Feed aggregator

Devuan GNU+Linux is a Linux distribution forked from Debian in 2015. The project's primary goal is to provide a variant of Debian without the complexities and dependencies of systemd, an init system and services manager originally developed by Red Hat and later adopted by most other Linux distributions. Devuan's initial beta release was made available in April 2016, together with an upgrade path from Debian 7.0 "Wheezy" and a possibility to switch to Devuan from Debian 8.0 "Jessie". The distribution adopted Xfce as its default desktop.

Alien-OS is a German Linux distribution based on Debian's latest "Stable" release, with components borrowed from MX Linux. It uses the Regolith Desktop Environment which combines i3 and Sway window managers into a single tiling, keyboard-driven user interface. The distribution's main features include a choice of systemd or SysV init systems, the integrated MX-Tools configuration utility, the Liquorix Linux kernel for enhanced performance in gaming and multimedia applications, over 20 pre-installed themes, and support for OEM installations.

d77void GNU/Linux is a Void-based Linux distribution created to demonstrate the capabilities of Void's tools, such as void-mklive and void-packages. Originally initiated as a Void respin with the Fluxbox window manager, the project has evolved to offer a wide range of window manager, Wayland compositor and desktop environment options, including Awesome, bspwm, Cosmic, dwm, Fluxbox, herbstluftwm, Hyprland, i3wm, JWM, labwc, LeftWM, LXQt, Niri, Openbox, Qtile, River, Sway, Wayfire and Xfce. The distribution can be installed to a hard disc with the text-mode d77void-installer.

KDE Linux is a user-focused, general-purpose Linux distribution. It is built by KDE and it is meant to showcase the best implementation of everything KDE has to offer, using the most advanced technologies. The distribution's base packages come from Arch Linux, while everything else is either compiled by the kde-builder tool or included as Flatpak packages. KDE Linux does not come with any traditional package manager, but supports installing Flatpak, Snap or AppImage applications. As it has an immutable base, system updates involve replacing the operating system image with an entirely new one.

EN-OS is an Arch Linux-based distribution with a customised KDE Plasma as the preferred desktop and a large range of KDE-centric software, including the Calligra office suite and KDE Gear set of applications. Designed for the desktop, it also includes the Calamares system installer and a good selection of popular applications for work, multimedia and development.

AgarimOS is a desktop Linux distribution based on Void. It comes in several popular desktop flavours, including Cinnamon, GNOME, KDE Plasma, LXQt, MATE and Xfce, all with a limited set of applications in their default states. Like its parent, AgarimOS does not use the systemd service manager, relying instead on the runit init scheme. It employs the XBPS package management system, together with a graphical front-end called OctoXBPS. The distribution also includes various optimisations, custom themes and some interesting software selection, such as the WezTerm terminal emulator, the Neofetch system information utility, the hBlock ad blocker, and the aria2 download tool.

Arch Linux is an independently developed, x86_64-optimised Linux distribution targeted at competent Linux users. It uses 'pacman', its home-grown package manager, to provide updates to the latest software applications with full dependency tracking. Operating on a rolling release system, Arch can be installed from a CD image or via an FTP server. The default install provides a solid base that enables users to create a custom installation. In addition, the Arch Build System (ABS) provides a way to easily build new packages, modify the configuration of stock packages, and share these packages with other users via the Arch Linux user repository.

KDE neon is a Ubuntu-based Linux distribution and live DVD featuring the latest KDE Plasma desktop and other KDE community software. Besides the installable DVD image, the project provides a rapidly-evolving software repository with all the latest KDE software. Two editions of the product are available - a "User" edition, designed for those interested in checking out the latest KDE software as it gets released, and a "Developer's" edition, created as a platform for testing cutting-edge KDE applications.

Security updates have been issued by Debian (imagemagick and net-snmp), Fedora (delve, golang-github-google-wire, and golang-github-googlecloudplatform-cloudsql-proxy), and SUSE (podman, python3, and python36).

Manjaro Linux is a fast, user-friendly, desktop-oriented operating system based on Arch Linux. Key features include intuitive installation process, automatic hardware detection, stable rolling-release model, ability to install multiple kernels, special Bash scripts for managing graphics drivers and extensive desktop configurability. Manjaro Linux offers Xfce as the core desktop options, as well as KDE, GNOME and a minimalist Net edition for more advanced users. Community-supported desktop flavours are also available.

Side GNU/Linux is an independently-developed lightweight Linux distribution featuring the PiSi package manager. It uses the Simple Desktop Environment (SDE, a fork of LXDE) together with the Openbox window manager and the text-mode Lynx web browser. The distribution, designed for more experienced Linux users, offers a choice between a simple text-mode system installer and the graphical Calamares installation program.

Peropesis (personal operating system) is a small-scale, minimalist, command-line-based Linux operating system. It's an incomplete system, but it's constantly being improved. Also, it is a free operating system created from free software, mostly distributed under the GNU GPL or BSD licenses.

Dr.Parted Live is a bootable GNU/Linux distribution based on Debian's "Testing" branch. It is a live image featuring a lightweight Openbox window manager and useful applications for disc partitioning as well as data backup, restore and recovery.

Kiro is an Arch Linux-based distribution with the goal of being an intuitive and customisable ISO image builder. It provides a simple way to build a custom Arch-based installation medium with a choice of packages, settings and scripts. Kiro uses the Xfce desktops, includes the Calamares system installer, and has a modular structure.

Calam Arch Installer is an Arch-based Linux distribution created to facilitate the installation of an Arch Linux system to a hard disk. It is also a full-featured live Linux system with Xfce as the preferred desktop. The Calamares system installer offers a choice of several popular desktop environments and window managers, including Budgie, Cinnamon, Deepin, GNOME, i3, KDE Plasma, MATE, Openbox and Xfce. The distribution also offers support for both BIOS and UEFI boot, as well as hard disk encryption with LUKS.

Gentoo Linux is a versatile and fast, completely free Linux distribution geared towards developers and network professionals. Unlike other distros, Gentoo Linux has an advanced package management system called Portage. Portage is a true ports system in the tradition of BSD ports, but is Python-based and sports a number of advanced features including dependencies, fine-grained package management, "fake" (OpenBSD-style) installs, safe unmerging, system profiles, virtual packages, config file management, and more.

Version 4.19.0 of the shadow-utils project has been released. Notable changes in this release include disallowing some usernames that were previously accepted with the --badname option, and removing support for escaped newlines in configuration files. Possibly more interesting is the announcement that the project is deprecating a number of programs, hashing algorithms, and the ability to periodically expire passwords:

Scientific research shows that periodic password expiration leads to predictable password patterns, and that even in a theoretical scenario where that wouldn't happen the gains in security are mathematically negligible (paper link).

Modern security standards, such as NIST SP 800-63B-4 in the USA, prohibit periodic password expiration. [...]

To align with these, we're deprecating the ability to periodically expire passwords. The specifics and long-term roadmap are currently being discussed, and we invite feedback from users, particularly from those in regulated environments. See #1432.

The release announcement notes that the features will remain functional "for a significant period" to minimize disruption.

MidnightBSD is a FreeBSD-derived operating system. A critical goal of the project is to create an easy-to-use desktop environment with graphical ports management, and system configuration using GNUstep. The vast majority of the operating system will maintain a BSD license. MidnightBSD was forked from FreeBSD 6.1 beta.

Security updates have been issued by Debian (mediawiki), Fedora (duc, golang-github-projectdiscovery-mapcidr, and kustomize), Slackware (wget2), and SUSE (cheat, duc, flannel, go-sendxmpp, python311, python312, python313, and trivy).

Daniel Stenberg has written a blog post about the decision to ban the use strcpy() in curl:

The main challenge with strcpy is that when using it we do not specify the length of the target buffer nor of the source string. [...]

To make sure that the size checks cannot be separated from the copy itself we introduced a string copy replacement function the other day that takes the target buffer, target size, source buffer and source string length as arguments and only if the copy can be made and the null terminator also fits there, the operation is done.