Welcome to Planet openSUSE

This is a feed aggregator that collects what openSUSE contributors are writing in their respective blogs.

To have your blog added to this aggregator, please read the instructions.

19 October, 2014


Se aproxima el fin de año, tiempo en el que la generosidad florece entre los humanos y muchas personas realizan donaciones a todo tipo de causas. La fundación KDE e.V. lanza una campaña de recaudación de fondos llamada KDE fin de año 2014, en la que pretende que tu donación se convierta en realidad en [&hellip


Hey all! So in the continued effort to get the wiki ready for the next openSUSE release, I am going to ask all of you to help out and try to take some screenshots for the page. Basically, all you need to do is take screenshots for the parts listed on this page, upload them to the wiki and on this page replace the link to the 12.3 image to your new 13.2 image. Don’t forget to change the file description to 13.2 if it says 12.3! Eventually this page will be moved so that it replaces the current distro screenshot page.

18 October, 2014

Pavel Machek: N900 nfs root

19:43 UTC


So you'd like to develop on Nokia N900... It has serial port, but with "interesting" connector. It has keyboard, but with "interesting" keyboard map, you mostly need full X to be useful... and it is too small for serious typing, anyway. You could put root filesystem on SD card, but that is disconnected when back cover is removed. And with back cover in place, you can't reset the machine.

Ok, so NFS. Insecure, tricky to setup, but actually makes the development usable. I started with commit 4f3e8d263^ (because that should have working usb networking according to mailing lists).. and with config from same page. Disadvantage is that video does not work with that configuration... but setting up system blind should not be that hard, right?

Assemblying minimal system with busybox from so I could run second-stage of debootstrap was tricky, and hacking into the resulting debian was not easy, either, but now I have telnet connections and things should only improve.


Ayer anunciamos que se ha lanzado la primera actualización del  escritorio Plasma 5, el escritorio de linux más avanzado de la Comunidad KDE.  Hoy toca hablar de qué nos ofrece, hoy toca hablar de las novedades de Plasma 5.1 El nuevo Plasma 5.1 El  15 de octubre fue lanzado plasma 5.1, la primera gran revisión [&hellip

17 October, 2014

Michael Meeks: 2014-10-17: Friday

22:12 UTCmember

  • Early to rise; quick call, mail, breakfast; continued on slideware - really thrilled to use droidAtScreen to demo the LibreOffice on Android viewer.
  • Off to the venue in the coach; prepped slides some more, gave a talk - rather a hard act to follow at the end of the previous talk: a (male) strip-tease, mercifully aborted before it went too far. Presented my slides, informed by a few recent local discussions:
    Hybrid PDF of LibreOffice under-development slides
  • Quick lunch, caught up with mail, customer call, poked Neil & Daniel, continued catching up with the mail & interaction backlog.
  • Conference ended - overall an extremely friendly & positive experience, in a lovely location - most impressed by my first trip to Brazil; cudos to the organizers; and really great to spend some time with Eliane & Olivier on their home turf.


Cette semaine, KDE a publié Plasma 5.1.0, cette première mise à jour contient de nombreuses nouvelles fonctionnalités depuis la sortie de Plasma 5.0 cet été. Plasma 5.1 apporte un large éventail d’améliorations, provoquant une meilleure stabilité, de meilleures performances et des nouveautés ou améliorations de fonctionnalités.


Grâce aux réactions de la communauté, les développeurs KDE ont été capables de déployer un grand nombre de corrections et d’améliorations dans cette version, parmi lesquelles un thème plus complet et de meilleure qualité respectant le style Breeze, ainsi que le retour de fonctionnalités disparues comme le gestionnaire de tâches par icônes (Icon Tasks Switcher) et l’amélioration de la stabilité et des performances.


Ceux qui voyagent régulièrement apprécieront un meilleur support des fuseaux horaires dans les paramètres de l’horloge, tandis que les autres pourront apprécier le gestionnaire de presse papier remastérisé, leur permettant ainsi de garder un œil à un historique de presse-papier plus visuel.


Le style Breeze pour les « éléments graphiques » est maintenant disponible pour les applications basées sur Qt4, amenant une meilleure harmonie entre les applications. Le travail pour supporter Wayland comme serveur d’affichage pour Plasma est toujours en cours, avec des améliorations mais pas encore suffisantes pour un support complet dans cette 5.1. Les changements concernant plusieurs composants par défaut améliorent l’accessibilité pour les mal-voyants avec l’ajout du support pour les lecteurs d’écran et une navigation au clavier améliorée.


Du coté des améliorations visuelles et du travail sur les fonctionnalités, le focus pour cette sortie a été mis sur la stabilité et les améliorations de performances avec plus de 180 bugs corrigés depuis la 5.0. Plasma 5.1 nécessite KDE Frameworks 5.3 qui amène également de son coté une importante quantité de corrections et d’améliorations de performances.

Aidez !


KDE a également lancé une campagne de financement pour cette fin d’année. Donnez un peu pour soutenir ce magnifique projet et recevez une carte postale avec notre mascotte.

Toutes les infos ici : [en] https://www.kde.org/fundraisers/yearend2014/

 Testez !

Pour tester facilement cette nouvelle version de Plasma, deux solutions :

  • Soit vous êtes joueur vous pouvez l’installer sur votre openSUSE avec les dépôts KDE

Suivre la démarche indiquée ici : [en] http://en.opensuse.org/SDB:KDE_repositories#KDE_Frameworks_5_.26_Plasma_5




El pasado 14 de octubre  fue lanzado  KDE 4.14.2 Aplicaciones y Plataforma,  una nueva actualización del extraordinario conjunto de aplicaciones de la Comunidad KDE. Veamos sus novedades. Lanzado KDE 4.14.2 Aplicaciones y Plataforma Fiel a su actualización mensual, ya tenemos entre nosotros la actualización de las aplicaciones y plataforma de KDE, es decir, KDE 14.14.2. Como [&hellip

16 October, 2014

Michael Meeks: 2014-10-16: Thursday

21:00 UTCmember

  • To the venue, crazy handing out of collateral, various talks with people; Advisory Board call, LibreOffice anniversary Cake cutting and eating (by massed hordes).
  • It is extraordinary, and encouraging to see how many young ladies are at the conference, and (hopefully) getting engaged with Free Software: never seen so many at other conferences. As an unfortunate down-side: was amused to fobb off an un-solicited offer of marriage from a 15yr old: hmm.
  • Chewed some mail, bus back in the evening; worked on slides until late, for talk tomorrow.


After about a year in the making for MimeKit and nearly 8 months for MailKit, they've finally reached 1.0 status.

I started really working on MimeKit about a year ago wanting to give the .NET community a top-notch MIME parser that could handle anything the real world could throw at it. I wanted it to run on any platform that can run .NET (including mobile) and do it with remarkable speed and grace. I wanted to make it such that re-serializing the message would be a byte-for-byte copy of the original so that no data would ever be lost. This was also very important for my last goal, which was to support S/MIME and PGP out of the box.

All of these goals for MimeKit have been reached (partly thanks to the BouncyCastle project for the crypto support).

At the start of December last year, I began working on MailKit to aid in the adoption of MimeKit. It became clear that without a way to inter-operate with the various types of mail servers, .NET developers would be unlikely to adopt it.

I started off implementing an SmtpClient with support for SASL authentication, STARTTLS, and PIPELINING support.

Soon after, I began working on a Pop3Client that was designed such that I could use MimeKit to parse messages on the fly, directly from the socket, without needing to read the message data line-by-line looking for a ".\r\n" sequence, concatenating the lines into a massive memory buffer before I could start to parse the message. This fact, combined with the fact that MimeKit's message parser is orders of magnitude faster than any other .NET parser I could find, makes MailKit the fastest POP3 library the world has ever seen.

After a month or so of avoiding the inevitable, I finally began working on an ImapClient which took me roughly two weeks to produce the initial prototype (compared to a single weekend for each of the other protocols). After many months of implementing dozens of the more widely used IMAP4 extensions (including the GMail extensions) and tweaking the APIs (along with bug fixing) thanks to feedback from some of the early adopters, I believe that it is finally complete enough to call 1.0.

In July, at the request of someone involved with a number of the IETF email-related specifications, I also implemented support for the new Internationalized Email standards, making MimeKit and MailKit the first - and only - .NET email libraries to support these standards.

If you want to do anything at all related to email in .NET, take a look at MimeKit and MailKit. I guarantee that you will not be disappointed.


I hope all who have been using the appliance are enjoying it and finding it useful. I felt it time to update the appliance to include patches to the latest known threats and critical updates to OpenStack.

Latest version 4.0.3

Changes from Github Project

  • Refreshed the Update Repositories to contain latest patches
  • Applied latest Updates to the Appliance
Direct Download links
Please visit the the landing page for the appliance to get more information and documentation here.
Some future things that are coming to look forward to. 
  • Incorporating an Installation media which includes the latest packages from the update repositories for SLES 11 SP3, High Availability Extension, and SUSE Cloud 4 OpenStack. This Installation media will allow me to exclude the full update repositories on the image and therefore reduce the size of the image to just under 2GB. 
  • Moving the build of the image over to openSUSE OBS (Open Build Service) to allow more rapid deployment and testing.
These things will allow for greater portability of the OpenStack software and inherent with it you can install anywhere. Install on VMware. Install on Virtual Box. Install on KVM. Install on Bare Metal. You can truly use this image to deploy and test it out on VMware or KVM, and from the same image you can use it to deploy a full production OpenStack on Bare Metal.  I have even used it to install and test OpenStack out on AWS. So go forth and enjoy installing OpenStack with ease. I challenge you to start using this appliance and see how easy it can be to setup and run OpenStack software. 

Jos Poortvliet: Release party time!

12:08 UTCmember


KDE Plasma 5.1

Plasma 5.1 was released yesterday and it is looking real good. I have been running the 'next generation' Linux desktop on my laptop, courtesy of openSUSE packages made out of regular git snapshots. It was surprisingly stable so I have little worries about the stability of the final 5.1 release and I recommend to check it out ;-)

Of course, we should have a Plasma release party! We haven't had release parties in our place for a while (can't believe that the last one is over 2 years ago...), so it's time to do that again.

Check the release party page for details. The short of it:
  • October 18, 19:00-22:00 or so
  • EldenaerStrasse 28a, Berlin, Germany
  • Bring Your Own Devices Drinks (there's a Spätie (24h convenience store) downstairs). Food is welcome, too.
  • Don't forget to bring your good mood and friends

Further notes:
  • I might do some demoing of what is new in Plasma 5.1, depending on interest.
  • Anybody is welcome, as always, irrespective of color, sex, occupation, shape - heck, even species - you're all super welcome! That means you have to play nice with each other, do I have to say that?
  • If you're afraid of dogs, Popcorn will teach you that you don't have to be. But really, if she freaks you out, we can put her in another room, don't say home out of fear for the hairy monster!
  • Let me know if you're coming - so we have some idea of how crowded our apartment will be!


For the geekos among you: 13.2 is coming SOON and boy, is it chock-full of awesomeness! I'm talking to the Berlin LUG, we will probably do a release party. If possible we'll do it on November 8, so keep that date free for now!


opensuseasiasummitThis weekend is the start of openSUSE’s first Asia Summit in Beijing.

The summit, which is a follow on to an open source summit SUSE sponsored in May, is expected to increase awareness in Asia about openSUSE and other Free and Open Source Software (FOSS).

Students, professors and computer technologists attending the summit will listen to several keynote speakers like Dr. Qiu Shanqin, Chairman of China Open Source Software Promotion Union, and Ralf Flaxa, Vice President of SUSE. Richard Brown, President of the openSUSE board, will also provide a keynote speech to attendees.

Noteable workshops scheduled for the conference on Day 1 are SUSE’s project manager Anja Stock’s about Bugzilla, FOSS community member Eleanor Chen, about Hands-on into Open Source Community, and Saurabh Sood, an engineer working with Unisys Corporation, about Programming with the Qt Framework.

Day 2 workshops include GNOME Foundation member Tong Hui’s discussion on Open Source Community Governance in China, Raghu Nayyar, an open-source Interaction Designer and Front-end Developer from India.givng a workshop on Build your First ownCloud App, and Meaglith Ma, founder of the Chinese community of Docker, providing a workshop about open platforms for distributing applications for developers and system administrators.

The summit gives attendees an opportunity to learn about related technologies and can help to unlock the large potiential of open source contributors and developers within Asia.

Interviews and recordings of openSUSE Asia Summit will be posted on SUSE’s YouTube, Youku and GooglePlus page.

HP, SUSE, Firefox, CODE, CSDN, BLUG, GNOME Summit, OwnCloud, BeiHang University and Beijing University all sponsored the event; openSUSE appreciates the companys’ contributions and willingness to make the first summit a success.

Members of the media are welcome to attend the summit and should email opensuse.asia@gmail.com.

Enjoy the Summit!



I want YOU!With less than three weeks from the release of our beloved green distro and the first release candidate already rocking, we can feel like we are almost there. This is exactly the right time to remember that there is still a lot of work to do and fun to have. Open source is awesome, but only as awesome as the people working on it. Nothing will happen unless YOU make it happen, so it’s time to get your hands dirty!


Every openSUSE release is tested using openQA, which saves developers from trivial and repetitive work. But in order to reach the quality level we all love from openSUSE stable releases much more testing is needed. We would like to test every single combination of hardware -from netbooks to supercomputers- and options -from default values to the most geeky weird configurations-. So please take a look to the online spreadsheet that has been created to organize the manual testing, read the instructions about coordinating the effort and hunt all those nasty bugs!

Celebrating awesomeness

We want to let the world know how awesome openSUSE 13.2 is. That means writing a public announcement, a features guide, a press kit, social messages… What do all those initiatives have in common? They are all based on the major features page at the openSUSE wiki. So please visit the wiki and add your favorite 13.2 feature to that page. What have you being working on since 13.1? What feature blew your mind when you saw it in action? Why were you waiting for that particular version of your favorite tool? If it’s not in the major features page, it didn’t happen.

Taking pictures

A picture is worth a thousand words. Release Candidate 1 already includes the final artwork for openSUSE 13.2, so it’s time to renew the screenshots in the corresponding openSUSE wiki page and to add new ones. You don’t even need to take the screenshots yourself, openQA is full of pictures you can grab. Say cheese!

Highlighting the strengths

The already mentioned announcement and features guide are both great to have a clear overview of what is coming with the new release. But those teams that have hit a major milestone in openSUSE 13.2 maybe want to ensure that the achievement is not lost in the stream of shiny new things. Before (and even after) every release we use to publish several sneak peaks focused on concrete highlights. Just think about a worthy topic you are familiar with (btrfs and snapper, desktop environments, xfs…) and the openSUSE Marketing Team will be glad to help you turning it into a nice article.


Is always nice to have somebody to ask when you find a problem, but is even nicer if you have all the pitfalls and important changes documented in advance. That’s what our release notes are for. As explained by Karl in the Factory mailing list, the release notes are

15 October, 2014

Michael Meeks: 2014-10-15: Wednesday

21:00 UTCmember

  • Up early; mail chew, interesting breakfast with the Krita guy. Freshened up, met up with Eliane & Olivier, coach to the dam; got the booth setup; partner call. Lunch with Olivier; booth duty. Enjoyed the opening talks; back to the booth to re-charge. Out in the evening for dinner, kindly driven by Artur.


Following up on KDE’s announcement of the latest stable release, we have now packages available for 12.3 and 13.1 (a 13.2 repository will be made available after it is out). You will find them in the KDE:Current repository. Current users of this repository will get the new release automatically once they update.

Why you should upgrade? You can take a look at the list of changes to get an idea. These fixes touch many important KDE applications, including KMail, Okular and Dolphin.

Packages are also on their way to openSUSE Factory.

As usual, bugs with the packaging should be reported to openSUSE and upstream bugs should be reported to KDE.

Also, if you like what KDE is doing and you feel you can not contribute directly, you may want to support this end of year fundraiser.

14 October, 2014

Michael Meeks: 2014-10-14: Tuesday

21:00 UTCmember

  • Chewed some mail, great things going on while I'm asleep: seemingly I should sleep / wander off more often. Hacked a little on my backlog of things that need work.
  • Flight to FOZ, Brazil appears to be a lovely place; hacked on the flight, taxi to the hotel, hacked in the hotel at length - fun. Mail chew too; call with partner . Poked at tiled rendering foo until late; sleep.


今天一樣使用 EasyCloud  雲端簡單龍的帳戶, 那就登入 https://gemini.nchc.org.tw/ 來開始練習openSUSE 基礎指令吧.

今天是鐵人賽的最後一天, 我們用 acl ( Access Control List ) 來達陣.


ACL (Access Control List)
  • 擁有者(owner)
  • 群組(group)
  • 其他(other)

倘若檔案或是資料夾的權限, 指定的方式超過三個以上
此時可以利用ACL 指定特定使用者/群組 所可以擁有的權限,來彌補傳統權限的不足

ACL(Access Control List)

  • 在file system 上面必須設定 acl的選項
  • 可以使用 setfacl 設定ACL
    • -m 編輯ACL設定
    • -x 移除單項 ACL 設定
    • -b 移除所有 ACL 設定
    • -d 設定Default ACL
    • -M 還原ACL設定
  • 可以使用 getfacl 觀察ACL設定

-rwxrw-r--+ 1 root users 0 2008-06-21 11:27 test
當設定ACL, 中間的 4-6的bit 就非原本的群組權限, 而是acl mask
  • acl mask --> 特定使用者或是特定群組可以使用的最大權限
  • default acl --> 針對資料夾設定default acl其子資料夾檔案可以繼承設定的acl

Lab: Access Control List <ACL>

#mount |  grep   sda <請觀察資訊, 是否有acl>

#mkdir  /acl
#touch  /acl/test
#echo  "echo 1234"  >>  /acl/test
#chmod  700  /acl/test

#ls -l /acl
#su - max   -c "cat /acl/test" <以使用者max身份查看檔案>失敗
#su - john  -c "cat /acl/test" <以使用者john身份查看檔案>失敗

#getfacl  /acl/test <查看test資訊>
#setfacl -m  u:max:r /acl/test <設定acl, -m 編輯, FIELD:NAME:PERM>
#ls -l  /acl
#getfacl  /acl/test <查看test資訊>

#su - max  -c "cat /acl/test" <以使用者max身份查看檔案>成功
#su - john -c "cat /acl/test" <以使用者john身份查看檔案>失敗

#setfacl -x u:max /acl/test <設定acl, -x 移除, FIELD:NAME>
#ls -l   /acl
#getfacl  /acl/test
#setfacl -b  /acl/test <移除所有的ACL設定>
#ls -l  /acl


練習 acl mask

#ls -l  /acl
#chgrp users /acl/test
#chmod 764 /acl/test
#ls -l  /acl <請觀察資訊>
#su - max  -c "cat /acl/test" <以使用者max身份查看檔案>成功
#su - john -c "cat /acl/test" <以使用者john身份查看檔案>成功
#su - max  -c "/acl/test" <以使用者max身份執行檔案>失敗
#su - john -c "/acl/test" <以使用者john身份執行檔案>失敗
#ls -l  /acl
#setfacl -m user:john:rwx /acl/test
#ls -l  /acl <請觀察資訊,此時顯示的是ACL MASK>
#su - max  -c "/acl/test" <以使用者max身份執行檔案>失敗
#su - john -c "/acl/test" <以使用者john身份執行檔案>成功

#getfacl  /acl/test
#setfacl -m mask::r-- /acl/test <設定acl maskr-->
#getfacl  /acl/test

#su - john -c "/acl/test" <以使用者john身份執行檔案失敗,因受到acl mask 的限制>


練習 default acl

#mkdir /acl/dir
#setfacl -d -m u:john:rwx /acl/dir/ <設定default acl>
#getfacl /acl/dir/ <請觀察資訊>

#touch /acl/dir/test
#ls -l /acl/dir/ <請觀察資訊>

#getfacl /acl/dir/test <請觀察資訊>
#mkdir /acl/dir/john <請觀察資訊>

#ls -l /acl/dir/ <請觀察資訊>
#getfacl /acl/dir/john/ <請觀察資訊>

Fun with Day 30 ~



Geckos are taking over China, at the openSUSE Asia Summit to be held this coming weekend in Beijing. It is the first time that an openSUSE event of this scale is being held so far east of the Geeko Meridian. The organizing committee has worked their socks off for the event, and things are shaping up well. The schedule is ready and their are some great talks lined up. Overall, it promises to be a great event. As for me, I am going to speak about the Google Summer of Code, openSUSE Activities in India and a workshop on the Qt Framework.So, see you in Beijing ;)




¿Tienes un portatil con una tarjeta Wifi Broadcom b4311? Así la hice funcionar yo en openSUSE


Ingredientes: un viejo portátil HP compaq nc4600, una tarjeta interna Broadcom B4311, y openSUSE 13.2 instalada en su disco duro. Cocinar a fuego lento en un foro y saldrá un PC resultón!

En el trabajo dispongo de un portatil como el que he mencionado, que tiene ya bastante tiempo y adolece de RAM, ya que sólo dispone de 1Gb. Por cuestiones del trabajo le instalé un Windows XP desatendido.

Añadir que con este PC aunque tenga red, no me podré conectar a ella, ya que la red del trabajo está restringida, así que el único acceso que tenga a internet será usando mi móvil, y tirando de datos, así que nada de instalar software desde los repositorios ni actualizar!!

A veces tengo tiempo libre y un día me dió por trastear un poco, y quise instalarle una distribución de GNU/Linux de pocos recursos y que se moviera bien en el PC. Y así que leyendo la web del amigo Replicante, leo sobre unas versiones de Manjaro con Fluxbox y otra llamada Netbook edition.

Todo funcionaba “out of the box” que se dice. La instalación sencilla, y el escritorio tenía buena pinta. Y la red funcionaba sin problemas. Este PC tiene un pequeño botón para activarla y desactivarla. Así que probé y vió la red que le ofrecía mi teléfono, y sin complicaciones me conecté y a navegar (poco, para no derrochar datos!)

Otro día con más tiempo libre, me dió por renovar la distro y cambiarla. Siempre me ha parecido que Debian es una de las grandes en el mundo de GNU/Linux y oi hablar de CrunchBang #! Así que decidí descargarla y probarla, dicho y hecho!

Otra instalación sencilla, ambas me reconocieron el sistema de Microsoft sin problemas y me lo ofrecían en el Grub, ambas me reconocieron el hardware y también CrunchBang encendía la wifi con sólo apretar el botón sin problemas.

Ambas funcionaban bien en el portátil. Cierto que no le doy un uso intensivo, pero funcionaba de manera fluida y los escritorios eran atractivos visualmente, a pesar de su escasez de recursos.

Pero como sabéis soy un fan de openSUSE y no podía dejar de probarla también en el PC. Así que decidí descargar la nueva ISO de openSUSE 13.2 e instalarla. Así le echaba un vistazo a la nueva versión en fase Release Candidate.

Descargada la ISO, la quemé en una USB y la instalé en el PC. Pude “saborear” el nuevo theme del instalador de YaST, que por cierto me gustó. Como en las anteriores, la instalación transcurrió sin problemas, aunque al instalador de openSUSE ya estoy algo más acostumbrado. Y


你好 北京!

Hello Beijing and lovely people of openSUSE, I will be reaching there tomorrow, will be at Green Tree Inn close to the summit venue, packing some “sightseeing” before the event, if you are also there early drop me a line . There is a short talk about openSUSE Education scheduled on 19th. Check out the summit website to find out what other interesting stuff is on offer.

See you soon…


13 October, 2014


Hey all, so I have been given the task of working on the 13.2 portal for the openSUSE wiki, and I need your help. If you know of any neat features, software or bug fixes that were included in 13.2 and deserve to be mentioned on the 13.2 Portal then please let me know by leaving a comment or emailing me at ushamim@linux.com (or you can always just add them in yourself ;) ) .

With that said, there is also a need for people who can contribute to the press kit, release marketing and 13.2 related wiki pages. If you have time please consider contributing.

Michael Meeks: 2014-10-13: Monday

21:00 UTCmember

  • Mail chew; call with Kendy, Laszlo, Tor; mail. Lunch with J. team call; more mail chewage, sync. with Matus & Andras. Hurried packing and dropped by J. for some train/plane/etc. to Brazil / LatinoWare.
  • Arrived rather early at LHR; had an interesting chat to a young movie maker off to Jordan; enjoyed rather a good sleep on a lengthy TAM flight to San Paolo.

2014IT鐵人賽-29-sudo 授權管理

今天一樣使用 EasyCloud  雲端簡單龍的帳戶, 那就登入 https://gemini.nchc.org.tw/ 來開始練習openSUSE 基礎指令吧.

今天練習用sudo 指令進行授權管理.



管理者可以利用sudo 授權使用者去執行特定的指令
sudo, sudoedit - execute a command as another user

visudo 會編輯 /etc/sudoers 檔案來授權使用者可以變更其他使用者執行指令
使用者 電腦=(使用者) 指令

另外在安全管理的部份, 有關於密碼的相關設定
利用chage 設定使用者的密碼相關設定
  • Minimum Password Age: 更改密碼後最少要過幾天才能再換密碼
  • Maximum Password Age: 密碼幾天之後一定要換
  • Password Expiration Warning: 密碼過期前幾天警告
  • Password Inactive: 密碼過期後幾天鎖定
  • Last Password Change: 上次修改密碼的日期
  • Account Expiration Date: 帳戶過期日

/etc/shadow 檔案存放密碼的相關設定
帳號:加密過後的雜湊值:上次修改密碼的日期:Min age:Max age:幾天前警告:幾天後鎖定:帳戶過期日

  • 可以使用 #chage -d 0 使用者帳號
  • 或是使用 #passwd -e 使用者帳號


Lab: sudo

目的: 授權max可以變更使用者的password, 除了變更root的密碼以外

#使用者 電腦=(使用者) 指令
max ALL = /usr/bin/passwd [a-Z]*, !/usr/bin/passwd root

並註解 35 行前後
#Defaults targetpw # ask for the password of the target user i.e. root
#ALL ALL=(ALL) ALL # WARNING! Only use this together with 'Defaults targetpw'!

#su - max
>passwd john < 變更john的密碼, 失敗>
>sudo passwd john <要求輸入max的密碼, 即可變更使用者密碼>
>sudo passwd root <失敗, 不允許變更root 密碼>

目的:授權john可以變更使用者的password, 除了變更root的密碼以外,且不需輸入密碼

john ALL = NOPASSWD:/usr/bin/passwd [a-Z]*, !/usr/bin/passwd root

#su - john
>passwd max
>sudo passwd max

Lab: 設定密碼的相關設定

#chage -l john <列出john密碼的相關設定>
#grep john /etc/shadow <請觀察相關資訊>
#chage john <設定john的密碼相關設定>
# grep john /etc/shadow <請觀察相關資訊>
#chage -d 0 john <設定john一登入必須更改密碼>
# grep john /etc/shadow <請觀察相關資訊>

#su - john
> < 一登入就被要求要更改密碼>

Fun with Day 29 ~


¿Quieres echar un vistazo al sitio donde trabajan desarrolladores de Linux? Pues ellos mismos nos los muestran


Desde la web de Linux.com siguen con sus esporádicas visitas a los sitios de trabajo de diferentes desarrolladores del kernel Linux.

Después de poder ver el sitio de trabajo de varios desarrolladores del kernel Linux, entre ellos el gran jefe Linus Torvalds hoy toca otra entrega más. Los anteriores han sido:

En esta ocasión John Linville, que trabaja en Red Hat es quien nos mostrará su desordenada oficina en casa y compartirá su afición por la retro-informática, otra de sus pasiones.

Gracias a Libby Clark por la entrevista y a la web Linux.com por permitir la traducción y difusión! Puedes ver el artículo original en este enlace:

John Linville es el ingeniero principal en Red Hat y mantenedor de redes inalámbricas LAN en el kernel de Linux. En este vídeo nos hace una visita guiada en la oficina de su casa, incluyendo sus estaciones de trabajo Fedora y Red Hat Enterprise Linux, su colección de hardware antiguo y algos proyectos en camino sobre retro-computación.

¿En qué área del kernel trabajas y en qué estás trabajando ahora?

Oficialmente soy el mantenedor del las redes LAN inalámbricas en el kernel. Pero más recientemente he estado en otros asuntos como los relacionados con la red en la nube y SDN.

¿Qué es lo que más te gusta de tu lugar de trabajo?

La mejor parte es que está en casa. Vivo a una hora de las oficinas de Red Hat, y ese tiempo de tránsito está desaprovechado cuando voy a la oficina. Además trabajar en casa hace más fácil la transición entre el trabajo, la casa y las aficiones.

¿Qué es lo que menos te gusta?

No me gusta lo desordenado que se vuelve. Comparto el espacio entre el trabajo y las aficiones, y de vez en cuando uno u otro causa algún revuelo en el espacio. Cuando el desorden se amontona mucho, eso empieza a afectar a mi humor. Así que no dejo que se amontone demasiado. ;)

¿Cual es el sitio de trabajo más extraño que has utilizado?

Al principio de i carrera trabajé en IBM. Durante esos primeros años, fui un poco como una máquina, constantemente estaba probando, intentando o lo que fuera. Pasé mucho tiempo en el laboratorio. Tenía una oficina pero estaba al otro extremo del edificio y me parecía que estaba muy lejos para ser productivo.

Poco después, el laboratorio se reformó tirando paredes de un recibidor anexo. Algunos de nosotros tomamos esa oportunidad para mover nuestros escritorios a esa expansión del laboratorio (conocido como recibidor) así podíamos ser productivos y además tener un escritorio propio

Sankar P: Technology Catchup

08:01 UTCmember

Coincidentally three different people asked me in the last month, to write about new technologies that they should be knowing, to make them more eligible to get a job in a startup. All these people have been C/C++ programmers, in big established companies, for about a decade now. Some of them have had only glimpses of any modern technologies.

I have tried a little bit (with moderate success) to work in all layers of programming with most of the popular modern technologies, by writing little-more-than-trivial programs (long before I heard of the fancy title "full stack developer"). So here I am writing a "technology catchup" post, hoping that it may be useful for some people, who want to know what has happened in the technologies in the last decade or so.

Disclaimer 1: The opinions expressed are totally biased as per my opinion. You should work with the individual technologies to know their true merits.

Disclaimer 2: Instead of learning everything, I personally recommend people to pick whatever they feel they are connected to. I, for example, could not feel connected to node-js even after toying with it for a while, but fell in love with Go. Tastes differ and nothing is inferior. So give everything a good try and pick your choice. Also remember what Donald Knuth said, "There is difference between knowing the name of something and knowing something". So learn deeply.

Disclaimer 3: From whatever I have observed, getting hired in a startup is more about being in the right circles of connection, than being a technology expert. A surprisingly large number of startups start with familiar technology than with the right technology, and then change their technology, once the company is established.

Disclaimer 4: This is actually not a complete list of things one should know. These are just things that I have come across and experimented a little bit at least. There are a lot more interesting things that I would have have missed. If you need something must have been in the list, please comment :-)

With those disclaimers away, let us cut to the chase.

Version Control Systems

The most prominent change in the open source arena, in the last decade or so, is the invention of Git. It is a version controlled system initially designed for keeping the kernel sources and has since then become the de-facto VCS for most modern companies and projects.

Github is a website that allows people to host their open source projects. Often startups recruit people based on their github profile. Even big companies like microsoft, google, facebook, twitter, dropbox etc. have their own github accounts. I personally have received more job queries through my github projects than via my linkedin profile in the last year.

bitbucket is another site that allows people to host code and give even private repos. A lot of the startups that I know of use this, along with the jira project management software. This is your equivalent of MS Project in

2014IT鐵人賽-28-透過 rsync進行異地備份

今天一樣使用 EasyCloud  雲端簡單龍的帳戶, 那就登入 https://gemini.nchc.org.tw/ 來開始練習openSUSE 基礎指令吧.

今天練習用rsync 指令進行異地備份吧, 所以要使用我們之前所建立的另外一台虛擬機器.
上次的練習我們已經介紹過備份的範圍以及使用 tar 指令來進行備份, 今天我們來進行兩台電腦的異地備援.


Lab: rsync 異地備援

Server /tmp/test 目錄 ---------rsync同步-----------------> Client  


#mkdir /root/.ssh <建立~/.ssh  目錄,供日後存放金鑰使用>
#rpm -q rsync <檢查是否安裝rsync套件>
#chkconfig  rsync --list                                        
#chkconfig  rsync on <啟動 rsync 服務>
#chkconfig  rsync --list                                        
#rcxinetd restart <重新啟動xinetd>
#mkdir  /tmp/test                                               


#mkdir /root/.ssh <建立~/.ssh  目錄,供日後存放金鑰使用>
#ssh-keygen -d <建立金鑰,設定存放目錄,不設定密碼>
Generating public/private dsa key pair.
Enter file in which to save the key (/root/.ssh/id_dsa): <請輸入Enter 確認存檔位置>        

Enter passphrase (empty for no passphrase): <請輸入Enter 不使用密碼>
Enter same passphrase again:         <請輸入Enter 不使用密碼>

#ls /root/.ssh <請觀察資訊, 會出現公/私鑰>
#scp /root/.ssh/id_dsa.pub  伺服器的IP:/root/.ssh/authorized_keys         
<將公鑰id_dsa.pub scp方式 傳送到同學的/root/.ssh/並命名為authorized_keys>
The authenticity of host ' (' can't be established.
RSA key fingerprint is 4e:52:bf:ad:59:bf:59:33:af:62:d2:c7:72:40:78:e0.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '' (RSA) to the list of known hosts.
Password: <請輸入對方root 密碼>

#ssh 伺服器的IP <此時登入不需要密碼,即可登入>
遠端#exit <登出遠端>

撰寫一個shell script 來利用rsync 同步server

#vi /root/sync.sh <撰寫一個shell 同步目錄>       
# 使用 rsync                   來源目錄                目的地目錄
rsync  -alvR --delete -e ssh 伺服器的IP:/tmp/test    /

<rsync同步使用ssh方式 server上的/tmp/test 到本機上>     


請於 Client 上面
#rm  /tmp/test <如果有之前練習的 test 檔案先刪除>
#ls  /tmp <請觀察 /tmp目錄>
#sh  /root/sync.sh <執行剛剛的 shell script>
#ls  /tmp <請觀察是否有同步 /tmp/test 目錄到client>

#touch  /tmp/test/file1
#touch  /tmp/test/file2
#touch  /tmp/test/file3

請於 Client 上面
#sh /root/sync.sh <執行剛剛的 shell script>
#ls /tmp/test <請觀察是否有同步 /tmp/test 目錄到client>

請於Server上面刪除 其中一個檔案
#rm  /tmp/test/file2

請於 Client 上面
#sh /root/sync.sh <執行剛剛的 shell script>
#ls /tmp/test <請觀察是否有同步 /tmp/test 目錄到client>

Fun with Day 28 ~


Hari Rabu dan Kamis, 15-16 Oktober 2014, rencananya Excellent akan mengadakan training untuk cPanel/WHM. cPanel/WHM adalah salah satu aplikasi control panel populer yang banyak digunakan untuk mengelola domain dan hosting. 1 WHM bisa memuat banyak domain dan masing-masing domain memiliki 1 control panel yang memudahkan user untuk melakukan pengelolaan domain dan hosting masing-masing.

Saya pribadi menggunakan cPanel sejak sekitar tahun 2005 dan saat kemudian memiliki beberapa domain dan hosting yang dikelola, saya mengembangkannya dengan mengambil paket reseller di hostgator sejak tahun 2008-2009 hingga akhirnya beberapa tahun terakhir saya mengelola sendiri paket domain dan hosting klien dengan melakukan instalasi cPanel/WHM pada VPS yang saya kelola.

Training cPanel ini sangat bermanfaat bagi rekan-rekan di perusahaan/lembaga yang memiliki banyak domain/sub domain dan berniat menyatukan pengelolaannya dalam 1 infrastruktur server namun disisi lain memberikan keleluasaan bagi para PIC masing-masing domain untuk secara independen mengelolanya. Misalnya ada suatu group perusahaan yang memiliki banyak anak perusahaan. Group perusahaan tersebut bisa melakukan instalasi WHM untuk kemudian memberikan account cPanel untuk masing-masing anak perusahaan. IT pada anak perusahaan bisa leluasa melakukan pengelolaan untuk domainnya dan disisi lain IT group perusahaan bisa mudah melakukan manajemen terpusat.

cpanel-whm-logo (1)

Contoh diatas bisa diadaptasi pada suatu kementerian yang memiliki banyak unit/lembaga/dirjen. Bisa juga diterapkan pada sekolah-sekolah atau pada lembaga yang memiliki unit/cabang independen.

Benefit lain adalah untuk para freelancer/web desainer yang mengelola banyak domain dan hosting milik klien. Daripada menyerahkannya pada pihak ketiga, mengapa tidak sekalian saja mengelolanya sendiri.

Contoh benefit lainnya lagi adalah untuk para staff IT yang tertarik pada dunia web dan ingin menghasilkan tambahan pendapatan. Ia bisa membuat semacam perusahaan hosting kecil-kecilan yang mudah dikelola dan kemudian bisa menghidupi/memenuhi kebutuhannya dalam beronline ria dari penghasilan yang ia dapatkan.

Awalnya training cPanel/WHM ini didesain untuk selesai dalam 1 hari, namun atas pertimbangan perluasan materi dan agar pembahasannya lebih mendalam, training ini diset menjadi 2 hari, dengan materi pertama membahas mengenai konsep DNS, domain dan hosting public yang dilanjutkan dengan instalasi dan setup cPanel, kemudian dilanjutkan dengan pembahasan mengenai konfigurasi awal dan pengelolaan mendasar. Materi pembahasan pada hari kedua dititik beratkan pada pengelolaan manajemen hosting, termasuk mekanisme packaging, reseller, kuota, bandwidth, instalasi addon dan lain-lain.

Semua materi yang dibahas sebenarnya merupakan pengalaman saya pribadi dalam melakukan pengelolaan domain dan hosting selama kurun waktu 2005-2014. Penjelasan mengenai konsep DNS public, termasuk forward DNS, PTR Records/Reverse DNS, child name server dan lain-lain misalnya, jarang saya temukan di tutorial yang ada di internet dan agak membingungkan saat saya melakukan setup DNS public/domain/hosting sendiri.

Karena terkait dengan pengelolaan domain secara public, training ini nantinya menggunakan infrastruktur VPS/cloud milik Excellent dengan dedicated IP address saat melakukan instalasi cPanel/WHM. Semua proses instalasi dan pengelolaan dilakukan secara online menggunakan jalur internet Excellent yang saat ini menggunakan FO dengan kecepatan 10 Mbps.

Jika berminat mengikutinya, silakan baca informasi detail mengenai training disini : Training Web Hosting (cPanel, WHM & DNS Hosting), 15-16 Oktober 2014

12 October, 2014

Michael Meeks: 2014-10-12: Sunday

21:00 UTCmember

  • Off to NCC, extremely tired; Tony spoke. Back for a roast lunch; applied slugging, put up some lights & a clock in H's room, fixed M's cupboard. Dinner, showed Babes some Ball Brothers, put babes to bed. Sermon; sleep early.

11 October, 2014

Michael Meeks: 2014-10-11: Saturday

21:00 UTCmember

  • Lie-in, large breakfast: porridge & boiled egg; off to Brandon for a wander through the forest, and play in the playground. Home for a fine pizza lunch. Dropped E. off at a sleep-over.
  • Plugged away at E-mail, and worked late on a profiling problem.


As of October 11th, a bunch of new rpm for FGLRX has been released for openSUSE 11.4 to 13.1 including Tumbleweed.
a special patch has been added for supporting up to kernel 3.17

Installation / update

Please refer to the wiki page SDB:AMD_fgrlx_legacy

Notice radeon HD5xxx or above only

This release concern only owners of radeon HD5xxx or above.
For older gpu, the fglrx-legacy is still 13.1, and thus didn’t work with openSUSE 12.3 or above.
Beware of that, and prefer the free open-source radeon driver which came out of the box from your openSUSE distribution.
For 12.3 and especially 13.1 the free radeon often offer a better experience than the old fglrx-legacy, especially for HD2xxx-HD4xxx range.

openSUSE Factory / 13.2

Dear fellow, unfortunately an still open bug at AMD is not yet resolved to make FGLRX working under newer xorg version.
There’s also a re-organization of how xorg files will be placed in the file system. Once both of them will be fixed Sebastian will produce a newer script.
If those appear soon we perhaps will see rpm fglrx for 13.2.

Release note about 14.9

AMD Full release note

New Features:
The following section provides a summary of new features in this driver version.

   AMD Radeon™ R9 285
   Ubuntu 14.04  support
   RHEL 7.0 support
   Install improvements
      Package and distribution generation options; recommend options set by default
           Help user install generated distribution package once created
      Pop-up messages to help guide users through the install process
           Identifying and installation of pre-requisites 

Resolved Issues:
This section provides information on resolved known issues in this release of the AMD Catalyst Linux Software Suite.

  Witcher 2 random lock-up seen when launching the application
  Screen corruption when connecting an external monitor to some PowerXpress AMD GPU + Intel CPU platforms
  Intermittent X crash when the user does a rotation with Tear Free Desktop enabled
  Failure on exit of OpenGL programs
  Error message being displayed when a user does run clinfo in console mode
  Blank screen when hot plugging an HDMI monitor from a MST hub
  System hang after resume from S3/S4 in High Performance mode on PowerXpress AMD GPU + Intel CPU platforms
  Corruption or artifacting on the bottom right corner of the screen before booting into login UI during restart
  Occasional segmentation fault when running ETQW
  xscreensavers test failing with multi-GPU Crossfire™ configurations
  Motion Builder severe flickering while toggling full screen
  Intermittent crashing and corruption observed while running X-Plane
  Some piglit and Khronos OpenGL conformance test failures
  Displays occasionally going black when startx is run on Ubuntu 14.04 after switching to integrated GPU on PowerXpress AMD GPU + Intel Haswell CPU system platforms
  A connected external display getting disabled when unplugging AC power from laptop platforms
  An auto log out when double clicking the picture under desktop server times on PowerXpress AMD GPU + Intel CPU platforms

Known Issues:
The following section provides a summary of open issues that may be

Older blog entries ->