What options Linux have for Memory Isolation?
Many years ago in 2012, I was studying QNX in college and we saw a lot of advantages of it. One in particular was memory isolation and dedicate CPU. Now, I was studying TEE (Intel SGX) and I understand one of the advantages is memory isolation, something that I understood QNX solved long time ago now could be possible in Linux only by using specialized secure hardware.
I saw this as a negative aspect of Linux, secure research is aware that whatever process with privileges can hack other process by accessing its memory. I am not sure if QNX solution is 100% trusted, but I want to know fi Linux is doing something or considering something for this problem.
https://redd.it/1k7i5ej
@r_linux
Many years ago in 2012, I was studying QNX in college and we saw a lot of advantages of it. One in particular was memory isolation and dedicate CPU. Now, I was studying TEE (Intel SGX) and I understand one of the advantages is memory isolation, something that I understood QNX solved long time ago now could be possible in Linux only by using specialized secure hardware.
I saw this as a negative aspect of Linux, secure research is aware that whatever process with privileges can hack other process by accessing its memory. I am not sure if QNX solution is 100% trusted, but I want to know fi Linux is doing something or considering something for this problem.
https://redd.it/1k7i5ej
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
devenv 1.6: Extensible Ad-Hoc Nix Environments
https://devenv.sh/blog/2025/04/25/devenv-16-extensible-ad-hoc-nix-environments/
https://redd.it/1k7i5cp
@r_linux
https://devenv.sh/blog/2025/04/25/devenv-16-extensible-ad-hoc-nix-environments/
https://redd.it/1k7i5cp
@r_linux
devenv.sh
devenv 1.6: Extensible Ad-Hoc Nix Environments - devenv
Fast, Declarative, Reproducible, and Composable Developer Environments using Nix
SteamOS 3.7.4 is now in preview.
https://store.steampowered.com/news/app/1675200/view/529844242184405700
https://redd.it/1k7wc1k
@r_linux
https://store.steampowered.com/news/app/1675200/view/529844242184405700
https://redd.it/1k7wc1k
@r_linux
Steampowered
Steam Deck - SteamOS 3.7.4 Preview: Triple Frog - Steam News
Note: This update is for the Steam Deck Preview channel, and includes new features that are still being tested. You can opt into this in Settings > System > System Update Channel.GeneralFixed a regression from earlier 3.7 releases wherein corrupt Steam installs…
Made my first github repository, virtual wifi interfaces .
https://github.com/CoWsysNoot/virtualWiFiinterface
https://redd.it/1k7ya9o
@r_linux
https://github.com/CoWsysNoot/virtualWiFiinterface
https://redd.it/1k7ya9o
@r_linux
GitHub
GitHub - CoWsysNoot/virtualWiFiinterface: Virtual WiFi Interface Creator and Monitor Mode Enabler
Virtual WiFi Interface Creator and Monitor Mode Enabler - CoWsysNoot/virtualWiFiinterface
Only the Tip (ghostty)
PSA - Only the
When in doubt use the full path to the desired
My little cheat sheet, csv style:
"ghostty version", "zig version required"
"v1.1.0", "v0.13"
"v1.1.2", "v0.13"
"v1.1.3", "v0.13"
"tip", "v0.14"
>Note: I feel like
In unrelated news (since it happens to be in the screenshot),
//Edit: fixed version numbers that I butchered.
https://preview.redd.it/ipqcu2ovj2xe1.png?width=1461&format=png&auto=webp&s=503253cc139e8dfbec7cec62ad90080a70feb748
https://redd.it/1k7zh94
@r_linux
PSA - Only the
tip version of ghostty requires zig 0.14 to compile, everything else requires the older zig version 0.13. This can be slightly confusing with the new documentation saying simply that zig version 0.14 is required (yes, but only for the tip).When in doubt use the full path to the desired
zig binary when compiling (or simply download the compiled ghostty binary instead).My little cheat sheet, csv style:
"ghostty version", "zig version required"
"v1.1.0", "v0.13"
"v1.1.2", "v0.13"
"v1.1.3", "v0.13"
"tip", "v0.14"
>Note: I feel like
ghostty version 1.1.4 must be coming soon and that will probably require zig 0.14 to compile, similar to current tip.In unrelated news (since it happens to be in the screenshot),
PowerShell version 7.5.1 is available now! Totally unrelated to ghostty but it looks like they do have support for PowerShell on the roadmap.//Edit: fixed version numbers that I butchered.
https://preview.redd.it/ipqcu2ovj2xe1.png?width=1461&format=png&auto=webp&s=503253cc139e8dfbec7cec62ad90080a70feb748
https://redd.it/1k7zh94
@r_linux
Is Kernotex a good LFS resource?
This playlist by Kernotex, is it good for learning LFS https://www.youtube.com/playlist?list=PLyc5xVO2uDsB9d49xOfLDObv9O0a0G6kH ?
Yes, I will also have the book itself by my side and read it but having someone to do the steps with you makes it less intimidating.
https://redd.it/1k83xn1
@r_linux
This playlist by Kernotex, is it good for learning LFS https://www.youtube.com/playlist?list=PLyc5xVO2uDsB9d49xOfLDObv9O0a0G6kH ?
Yes, I will also have the book itself by my side and read it but having someone to do the steps with you makes it less intimidating.
https://redd.it/1k83xn1
@r_linux
YouTube
Kernotex
This channel is an outlet for my experience with Linux (and other tech related subjects). I decided to do this to give back to the wider community. If you've found something useful here please comment as such. I'd love to hear how you found it helpful. Subscribe…
Do you restrict your SSH with PubkeyAcceptedAlgorithms?
As per the noscript, I wonder if it's common practice to change the defaults (see below) and if you do, what do you typically end up with?
From
PubkeyAcceptedAlgorithms
Specifies the signature algorithms that will be accepted
for public key authentication as a list of comma-separated
patterns. Alternately if the specified list begins with a
‘+’ character, then the specified algorithms will be
appended to the default set instead of replacing them. If
the specified list begins with a ‘-’ character, then the
specified algorithms (including wildcards) will be removed
from the default set instead of replacing them. If the
specified list begins with a ‘^’ character, then the
specified algorithms will be placed at the head of the
default set. The default for this option is:
ssh-ed25519-cert-v01@openssh.com,
ecdsa-sha2-nistp256-cert-v01@openssh.com,
ecdsa-sha2-nistp384-cert-v01@openssh.com,
ecdsa-sha2-nistp521-cert-v01@openssh.com,
sk-ssh-ed25519-cert-v01@openssh.com,
sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,
rsa-sha2-512-cert-v01@openssh.com,
rsa-sha2-256-cert-v01@openssh.com,
ssh-ed25519,
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
sk-ssh-ed25519@openssh.com,
sk-ecdsa-sha2-nistp256@openssh.com,
rsa-sha2-512,rsa-sha2-256
The list of available signature algorithms may also be
obtained using "ssh -Q PubkeyAcceptedAlgorithms".
https://redd.it/1k8g2jz
@r_linux
As per the noscript, I wonder if it's common practice to change the defaults (see below) and if you do, what do you typically end up with?
From
man 5 sshd_config:PubkeyAcceptedAlgorithms
Specifies the signature algorithms that will be accepted
for public key authentication as a list of comma-separated
patterns. Alternately if the specified list begins with a
‘+’ character, then the specified algorithms will be
appended to the default set instead of replacing them. If
the specified list begins with a ‘-’ character, then the
specified algorithms (including wildcards) will be removed
from the default set instead of replacing them. If the
specified list begins with a ‘^’ character, then the
specified algorithms will be placed at the head of the
default set. The default for this option is:
ssh-ed25519-cert-v01@openssh.com,
ecdsa-sha2-nistp256-cert-v01@openssh.com,
ecdsa-sha2-nistp384-cert-v01@openssh.com,
ecdsa-sha2-nistp521-cert-v01@openssh.com,
sk-ssh-ed25519-cert-v01@openssh.com,
sk-ecdsa-sha2-nistp256-cert-v01@openssh.com,
rsa-sha2-512-cert-v01@openssh.com,
rsa-sha2-256-cert-v01@openssh.com,
ssh-ed25519,
ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
sk-ssh-ed25519@openssh.com,
sk-ecdsa-sha2-nistp256@openssh.com,
rsa-sha2-512,rsa-sha2-256
The list of available signature algorithms may also be
obtained using "ssh -Q PubkeyAcceptedAlgorithms".
https://redd.it/1k8g2jz
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
Linux Troubleshooting - a compendium of information on issues and how to fix them
Hello everyone!
I'm working on a new project, in the shape of a Github repo to make, over time, a massive database on issues people have on Linux and how to fix them (when they're not just some random bug) or sharing workarounds. Feel free to use the knowledge I'm already putting in there and add some yourselves following instructions on the readme - the more people using it, the more effective it will become at solving people's pains with Linux.
https://redd.it/1k8hdx7
@r_linux
Hello everyone!
I'm working on a new project, in the shape of a Github repo to make, over time, a massive database on issues people have on Linux and how to fix them (when they're not just some random bug) or sharing workarounds. Feel free to use the knowledge I'm already putting in there and add some yourselves following instructions on the readme - the more people using it, the more effective it will become at solving people's pains with Linux.
https://redd.it/1k8hdx7
@r_linux
GitHub
GitHub - psygreg/linux-troubleshooting: A compendium of information regarding common issues on Linux OS'es and how to fix them.
A compendium of information regarding common issues on Linux OS'es and how to fix them. - psygreg/linux-troubleshooting
Just before tagging Linux RC, Torvalds upgrades to Fedora 42 which ships with unreleased GCC 15 as default compiler.
https://lwn.net/SubscriberLink/1018486/1dcd29863655cb25/
https://redd.it/1k8k6yi
@r_linux
https://lwn.net/SubscriberLink/1018486/1dcd29863655cb25/
https://redd.it/1k8k6yi
@r_linux
Reddit
From the linux community on Reddit: Just before tagging Linux RC, Torvalds upgrades to Fedora 42 which ships with unreleased GCC…
Posted by small_kimono - 1 vote and 1 comment
So what do you guys think about PewDiePie uploading this new video on his channel?
https://redd.it/1k8oq0b
@r_linux
https://redd.it/1k8oq0b
@r_linux
How is everyone liking linux mint (cinnamon)?
Just got a new computer and am of course blessing it with anything that isn't windows 11. I have chosen linux mint to do the job and there is something so satisfying about using the preinstalled windows to do it. Either way, windows gets more deranged by the release and linux mint cinnamon eddition is keeping me sane as my once nice operating system declines rapidly. Anybody else have a favorite distro that serves this same role in keeping you sane? I know this is hardly relevant to what this sub reddit is about but man am I happy to have an OS that is everything windows could never be. Thought I'd share and see what yall have to say.
https://redd.it/1k8szis
@r_linux
Just got a new computer and am of course blessing it with anything that isn't windows 11. I have chosen linux mint to do the job and there is something so satisfying about using the preinstalled windows to do it. Either way, windows gets more deranged by the release and linux mint cinnamon eddition is keeping me sane as my once nice operating system declines rapidly. Anybody else have a favorite distro that serves this same role in keeping you sane? I know this is hardly relevant to what this sub reddit is about but man am I happy to have an OS that is everything windows could never be. Thought I'd share and see what yall have to say.
https://redd.it/1k8szis
@r_linux
Reddit
From the linux community on Reddit
Explore this post and more from the linux community
This Week in Plasma: multiple major Wayland and UI features
https://blogs.kde.org/2025/04/25/this-week-in-plasma-multiple-major-wayland-and-ui-features/
https://redd.it/1k8scq7
@r_linux
https://blogs.kde.org/2025/04/25/this-week-in-plasma-multiple-major-wayland-and-ui-features/
https://redd.it/1k8scq7
@r_linux
KDE Blogs
This Week in Plasma: multiple major Wayland and UI features
Welcome to a new issue of “This Week in Plasma”! Every week we cover the highlights of what's happening in the world of KDE Plasma and its associated apps like Discover, System Monitor, and more.
so i just came here to say i finally decided to transform my old laptop in to a linux device
https://redd.it/1k8w36r
@r_linux
https://redd.it/1k8w36r
@r_linux