6 Backup Tools for Linux Users of All Kind
From desktop servers, from single machine to a fleet, here are the backup tools you could explore for your Linux system(s).
Latest Linux and open source news from around the web
From desktop servers, from single machine to a fleet, here are the backup tools you could explore for your Linux system(s).
Fwupd 2.16 fixes several security-related issues, including safer manifest validation, sealed memfd input handling, and device-version checks.
Fwupd 2.1.6 Linux firmware updater is now available for download with a new HSI attribute for coreboot verified boot, hashes for the latest DBX for offline machines, as well as various other improvements.
Building a pocket Linux server with Termux and an old phone was a challenge. But I unlocked new possibilities for file storage and access.
The privacy-focused Tails 7.9.1 ships with Linux kernel 6.12.94, addressing DirtyClone and another privilege-escalation vulnerability.
Sudo alternatives avoid vulnerabilities, but the better approach is to avoid sudo.
Firefox is adding hardware-accelerated Vulkan Video decoding, saving Nvidia users on Linux the hassle of manually configuring the nvidia-vaapi-driver package. The change will be included in Firefox 153, out July 21, but it will not be enabled by default โ not to start with. Instead, users will be able to flip a pair of preferences in about:config to try it out, with the awareness that there may be hiccups and edge cases (especially on devices with hybrid graphics, mentioned further down). Given that Nvidia GPUs are capable (understatement klaxon), I was surprised to hear that this didnโt already work. Turns out, Firefoxโs [โฆ]
Embracing the power of simplicity on Linux.
Linux users who have Secure Boot enabled on their systems rely on certificates issued by Microsoft to verify the software used to boot a system is trusted by the user. One of those certificates expired recently, but that will not cause systems that are able to boot to stop doing so. There are situations where the expiration may cause problems, however, and the window for relying on existing signed binaries is shorter than it might appear. Users and administrators will want to stay on top of these changes. Over the last year, part of my job at Microsoft has been to work on this problem. LWN wrote about the certificate expiration in July 2025, and this article follows up with where we are now.
Security updates have been issued by AlmaLinux (coreutils, galera and mariadb11.8, giflib, git-lfs, glibc, httpd, kernel, mariadb10.11, mod_md, perl-Archive-Tar, perl-IO-Compress, perl:5.32, rrdtool, ruby, ruby4.0, and thunderbird), Debian (debian-security-support, librabbitmq, and nginx), Fedora (chromium, collectd, maradns, python-django-haystack, python-jupytext, varnish, varnish-modules, and vmod-querystring), Oracle (firefox, git-lfs, kernel, nginx:1.24, openssl, perl-Archive-Tar, perl-IO-Compress, and uek-kernel), Red Hat (container-tools:rhel8), SUSE (7zip, apache2, buildah, cifs-utils, curl, docker, exiv2-0_26, libonnxruntime1, libsoup, nodejs22, opensc, pacemaker, perl-Config-IniFiles, podman, sg3_utils, socat, tar, tracker, and xdg-desktop-portal), and Ubuntu (curl, hplip, libgd-perl, libssh2, libyang, ruby2.7, ruby3.0, ruby3.2, ruby3.3, and tar).
While the Linux 7.2 feature merge window ended just days ago and the better part of two months now before v7.2 will be released as stable, there are already features beginning to accumulate that will target the Linux 7.3 cycle. The most exciting change I've seen to kick off that dance ahead of Linux 7.3 is addressing a "significant" bottleneck affecting small direct I/O performance with speedy storage such as PCIe Gen5 NVMe SSDs...
Earlier this year AMD disclosed the RMPOPT instruction that given the timing will seemingly be introduced with upcoming Zen 6 EPYC "Venice" processors. The RMPOPT feature amounts to a performance optimization for AMD EPYC SEV-SNP enabled servers by cutting down on the associated Reverse Map Table (RMP) overhead. Linux enablement of AMD RMPOPT remains ongoing and out this week is the latest iteration of the enablement...
Using Linux doesn't feel like an adversarial process.
The latest Asahi Linux progress report brings good news for Apple M3 Mac users, though installer support for these machines still needs more work.
Red Hat has contributed new system-wide tunables infrastructure to the GNU C Library "glibc" that allows specifying system-wide tunables via the new /etc/tunables.conf configuration file...