Category: Open Source

Takeaway: Drupal outperforms SharePoint for government websites by offering greater flexibility, cost-effectiveness, and scalability. Its open-source nature enables rapid innovation and customization, which is crucial for meeting your citizens’ needs and government requirements without vendor lock-in or escalating costs.

 

I wrote about why I think we should make the private method work on constants in Ruby. I explore there some idea about how this will improve code readability and how will open the case for defining private (sub) classes

There is a DoS vulnerability in REXML gem. This vulnerability has been assigned the CVE identifier CVE-2024-43398. We strongly recommend upgrading the REXML gem.

Details

When parsing an XML that has many deep elements that have same local name attributes.

It’s only affected with the tree parser API. If you’re using REXML::Document.new to parse an XML, you may be affected.

Please update REXML gem to version 3.3.6 or later.

Affected versions

• REXML gem 3.3.5 or prior

Credits

Thanks to l33thaxor for discovering this issue.

History

• Originally published at 2024-08-22 03:00:00 (UTC)

Posted by kou on 22 Aug 2024

GNU Parallel 20240822 (‘Southport’) has been released. It is available for download at: lbry://@GnuParallel:4

Quote of the month:

  honestly the coolest software i’ve ever seen gotta be gnu parallel or

  ffmpeg, nothing like them

    — @scootykins scoot

 

New in this release:

• –match Match input source with regexp to set replacement fields.
• {:%fmt} Use printf formatting of replacement strings.
• Bug fixes and man page updates.

News about GNU Parallel:

• Powerful GNU parallel, more than a loop https://www.linkedin.com/pulse/powerful-gnu-parallel-more-than-loop-zhenguo-zhang-18dxc
• How To Increase File Transfer Speed Using Parallel Rsync? https://contentbase.com/blog/increase-file-transfer-speed-parallel-rsync/
• Converting WebP Images to PNG Using parallel and dwebp https://bytefreaks.net/2024/07/27
• Turbocharging the Box CLI with GNU Parallel https://medium.com/box-developer-blog/turbocharging-the-box-cli-with-gnu-parallel-ee44c48811c0

GNU Parallel – For people who live life in the parallel lane.

If you like GNU Parallel record a video testimonial: Say who you are, what you use GNU Parallel for, how it helps you, and what you like most about it. Include a command that uses GNU Parallel if you feel like it.

About GNU Parallel

GNU Parallel is a shell tool for executing jobs in parallel using one or more computers. A job can be a single command or a small script that has to be run for each of the lines in the input. The typical input is a list of files, a list of hosts, a list of users, a list of URLs, or a list of tables. A job can also be a command that reads from a pipe. GNU Parallel can then split the input and pipe it into commands in parallel.

If you use xargs and tee today you will find GNU Parallel very easy to use as GNU Parallel is written to have the same options as xargs. If you write loops in shell, you will find GNU Parallel may be able to replace most of the loops and make them run faster by running several jobs in parallel. GNU Parallel can even replace nested loops.

GNU Parallel makes sure output from the commands is the same output as you would get had you run the commands sequentially. This makes it possible to use output from GNU Parallel as input for other programs.

For example you can run this to convert all jpeg files into png and gif files and have a progress bar:

  parallel –bar convert {1} {1.}.{2} ::: *.jpg ::: png gif

Or you can generate big, medium, and small thumbnails of all jpeg files in sub dirs:

  find . -name ‘*.jpg’ |

    parallel convert -geometry {2} {1} {1//}/thumb{2}_{1/} :::: – ::: 50 100 200

You can find more about GNU Parallel at: http://www.gnu.org/s/parallel/

You can install GNU Parallel in just 10 seconds with:

    $ (wget -O – pi.dk/3 || lynx -source pi.dk/3 || curl pi.dk/3/ ||

       fetch -o – http://pi.dk/3 ) > install.sh

    $ sha1sum install.sh | grep 883c667e01eed62f975ad28b6d50e22a

    12345678 883c667e 01eed62f 975ad28b 6d50e22a

    $ md5sum install.sh | grep cc21b4c943fd03e93ae1ae49e28573c0

    cc21b4c9 43fd03e9 3ae1ae49 e28573c0

    $ sha512sum install.sh | grep ec113b49a54e705f86d51e784ebced224fdff3f52

    79945d9d 250b42a4 2067bb00 99da012e c113b49a 54e705f8 6d51e784 ebced224

    fdff3f52 ca588d64 e75f6033 61bd543f d631f592 2f87ceb2 ab034149 6df84a35

    $ bash install.sh

Watch the intro video on http://www.youtube.com/playlist?list=PL284C9FF2488BC6D1

Walk through the tutorial (man parallel_tutorial). Your command line will love you for it.

When using programs that use GNU Parallel to process data for publication please cite:

O. Tange (2018): GNU Parallel 2018, March 2018, https://doi.org/10.5281/zenodo.1146014.

If you like GNU Parallel:

• Give a demo at your local user group/team/colleagues
• Post the intro videos on Reddit/Diaspora*/forums/blogs/ Identi.ca/Google+/Twitter/Facebook/Linkedin/mailing lists
• Get the merchandise https://gnuparallel.threadless.com/designs/gnu-parallel
• Request or write a review for your favourite blog or magazine
• Request or build a package for your favourite distribution (if it is not already there)
• Invite me for your next conference

If you use programs that use GNU Parallel for research:

• Please cite GNU Parallel in you publications (use –citation)

If GNU Parallel saves you money:

• (Have your company) donate to FSF https://my.fsf.org/donate/

About GNU SQL

GNU sql aims to give a simple, unified interface for accessing databases through all the different databases’ command line clients. So far the focus has been on giving a common way to specify login information (protocol, username, password, hostname, and port number), size (database and table size), and running queries.

The database is addressed using a DBURL. If commands are left out you will get that database’s interactive shell.

When using GNU SQL for a publication please cite:

O. Tange (2011): GNU SQL – A Command Line Tool for Accessing Different Databases Using DBURLs, ;login: The USENIX Magazine, April 2011:29-32.

About GNU Niceload

GNU niceload slows down a program when the computer load average (or other system activity) is above a certain limit. When the limit is reached the program will be suspended for some time. If the limit is a soft limit the program will be allowed to run for short amounts of time before being suspended again. If the limit is a hard limit the program will only be allowed to run when the system is below the limit.

Ah, secure boot, the bane of many running anything other than Windows. While it’s already been found to be utterly useless by now, it’s still a requirement for Windows 11, and ever since it became part of PCs about a decade or so ago, it’s been causing headaches for people who don’t use Windows. Yesterday, Microsoft released a patch for a two-year-old vulnerability in the GRUB bootloader, and while the company claimed it would only be installed on single-boot Windows machines, that clearly wasn’t the case as right after its release, people dual-booting Linux and Windows found their Linux installations unbootable. Tuesday’s update left dual-boot devices—meaning those configured to run both Windows and Linux—no longer able to boot into the latter when Secure Boot was enforced. When users tried to load Linux, they received the message: “Verifying shim SBAT data failed: Security Policy Violation. Something has gone seriously wrong: SBAT self-check failed: Security Policy Violation.” Almost immediately support and discussion forums lit up with ​​reports of the failure. ↫ Dan Goodin at Ars Technica The fix is both easy and hilarious: disable secure boot, and you’re good to go. You can also get a bit more technical and remove the SBAT installed by this update, but while that will allow you to keep booting with secure boot enabled, it will leave you vulnerable to the issue the SBAT was supposed to fix. The efficacy of secure boot in home environments is debatable, at best, and while I’m not going to advise anyone to just turn it off and forget about it, I think most OSNews readers can make an informed decision about secure boot by themselves. If you’re using corporate machines managed by your employer’s IT department, you obviously need to refer to them. Microsoft itself has not yet commented on this issue, and is not responding to questions from press outlets, so we’re currently in the dark about how such a game-breaking update got out in the wild. Regardless, this once again shows just how annoying secure boot is. In many cases, the boot problems people trying out Linux run into caused by secure boot, but of course, the blame is placed squarely on Linux, and not on secure boot itself being a hot mess.