functions for the open source search server Solr as the basis of the project of the same name. One of the notable innovations in version 8.7 is the improved compression for stored fields. If there are greater redundancies in text files across documents, the stored fields can now use dictionaries to improve the compression rate. That should be equally good in the two modes BEST_SPEED and BEST_COMPRESSION work.

Version 8.7 of the enterprise search server Solr contributes to improved performance when retrieving, sorting and writing documents in ExportWriter. Double buffering is used to parallelize the sort / retrieve and write operations that have been carried out sequentially with the handler / export . A buffered batch is written out, which is sorted and retrieved, while the other batch is prepared in a background thread. When both are finished, the buffers are swapped.

More efficient processing of requests A new circuit breaker In addition, the infrastructure should optimize the processing of indexing and search queries. A JVM memory-based switch, for example, monitors incoming searches in the future and rejects them with the error message SERVICE_TOO_BUSY as soon as a specified threshold is exceeded. In this way, more leeway can be created for ongoing indexing and search queries.

Further details can be found in the official announcements from Apache Lucene and Solr. A full list of new features and changes, such as some deprecated features that will probably disappear in Solr 9, can be found in the release notes for the library and search server.

(map)

Mattermost Cloud: Free teams competitor as SaaS application

The project of the same name describes its new offer as Mattermost Cloud, with which users can obtain the messaging platform as a SaaS application. The developer takes over the complete operation of the application, including the administration of the updates and infrastructure. Amazons provides the latter with AWS Virtual Private Cloud, which is supposed to safely isolate resources from each other.

Some areas of the technical equipment depend on the license: Exclusively With the Enterprise version, the customer receives a private instance including a dedicated infrastructure and a permanently assigned region for his data. These features are intended to guarantee data protection, but interested companies must inquire about prices. Details on this can be found on the overview page for the cloud.

In addition, there is a not quite as extensive professional license, which, in addition to the regular Mattermost functions, also includes fault management. It costs ten US dollars a month per user. The free access corresponds to the latter variant, but it is limited to up to ten users. Each user receives 20 GB of storage space for his account, regardless of the license.

Mattermost is concerned is an open source project competing with Microsoft Teams and Slack. It can also be operated completely in its own data center. In order to simplify the installation and configuration here, the developers announced a few days ago Omnibus with which Mattermost can be set up with one command.

(fo)