Hi,
I just installed Fedora on 2 of my PCs a couple of weeks ago. One version of
Fedora 39 release and one of Fedora 40 to see where things are going.
I learned about this XZ-hack from Ars Technica & The Economist.
I got to the Fedora Magazine article and wasn't really clear on that.
So I fol
ve the same basic issue? Same with any other
> project in FOSS for that matter.
>
> I'd say keep using XZ if the maintainers are quick to fix issues and quick to
> respond to the community's issues, this one for example. Everyone does
> mistakes. It's fine as l
Hi Daniel,
>> All that being said, there are plenty of bits of software that could start
>> using zstd by default and it would probably make sense to do so.
I know this isn't the best test but just looking at
locate xz | grep xz$ | grep kernel.*xz$ | wc -l
13206
ISTM there's a log of .xz comp
Hi,
> See also an upstream GNU discussion on whether more GNU packages
> should start providing zstd, or even lzip, tarballs in addition to xz:
> https://lists.gnu.org/archive/html/bug-standards/2024-04/msg00032.html
I'm sure not going to tell any developers here something they don't know! But
Hello Rich,
> There's also the issue that liblzma is widely used and offers specific
> features which zstd does not[1].
>
> [1] https://github.com/facebook/zstd/issues/395#issuecomment-535875379
Is that about this?
https://github.com/facebook/zstd/tree/dev/contrib/seekable_format
From a Distro
Hi,
> There's no such thing as a "distro decision" on this one, as was
> explained in the thread already.
I'm sure the 'explanation' is all clear to you and the other Developers.
I'm also sure that it's not all that clear to non-Developers.
If the explanation was clear and obvious to me, here
Hello Stephen,
> How a decision to drop xz for some other compression library for software
> would be a fairly slow process. First a person who is willing to do the work
> would come up with a proposal on why it should be done and how it could be
> done. They would be expected to also test to s
Hi Stephen,
Thanks for the explanation.
I just caught up with the article at the New York Times,
Did One Guy Just Stop a Huge Cyberattack?
https://www.nytimes.com/2024/04/03/technology/prevent-cyberattack-linux.html
And the comic that looks like it fits the problem I'm most noticing here!
http
Hi Guinevere,
> TL;DR: as with most security issues, end users should update their systems.
>
> I think you may be caught in some news exaggeration. Don't get me wrong, this
> hack was a huge thing, but it was discovered early enough that most (i'd
> guess almost all) fedora users wont' have to
Hello Kevin,
> I'm hopeful some things will come out of this as it's a chance for us to
> look at our processes and improve them.
I'm glad that's happening. It seems to me that improving those processes would
be Distro decisions. Which I keep understanding don't really exist. At least
not qu
Hello,
I'm setting up some F40 boxes for a client.
Their Dev-box requirement is to install & use *current* stable release versions
of F40 & KDE. For running OS and any tools etc.
I installed Fedora Media Writer from distro repos.
When you exec FMW to write to a usb key the built-in downloadab
> I think, you should download from
>
> https://fedoraproject.org/spins/kde/
>
> and use FMW with the downloaded image or use balenaEtcher to write to the USB
> stick
>
>
>
>
> --
> Peter Boy
> https://fedoraproject.org/wiki/User:Pboy
> p...@fedoraproject.org
Right. From that page I downl
Rama-Kandra: That is our karma.
Neo: You believe in karma?
Rama-Kandra: Karma's a word. Like "love". A way of saying 'what I am here to
do.' I do not resent my karma - I'm grateful for it. Grateful for my wonderful
wife, for my beautiful daughter. They are gifts. And so I do what I must do to
ho
13 matches
Mail list logo
