Linux

For 'I love Free Software Day,' the author expresses gratitude to the maintainers of Free Software documentation, specifically highlighting the ArchWiki. Recognized as a premier resource for GNU/Linux users, the ArchWiki provides essential configuration tips and tools analysis, gaining praise even from figures like Edward Snowden for its reliability and role in promoting software freedom.

Todd C. Miller, who has maintained the foundational sudo utility for over 30 years, is actively seeking a financial sponsor following the end of corporate backing from Quest Software in early 2024. Despite the critical nature of this tool for Unix and Linux security, maintenance is currently performed on a voluntary basis, slowing development to a focus on bug fixes rather than new features. The situation highlights a systemic issue in open-source where vital infrastructure depends on solitary individuals. While Miller remains committed to preventing a security compromise like the xz utils backdoor, he acknowledges the rise of sudo-rs, a memory-safe Rust implementation, as a potential successor. This case underscores the urgent need for sustainable funding models for essential open-source projects to prevent maintainer burnout.

In this classic UNIX computing tip, the author addresses the recurring issue of command name collisions between personal shell scripts and standard system binaries. As modern distributions like Debian and Ubuntu grew to include tens of thousands of commands, the likelihood of a user-created script sharing a name with a system utility increased significantly. To solve this, the author identifies a unique naming convention using the comma character as a prefix. Unlike other special characters that carry specific meanings in the shell environment, the comma is treated as a standard character. This technique ensures that personal scripts are non-colliding, easy to type without the shift key, and easily discoverable through shell tab-completion, providing an elegant and robust organizational method for a user's local bin directory that has stood the test of time.

The maintainer of sudo, who has managed the project for over 30 years, is currently seeking a sponsor to fund the continued maintenance and development of this critical utility. Sudo is a ubiquitous tool in the Unix and Linux ecosystems, essential for managing administrative privileges securely. In addition to his extensive work on sudo, the developer has a history of contributing to major open-source projects, including significant contributions to ISC cron and active involvement in the OpenBSD community. This appeal highlights the ongoing challenges of funding essential open-source infrastructure that the global technology industry relies upon daily. Potential sponsors or organizations interested in supporting the future of sudo are encouraged to reach out to ensure the tool remains secure and well-maintained.

Gentoo has expanded its presence to Codeberg, offering a Forgejo-based alternative to GitHub for repository mirrors and contributions. While maintaining its own infrastructure, Gentoo encourages users to use the AGit approach for efficient pull requests. This move aligns with Gentoo's gradual migration toward non-profit, European-hosted platforms for community collaboration.

Ghidra is an open-source software reverse engineering framework developed by the NSA. It provides professional-grade tools for disassembly, decompilation, and analysis across Windows, macOS, and Linux. Designed for cybersecurity research and analyzing malicious code, it supports automation and extensibility through Java and Python scripting for complex software analysis tasks.

The Linux 6.19 progress report for Asahi Linux highlights the arrival of DisplayPort Alt Mode for USB-C, providing external display support on Apple Silicon. It also notes preliminary M3 chip support, 120Hz refresh rates for MacBook Pros, GPU driver optimizations, and significant progress in upstreaming code to the mainline Linux kernel.

Vim 9.2 has been released, featuring major updates to the Vim9 scripting language, including Enums and Generics. Key enhancements include experimental Wayland support, improved diff algorithms with linematch, and fuzzy matching for completions. The project also transitioned its Charityware mission to Kuwasha, continuing the legacy of supporting children in Uganda.

A developer successfully used AI agents to create a native FreeBSD Wi-Fi driver for a 2016 MacBook Pro. By leveraging Claude and Pi to write a technical specification from Linux source code and then implementing the driver through iterative milestones, they bypassed the limitations of LinuxKPI to achieve functional hardware connectivity.

LiteBox is an emerging security-focused library OS designed to enhance sandboxing capabilities by significantly narrowing the interface to the host system. By reducing the attack surface, it provides a robust security layer for both kernel and non-kernel environments. The project utilizes a Rust-inspired interface, drawing from rustix, to facilitate seamless interoperability between various North-facing shims and South-facing platforms. This modular architecture supports diverse use cases, such as running unmodified Linux programs on Windows, sandboxing Linux applications on Linux, and executing programs atop SEV SNP or OP-TEE. Currently in active development by Microsoft, LiteBox offers a flexible solution for developers seeking to connect disparate execution environments while maintaining strict isolation and security protocols. While the project is evolving and APIs may change, it marks a significant step forward in secure, cross-platform library operating systems and sandboxing technology.

Termux is an open-source Android terminal emulator and Linux environment that provides a comprehensive platform for running command-line tools on mobile devices. This repository focuses on the application's user interface and terminal emulation, separate from the extensive package collection. A significant technical notice highlights potential instability on Android 12 and above due to 'phantom process' killing, though workarounds exist. Development has moved toward version 0.118.0+ to address critical security vulnerabilities and improve shared library architecture. The documentation emphasizes the importance of consistent installation sources—either F-Droid or GitHub—due to Android's signature verification rules. While a Google Play version exists, it is currently experimental and subject to strict policy restrictions. For developers, the project utilizes the termux-shared library for modularity and follows strict semantic versioning and conventional commit standards to maintain its complex ecosystem of plugins and packages.

A guide on repurposing a 4th-generation Kindle into a live bus arrival dashboard. The process involves jailbreaking the device, installing KUAL and MRPI, and setting up SSH. A custom server generates high-resolution images of transit data via GraphQL, which are then rendered on the E-ink display using shell scripts and RTC wake cycles.

Terminalphone is an innovative concept or tool designed to bridge the gap between mobile devices and terminal-based environments. It focuses on enhancing mobile productivity by providing efficient CLI access and terminal-driven interfaces on smartphones, catering to developers and power users who require shell capabilities on the go.

The C programming language is adopting the 'defer' feature via TS 25755, now integrated into clang-22 and available in older gcc versions via workarounds. This mechanism simplifies cleanup handling, preventing resource leaks and reducing complex code paths for mutex unlocking and memory deallocation without requiring external libraries or risking security vulnerabilities.

A pull request for Zed's GPUI framework replaces the abandoned blade graphics library with wgpu for Linux rendering. This change addresses freezing issues on Nvidia and Wayland while improving performance and memory efficiency. Although wgpu offers cross-platform potential, Zed maintainers plan to keep native metal and DirectX renderers for macOS and Windows to ensure optimal performance.

This article explores PostgreSQL bloat, explaining how MVCC and the physical storage layer (Pages and Tuples) lead to dead space during UPDATE and DELETE operations. It details the performance impact of accumulated dead tuples and provides practical solutions using VACUUM, REINDEX, and autovacuum tuning to manage database size and efficiency effectively.

JetBrains has announced that starting with version 2026.1 EAP, all IntelliJ-based IDEs will transition to running natively on Wayland by default for supported Linux desktop environments. This shift aligns with Wayland becoming the primary display server across modern Linux distributions. While the user interface remains familiar, technical differences in Wayland mean the window manager now controls window positioning, affecting dialog placement and the visibility of the startup splash screen. JetBrains has improved stability, drag-and-drop, and input method support since the initial preview. For environments where Wayland is not supported, X11 remains functional via XWayland. This initiative is part of JetBrains' commitment to the OpenJDK project Wakefield, ensuring Java applications perform natively and efficiently on modern Linux architecture while maintaining an open-source development model.

This technical guide explains how individuals can operate their own Autonomous System (AS) and announce IPv6 prefixes on the public internet using FreeBSD and FRR. The author details the process of obtaining an AS number and IPv6 prefix via a sponsoring LIR, configuring BGP peering with multiple upstreams, and using GRE/GIF tunnels for prefix distribution. A significant portion of the article focuses on advanced networking techniques, specifically dual-FIB policy routing and PF firewall rules to manage multiple IPv6 address spaces on a single server. The setup ensures that traffic from a personal BGP prefix and provider-assigned addresses can coexist without routing loops or spoofing issues. Key takeaways include the importance of MSS clamping for tunnels, bogon filtering for BGP security, and the use of the reply-to directive in PF to handle asymmetric routing.

Linux From Scratch (LFS) provides users with a comprehensive guide on how to build a custom Linux system entirely from source code, offering deep insights into the internal workings of the operating system. This announcement clarifies methods for protecting the project's mailing list archives against automated address harvesting by spammers. By implementing specific anti-spam measures, the LFS community ensures that contributors and developers can communicate securely without their contact information being scraped. Maintaining these archives is essential for community support, historical documentation, and ongoing development within the open-source ecosystem, particularly for those building their own Linux distributions.

The fourth edition of The Book of PF serves as a comprehensive guide for system administrators looking to master the OpenBSD packet filter, PF. This tool is a cornerstone of the OpenBSD, FreeBSD, and NetBSD network security ecosystems. The text covers essential modern networking challenges, including robust IPv6 integration, dual-stack configurations, and advanced traffic-shaping via new queues and priorities systems. Readers gain practical knowledge on creating complex rulesets for diverse network environments like DMZs and bridges. Furthermore, it details high-availability strategies using CARP and relayd, alongside proactive defense mechanisms against spammers and malicious actors. By exploring monitoring tools and visualization techniques, the book ensures that professionals can maintain highly responsive, secure, and controlled network infrastructures in an increasingly hostile digital landscape.