Today more companies are announcing their support of the Valkey community (the group that includes committed developers previously working on the OSS version of the core Redis engine): Aiven, Alibaba Cloud, Chainguard, Heroku, Huawei, Percona, and Verizon.

#OSSummit #OpenSource #FreeSoftware #FOSS #OSS #Redis #Valkey #Community #LinuxFoundation

https://www.linuxfoundation.org/press/valkey-community-announces-release-candidate-amid-growing-support-for-open-source-data-store

Valkey Community Announces Release Candidate Amid Growing Support for Open Source Data Store

Valkey community welcomes new partners, including Aiven, Alibaba Cloud, Chainguard, Heroku, Huawei, Percona, and Verizon.

^{The Linux Foundation}

Now on stage for the morning #OSSummit keynotes, core team member Madelyn Olson to speak about the new Valkey community effort.

The walk-on music: "We are never ever getting back together" by Taylor Swift. 🤣

Love it!

#OSSummit #OpenSource #FreeSoftware #FOSS #OSS #Redis #Valkey #Community #LinuxFoundation

they forgot the last step

credit: https://twitter.com/crackticker/status/1778852314935140370/#ultramarinelinux #foss #linux #trans #fedora

Microsoft announced their latest round of FOSS fund recipients. We're thrilled to share that @NVAccess are among this quarter's recipients. From: https://github.com/microsoft/foss-fund

"A project of the Microsoft Open Source Programs Office, the FOSS Fund provides up to $10,000 USD in sponsorships to open source projects as selected by Microsoft employees."

Congratulations also to The GNU Compiler Collection, Urllib3, CLAP & MSW.

#OpenSource, #FOSS #Free #Software #NVDA #ScreenReader #Accessibility #A11y

After a stable release of K-9 Mail, our Android team usually spends a couple weeks fixing bugs. The bug hunt takes center stage in this month's #Android progress report, with cketti and Wolf ironing out a BUNCH of them.

https://blog.thunderbird.net/2024/04/thunderbird-for-android-k-9-mail-march-2024-progress-report/

#Thunderbird #K9Mail #FOSS

Thunderbird for Android / K-9 Mail: March 2024 Progress Report

It was a busy month! Here's our monthly progress report detailing our work to transform K-9 Mail into Thunderbird for Android.

^{cketti (The Thunderbird Blog)}

🕘 December 2009: Maybe you were upgrading your computer to the new Windows 7, or checking out Ubuntu 9.10. Perhaps you were pouring all your free time into Valve’s ridiculously fun survival shooter Left 4 Dead 2. And maybe, just maybe, you were eagerly anticipating installing Thunderbird 3.0…

Step back into the Thunderbird Time Machine as Jason looks at what made this such a landmark release!

https://blog.thunderbird.net/2024/04/thunderbird-time-machine-thunderbird-3-0/

#FOSS #Thunderbird #Retro

Thunderbird Time Machine: Was Thunderbird 3.0 Worth The Wait?

After a 2-year development cycle, Thunderbird 3.0 finally released late 2009 with a bunch of new feature milestones. Was it worth the wait?

^{Jason Evangelho (The Thunderbird Blog)}

Just bought a #DELL 3190 laptop, new for $150 (11.6" screen, 64GB eMMC). It's fully supported on #Linux, and even if it has a Celeron N4120 CPU and only 4 GB of RAM, it'll work fine with #Mint, or #XFCE (and #Gnome/ #KDE if you don't mind some minor lag). Not opening too many browser tabs will ensure that the swap file won't get used too often.

If you're on a tight budget this is a good option, as it also has great battery life too at 10 hours with Linux.

#linuxmint #ubuntu #opensource #foss

Reminder: The Sovereign Tech Fund is asking #FOSS maintainers for input as we design the pilot program for a paid fellowship to support critical digital infrastructure. Help us by sharing this with maintainers you know!

The last day to submit a response is Sunday, 7 April 2024.

More: https://www.sovereigntechfund.de/news/foss-maintainer-fellowship-survey

Survey: https://survey.sovereigntechfund.de/968766

Open Source Maintainer Fellowship Survey

^{Sovereign Tech Fund}

At Sovereign Tech Fund, we're following the #xz incident closely and listening to the many voices in the #FOSS maintainer community.

What's clear to us is that the xz incident shows the need for structural change:

https://www.sovereigntechfund.de/news/xz-structural-change

xz incident shows the need for structural change

^{Sovereign Tech Fund}

In-Process is out, featuring all the news on the release of NVDA 2024.1, plus highlights from our trip to CSUN. Do check it out now at: https://www.nvaccess.org/post/in-process-5th-april-2024/

#NVDA #NVDAsr #ScreenReader #Blog #News #FOSS

"You have to understand, we’re responsible for taxpayer money here. We can’t just make a donation to your open source project."

— a national government who relies on #Matrix when being asked to support it financially

Read more about the problem and some initiatives that are responding to it:

https://matrix.org/blog/2024/04/open-source-publicly-funded-service/

#FreeSoftware #OpenSource #FOSS #FLOSS #funding #xz #sustainability

Open Source Infrastructure must be a publicly funded service.

Matrix, the open protocol for secure decentralised communications

^{Matthew Hodgson (matrix.org)}

Open source infrastructure *must* be a publicly funded service, and funders need to support maintenance – not just new feature development 📣

This is on our minds this week in the wake of the #xz news, and as we continue to seek funding to support #Matrix.

Read the latest from project lead, @matthew: https://matrix.org/blog/2024/04/open-source-publicly-funded-service/

#OpenSource #FOSS #OpenStandards

Open Source Infrastructure must be a publicly funded service.

Matrix, the open protocol for secure decentralised communications

^{Matthew Hodgson (matrix.org)}

Tomorrow's the official start of #30DayFOSSChallenge! We've got a few people chatting in the #matrix already: https://matrix.to/#/#30DayFOSSChallenge:mozilla.org

Feel free to join us. Don't know what I'm talking about? Look here: https://nullarch.com/30DayFOSSChallenge.html

#foss #floss #opensource #freeculture #degoogle #indieweb

Matrix - Decentralised and secure communication

You're invited to talk on Matrix. If you don't already have a client this link will help you pick one, and join the conversation. If you already have one, this link will help you join the conversation

^matrix.to

Have you seen @nextcloud AI Assistant 2.0?

You can now chat about your own documents and data, use GPU acceleration, transcribe audio with Whisper, use your own LLMs, and a ton more integrations and new features.

All #open-source 😀

Boosts appreciated 🙏

https://nextcloud.com/blog/nextcloud-releases-assistant-2-0-and-pushes-ai-as-a-service/

#AI #mastodon #Linux #Foss #OSS

Put yourself in Jia Tan's shoes, the malicious contributor to the xz backdoor...

It's been, what, two... three?... years since you started this campaign. You've had the entire support of your team and of your chain of command.

Your coders created a complex and sublime backdoor. A secure! backdoor that only you and your team could connect to. Heck it can even be deleted remotely. This is clean code. A responsible hack that doesn't open up the backdoor for others to hijack.

You spend years on your long con - your social engineering skills are at the top of the game. You've ingratiated yourself painstakingly into multiple teams. Finally it all pays off and you're ready to go!

You succeed multiple times in getting your backdoor inserted in all the major Linux distributions!!! Now its just a matter of weeks before it makes it to production and stable releases!

This is the culmination of years of labor and planning and of a massive team and budget.

You did good.

This will get you promoted. Esteemed by your colleagues and leadership alike. Your spouse and kids will understsnd why you haven't been at home lately and why you've spent all those late nights at the office.

It's finally going to pay off.

But what's this?! Some rando poking around in their box running a pre-release unstable version of linux has found everything?!?! It's all being ripped down?! And on a Friday before a western holiday weekend?!?!

Fuck. Fuck. FUCK!!!

Three years for nothing!!! My wife is going to leave me! I missed my kid's recital for this!!! They'll hate me because I told them it was worth it. Daddy will be able to play with you again once Daddy finishes this last bit of work. But it was all for nothing!!!

Leadership took a big risk on me and my team but I kept assuring them it would pay off!

It would be one thing if another nation state found it and stopped it. But one random dude poking his nose where it shouldn't belong?! Ohhh fuck, I'm going to be fired. We're going to lose our budget. My team is going to be fired. I've let down everyone that ever believed in me and supported me and relied on me!

Oh fuck!!!

#xz #backdoor #xzBackDoor #cve #cve20243094 #infosec #hacking #FOSS

Wishing everyone a great time at Gnome 46 Release Party by Volunteers starting today in Offline in #Berlin, #Germany

https://foss.events/2024/03-30-gnome-46-release-party.html

@gnome
#gnome46 #foss #floss #freesoftware #opensource #events #europe #gnome

I think a LOT of people are missing the fact that we got LUCKY with this malicious backdoor.

The backdoor was created by an Insider Threat - by a developer / maintainer of various linux packages. The backdoor was apparently pushed back on March 8th (I believe) and MADE IT PAST all QA checks.

Let me state that again. Any quality assurance, security checks, etc., failed to catch this.

This was so far upstream, it had already gotten into the major Linux distributions. It made it into Debian pre-release, Fedora rolling, OpenSUSE rolling, Kali rolling, etc.

This is an example of Supply Chain Security that CISOs love to talk and freak out about. This is an example of an Insider Threat that is the boogey man of corporate infosec.

A couple more weeks, and it would have been in many major distributions without any of us knowing about it.

The ONLY reason we know about it is because @AndresFreundTec got curious about login issues and some benchmarking checks that had nothing to do with security and ran the issue down and stumbled upon a nasty mess that was trying to remain hidden.

It was luck.

That's it. We got lucky this time.

So this begs the question. Did the malicious insider backdoor anything else? Are they working with anyone else who might have access to other upstream packages? If the QA checks failed to find this specific backdoor by this specific malicious actor, what other intentional backdoors have they missed?

And before anyone goes and blames Linux (as a platform or as a concept), if this had happened (if it HAS happened!!!) in Windows, Apple, iOS, etc.... we would not (or will not) know about it. It was only because all these systems are open source that Andres was able to go back and look through the code himself.

Massive props and kudos and all the thank yours to Andres, those who helped him, to all the Linux teams jumping on this to fix it, and to all the folks on high alert just before this Easter weekend.

I imagine (hope) that once this gets cleaned up, there will be many fruitful discussions around why this passed all checks and what can be changed to prevent it from happening again.

(I also hope they run down any and all packages this person had the signing key for....)

#infosec #hacking #cve #cve20243094 #linux #FOSS

Am I late for the Xenia bandwagon?

#furry #furryart #anthro #anthroart #linux #xenialinux #transrights #foss

There is a good discount on the #FOSS conference in #Zagreb in May - why don't you combine your thrust for knowledge with a nice trip.

https://www.dorscluc.org/2024/03/hop-into-dors-cluc-2024-with-our-exclusive-easter-discount/

I most probably will be there speaking about #heavymetal #thunderbird and maybe #osm.

Hop into DORS/CLUC 2024 with Our Exclusive Easter Discount! - DORS/CLUC

As the spring season unfolds, bringing with it a sense of renewal and growth, we at DORS/CLUC 2024 are excited to share some exhilarating news with our esteemed community.

^{andrei (DORS/CLUC)}

💡 The last Wednesday of March can only mean one thing...

#DocumentFreedomDay ✍️

Today we celebrate open standards: The ability for everyone to work and communicate using free software.

If you're using paid software that confines you see if any of the alternatives on my list of #opensource software can make life easier for you:

https://ethicalrevolution.co.uk/opt-open-source/

Includes (but not limited to) @cryptpad @thegoodcloud @piefedadmin @libreoffice @thunderbird @Tutanota @protonprivacy @plausible @GIMP @inkscape @session @signalapp @delta @efoundation @MattermostFR @element

Any I've missed, let me know!

@dff

#FOSS #DFF #DFD #decentralize

Opt Open-Source - Ethical Revolution

Join me in taking step O, “Opt Opensource”, in the A-Z of steps to a better world: transparency, quality, reliability, flexibility +low cost.

^{Sam (Ethical Revolution)}

a periodic reminder that open source and free software licences enabled the unpaid mass transfer of skills and labour to corporations and societal elites to an extent unparalleled since the abolition of serfdom and slavery.

they effectively seized the means of production, then packaged them all up and delivered them to the worst people imaginable, wrapped with a bow and a little card that said “exploit me!”

and people are still out here cheerleading for them.

#foss #opensource

How it started: "This change has zero effect on the Redis core license, which is and will always be licensed under the 3-Clause-BSD."

How it's going: "Beginning today, all future versions of Redis will be released with source-available licenses. Starting with Redis 7.4, Redis will be dual-licensed under the Redis Source Available License (RSALv2) and Server Side Public License (SSPLv1)."

#FreeSoftware #OpenSource #OSS #FOSS #Redis

Missed @lea@ordinary.cafe and @jaiden@ordinary.cafe's panel at @socallinuxexpo@social.linux.pizza about the future of the Linux desktop?

Here’s a recording to satisfy your curiosity :3

https://www.youtube.com/watch?v=hNDJDyef_UQ

Featuring:

- @lea@ordinary.cafe, Fyra Labs
- @jaiden@ordinary.cafe, Fyra Labs (Moderator)
- @zana@sfba.social, @gnome@floss.social Foundation
- @technobaboo@tech.lgbt, @stardustxr@fosstodon.org
- @communiteatime@fosstodon.org, @thunderbird@mastodon.online- @mattdm@hachyderm.io, @fedora@fosstodon.org & Red Hat
- @druonysus@mstdn.io, @kde@floss.social & @opensuse@fosstodon.org
#tech #linux #foss #oss #scale21x

Where Does the Linux Desktop Go from Here?

It's no lie that the Linux desktop has been changing greatly. Through technological and social shifts, the desktop and community we know today is a far cry f...

^YouTube

🗺️ 𝘖𝘱𝘦𝘯𝘚𝘵𝘳𝘦𝘦𝘵𝘔𝘢𝘱 3𝘋 🧊

https://demo.f4map.com

Zoom in to street level to see the 3D features.

#map #maps #OpenStreetMap #3D #topography #world #WorldMap #cities #landscape #environment #data #tools #OpenSource #FOSS

Can you #help me?

#Metal music has anger, love, DEI, truth-telling, and more. So why don't we use it to solve everyday problems, such as having fun at work, lacking identity, or standing for our rights? Metal artists put a lot of effort into crafting their art, and we can find the best use of it just by listening.

I want to interview key players in the metal world and do a #Foss #cc documentary to encourage even more people to help themselves!

Please DM me if you know some metal gods!

Apache Pekko has left the incubator phase and is now a top-level project.

https://lists.apache.org/thread/grl5h0l79oywnjtmfv0mdg3w108vsh6o

That's great news! Pekko was created as a Fork of Akka 2.6, right after Lightbend chose to pull a bait-and-switch by relicensing Akka to a non-FOSS license.

I have already switched to Pekko a few months ago, it went very smooth, and I am grateful to everybody involved in making this happen.

#opensource #pekko #akka #scala #java #licensing #apache #foss