Sponsored Links

Debian GNU/Linux Running On Mobile Devices Like PocketCHIP, Samsung Galaxy, ZeroPhone, & Pyra

Debian is also called the universal operating system as it is used as a base for hundreds of Linux distributions. So, this claim also underlines that Debian should run on mobile devices too–right? Well, Debian developers are continuously working to add support for new devices and adapt it as per hardware and GUI capabilities of different devices.
Along the similar lines, during the recent DebConf17, which was held in Montréal, Canada, more than 50 developers met to discuss this issue, as reported by Softpedia.
Debian Project’s W. Martin Borgert wrote that a number of mobile devices running Debian GNU/Linux were shown at DebConf17. These devices were:
PocketCHIP — A small handheld computer with keyboard, USB, WiFi, running Debian 8 or 9.
Samsung Galaxy S Relay 4G — A Android phone with physical keyboard. It can already run portions of Debian userspace on Android kernel.
ZeroPhone — An open source, Raspberry Pi Zero-based smartphone with small screen and classic keypad. It ran Debian-based Raspbian OS.
Pyra — A handheld computer with touchscreen. It’ll come with Debian preinstalled.

Source: https://fossbytes.com/debian-on-mobile-devices-pocketchip-samsung-galaxy-zerophone-pyra/
Submitted by: Arnfried Walbrecht

Security Team Weekly Summary: August 17, 2017

The Security Team weekly reports are intended to be very short summaries of the Security Team’s weekly activities.

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: ubuntu-hardened@lists.ubuntu.com

During the last week, the Ubuntu Security team:

  • Triaged 537 public security vulnerability reports, retaining the 134 that applied to Ubuntu.
  • Published 16 Ubuntu Security Notices which fixed 36 security issues (CVEs) across 17 supported packages.

Ubuntu Security Notices

Bug Triage

Mainline Inclusion Requests

Updates to Community Supported Packages

  • Simon Quigley (tsimonq2) provided debdiffs for trusty-zesty for vlc (LP: #1709420)


What the Security Team is Reading This Week

Weekly Meeting

More Info

Almost every household has an unsolved Rubiks Cube but you can esily solve it learning a few algorithms.

Linux desktop GUI GNOME celebrates its 20th birthday

By 1997, there had long been graphical Unix and Linux graphical user interface (GUI) desktops, but none of them had gathered much support. KDE, which was destined to become a major desktop, had started in 1996, but it was still facing opposition for its use of the Qt license. The GNOME Project, founded by Miguel de Icaza and Federico Mena Quintero on August 15, 1997, was created to build a GUI without the use of any non-General Public License (GPL) software. Thus, a struggle began between the two Linux desktops, which continues to this day.
Since the initial release of GNOME 1.0 in 1999, there have been 33 stable releases. That first release would set the framework for all future versions. It was based on the GIMP ToolKit (GTK+). Then, and now, GNOME offered a friendly platform for developers and supported many programming languages. Its libraries are available for any application under the terms of the GNU Lesser General Public License (LGPL). GNOME’s applications are available under the GPL.
GNOME is more than just a desktop. It’s a complete family of desktop applications. These include the Evolution, email client; AbiWord, a word-processor; and Epiphany, a web browser.
For many years, KDE and GNOME would struggle over Linux desktop domination. While there were other significant early Linux GUIs — GNUStep (aka OpenStep), Xfce, and Enlightment — GNOME and KDE would dominate Linux for many years.

Source: http://www.zdnet.com/article/linux-desktop-gui-gnome-celebrates-its-20th-birthday/
Submitted by: Arnfried Walbrecht

How to set up Kubernetes with conjure-up and monitor apps with Weave

On August 2, Luke Marsden (Weaveworks) and Marco Ceppi (Canonical) presented a webinar on how to Speed up your software development lifecycle with Kubernetes. In the session they described how you can use conjure-up and Weave Cloud to set up, manage and monitor an app in Kubernetes. In this tutorial we’re going to show you how to set up Kubernetes on any cloud, the conjure-up way. Once the cluster is spun up, you’ll use Weave Cloud to deploy an application, explore the microservices and monitor the app as it runs in the cluster.

Why Canonical & Weaveworks?

Canonical’s conjure-up makes it easy to deploy and operate Kubernetes in production, using a neat, easy-to-use CLI installer. Weave Cloud fills in the gaps missing with a Kubernetes install and provides the tools necessary for a full development lifecycle:

  • Deploy – plug output of CI system into cluster so that you can ship features faster
  • Explore – visualize and understand what’s happening so that you can fix problems faster
  • Monitor – understand behavior of running system so that you can fix problems faster using Prometheus

some text

Weave Cloud Development Lifecycle

Installing Kubernetes with conjure-up

  1. Use conjure-up to install Kubernetes on your cloud infrastructure (LXD provider is not currently supported by Weave Cloud)
  1. Run the following script to enable privileged containers & set up RBAC properly:
juju config kubernetes-master allow-privileged=true juju config kubernetes-worker allow-privileged=true juju ssh kubernetes-master/0 -- 'sudo snap set kube-apiserver authorization-mode=RBAC' sleep 120 juju ssh kubernetes-master/0 -- '/snap/bin/kubectl create clusterrolebinding root-cluster-admin-binding --clusterrole=cluster-admin --user=admin && /snap/bin/kubectl create clusterrolebinding kubelet-node-binding --clusterrole=system:node --user=kubelet'
  1. Run
    export KUBECONFIG=<path-to-kubeconfig>

    find the path from e.g.

    cat ~/bin/kubectl.conjure<tab>

    You may wish to make this permanent by adding the export command to your ~/.bash_profile or equivalent shell startup script. Once you have the environment variable in place, you can run kubectl commands against the cluster. Try it out with

    kubectl get nodes

Connecting your conjured up cluster to Weave Cloud

  1. Next you will visualize the Kubernetes cluster in Weave Cloud. Sign up for Weave Cloud. Select Setup → Kubernetes → Generic Kubernetes and then cut and paste the Kubernetes command from the Weave Cloud UI into your terminal:

some text

Weave Cloud Token and command location

For example, you would run:

kubectl apply -n kube-system -f \ "https://cloud.weave.works/k8s.yaml?t=[CLOUD-TOKEN]&k8s-version=$(kubectl version | base64 | tr -d '\n')"


  • [CLOUD-TOKEN] is the Weave Cloud token.

The cluster should now appear in Weave Cloud. Check Explore → Hosts to see all five hosts:

some text

  1. Deploy the Sock Shop by first creating the namespace, checking it out of Git and then changing the kubernetes deploy directory:
kubectl create namespace sock-shop git clone https://github.com/microservices-demo/microservices-demo cd microservices-demo kubectl apply -n sock-shop -f deploy/kubernetes/manifests

Now you should be able to see the Sock Shop in Weave Cloud Explore (click Controllers and select the sock-shop namespace filter from the bottom left):

some text

And you should be able to access the shop in your browser, using the IP address of one of your Kubernetes nodes at port :30001.

some text

Once the app is loaded, try out the Monitoring tool in Weave Cloud to observe the latencies between services in the cluster. Click Monitor and then run the following query:


some text

You should see all the different requests latencies for all the services in the sock shop. This is possible because the sock shop is instrumented with the Prometheus client libraries.


In this post, we showed you how to get from nothing to a Kubernetes cluster using Canonical’s conjure-up. We then showed you how to install the Weave Cloud agents and just scratched the surface of what you can do with Weave Cloud: monitoring the request latencies on a Prometheus-instrumented app, the sock shop.

Next steps

Ubuntu Foundations Development Summary – August 16, 2017

This newsletter is to provide a status update from the Ubuntu Foundations Team. There will also be highlights provided for any interesting subjects the team may be working on. If you would like to reach the Foundations team, you can find us at the #ubuntu-devel channel on freenode.


The State of the Archive

  • After no small amount of effort, the perl 5.26 and gcc-7 transitions migrated to artful on the 10th, unblocking many of the packages that had been stuck in -proposed.
  • As GCC 7 is now the default compiler in artful, the build failures reported at https://qa.ubuntuwire.org/ftbfs/rebuilds/test-rebuild-20170706-gcc7-artful.html now apply to 17.10. Please help us resolve these failing packages for the release.
  • Next in line we have the Qt 5.9 transition. Look for more news about this next week!

Upcoming Ubuntu Dates

Weekly Meeting

Ubuntu Budgie Distro: Simple, Clean and User-Friendly

Ubuntu Budgie is one of the few Linux distros to offer integration of a Budgie desktop-only edition, other than Solus OS, whose developers created it.
Ubuntu Budgie is classy and user-friendly. It does not sacrifice performance for reliance on a simple design. It is maintained by a United Kingdom-based developer community. Previously called “Budgie-Remix,” it is an Ubuntu-based distribution featuring the Budgie desktop.
Although based on the Ubuntu Linux family, Ubuntu Budgie is not from Canonical, Ubuntu’s parent company. The Solus community originally developed Budgie from scratch and tightly integrated the desktop user interface with the GNOME stack.
Designed with the modern user in mind, Budgie is known for its simplicity and elegance. It has a plain and clean style and is easy to use.
The Budgie desktop is not a fork of any other desktop project. Its designers planned for an easy integration into other distros, and it is an open source project in its own right.
The integration of an improved Budgie desktop environment with a solid Ubuntu core makes Ubuntu Budgie an interesting and stable Linux distro.

Source: http://www.linuxinsider.com/story/84735.html?rss=1
Submitted by: Arnfried Walbrecht

Ubuntu Server Development Summary – 15 Aug 2017

Hello Ubuntu Server!

The purpose of this communication is to provide a status update and highlights for any interesting subjects from the Ubuntu Server Team. If you would like to reach the server team, you can find us at the #ubuntu-server channel on Freenode. Alternatively, you can sign up and use the Ubuntu Server Team mailing list.

Spotlight: cloud-init at DebConf17

Josh on the cloud-init team presented at DebConf17 last week. His talk included an introduction to how cloud-init works and then an overview of recent developments made by the team. Replay is available on the DebConf17 website.

cloud-init and curtin


  • Update to capabilities documentation to include CLI interface features.
  • Fix AWS NVMe ephemeral storage setup (LP: #1672833)
  • Fix EC2 datasource moved to init-local stage (LP: #1709772)
  • Fix v2 yaml preserving bond/bridge parameters when rendering (LP: #1709180)
  • Added meetingology bot to IRC channel for bi-weekly meeting


  • Update vmtest to purge symlinks from output collection due to missing links
  • Update Jenkins artifact collection regex

git ubuntu

As a reminder, links to the first two posts in the ‘git ubuntu’ series are below.

Recently there was also a discussion on ubuntu-devel as to what tags expected when using git ubuntu.

Bug Work and Triage

IRC Meeting

Ubuntu Server Packages

Below is a summary of uploads to the development and supported releases. Current status of the Debian to Ubuntu merges is tracked on the Merge-o-Matic page. For a full list of recent merges with change logs please see the Ubuntu Server report.

Uploads to the Development Release (Artful)

asterisk, 1:13.14.1~dfsg-2ubuntu4, costamagnagianfranco asterisk, 1:13.14.1~dfsg-2ubuntu3, costamagnagianfranco byobu, 5.121-0ubuntu1, kirkland dpdk, 17.05.1-2, None golang-context, 1.1-2ubuntu1, mwhudson golang-github-gorilla-mux, 1.1-3ubuntu1, mwhudson golang-github-mattn-go-colorable, 0.0.6-1ubuntu7, mwhudson golang-github-mattn-go-sqlite3, 1.2.0+git20170802.105.6654e41~dfsg1-1ubuntu1, mwhudson golang-github-pborman-uuid, 0.0+git20150824.0.cccd189-1ubuntu9, mwhudson golang-gocapability-dev, 0.0~git20160928.0.e7cb7fa-1ubuntu2, mwhudson golang-gopkg-flosch-pongo2.v3, 3.0+git20141028.0.5e81b81-0ubuntu9, mwhudson golang-gopkg-inconshreveable-log15.v2, 2.11+git20150921.0.b105bd3-0ubuntu12, mwhudson golang-gopkg-lxc-go-lxc.v2, 0.0~git20161126.1.82a07a6-0ubuntu5, mwhudson golang-gopkg-tomb.v2, 0.0~git20161208.0.d5d1b58-1ubuntu2, mwhudson golang-petname, 2.7-0ubuntu2, mwhudson golang-x-text, 0.0~git20170627.0.6353ef0-1ubuntu1, mwhudson golang-yaml.v2, 0.0+git20170407.0.cd8b52f-1ubuntu1, mwhudson libvirt, 3.6.0-1ubuntu1, paelzer libvirt-python, 3.5.0-1build1, mwhudson lxc, 2.0.8-0ubuntu4, doko markupsafe, 1.0-1build1, mwhudson mod-wsgi, 4.5.17-1, None mongodb, 1:3.4.7-1, None nagios-nrpe, 3.2.0-4ubuntu1, nacc numactl, 2.0.11-2.1, None php-defaults, 54ubuntu1, nacc php7.1, 7.1.8-1ubuntu1, nacc pwgen, 2.08-1, None pylibmc, 1.5.2-1build1, mwhudson python-cffi, 1.9.1-2build2, doko python-django, 1:1.11.4-1ubuntu1, vorlon python-gevent, 1.1.2-build2, mwhudson python-sysv-ipc, 0.6.8-2build4, mwhudson python-tornado, 4.5.1-2.1~build2, mwhudson requests, 2.18.1-1, None urwid, 1.3.1-2ubuntu2, doko Total: 36 

Uploads to Supported Releases (Trusty, Xenial, Yakkety, Zesty)

cgroup-lite, trusty, 1.11~ubuntu14.04.3, serge-hallyn libapache2-mod-auth-pgsql, zesty, 2.0.3-6.1ubuntu0.17.04.1, racb libapache2-mod-auth-pgsql, xenial, 2.0.3-6.1ubuntu0.16.04.1, racb libapache2-mod-auth-pgsql, trusty, 2.0.3-6ubuntu0.1, racb libseccomp, trusty, 2.1.1-1ubuntu1~trusty4, mvo libvirt, trusty, 1.2.2-0ubuntu13.1.21, paelzer libvirt, xenial, 1.3.1-1ubuntu10.13, paelzer libvirt, zesty, 2.5.0-3ubuntu5.4, paelzer logcheck, xenial, 1.3.17ubuntu0.1, nacc logcheck, trusty, 1.3.16ubuntu0.1, nacc lxc, trusty, 2.0.8-0ubuntu1~14.04.1, stgraber lxcfs, trusty, 2.0.7-0ubuntu1~14.04.1, stgraber lxd, trusty, 2.0.10-0ubuntu1~14.04.1, stgraber lxd, zesty, 2.16-0ubuntu2~ubuntu17.04.1, stgraber lxd, xenial, 2.16-0ubuntu2~ubuntu16.04.1, stgraber maas, xenial, 2.2.2-6099-g8751f91-0ubuntu1~16.04.1, andreserl maas, zesty, 2.2.2-6099-g8751f91-0ubuntu1~17.04.1, andreserl mongodb, xenial, 1:2.6.10-0ubuntu1.1, nacc php5, trusty, 5.5.9+dfsg-1ubuntu4.22, mdeslaur php5, trusty, 5.5.9+dfsg-1ubuntu4.22, mdeslaur php7.0, zesty, 7.0.22-0ubuntu0.17.04.1, mdeslaur php7.0, xenial, 7.0.22-0ubuntu0.16.04.1, mdeslaur php7.0, xenial, 7.0.22-0ubuntu0.16.04.1, mdeslaur php7.0, zesty, 7.0.22-0ubuntu0.17.04.1, mdeslaur pollinate, trusty, 4.25-0ubuntu1~14.04.1, smoser pollinate, xenial, 4.25-0ubuntu1~16.04.1, smoser postfix, xenial, 3.1.0-3ubuntu0.1, nacc samba, zesty, 2:4.5.8+dfsg-0ubuntu0.17.04.5, costamagnagianfranco samba, zesty, 2:4.5.8+dfsg-0ubuntu0.17.04.5, costamagnagianfranco ubuntu-advantage-tools, trusty, 2, vorlon ubuntu-advantage-tools, xenial, 2, vorlon ubuntu-advantage-tools, zesty, 2, vorlon Total: 32 

Contact the Ubuntu Server team

Windows Subsystem For Linux (WSL) Comes To Windows Server

After bringing Windows Subsystem For Linux (WSL) to Windows 10 operating system and making the installation more hassle-free by adding them to Windows Store, Microsoft is all set to bring the goodness of Linux to Windows Server.
In an announcement on its blog, Microsoft wrote that WSL can be installed on Windows Insider Builds of Windows Server. After this, developers and sysadmins can use Linux tools alongside PowerShell and CMD.
Just in case you’re wondering why Microsoft decided to add Windows Subsystem For Linux to Windows Server, doing so makes more sense as compared to regular Windows 10. Windows Server is used by sysadmins, developers, people building/managing services, etc. Occasionally, they need tools available on Linux.
Compared to running Linux in a virtual machine, WSL runs unmodified Linux binaries natively on Windows. With its help, one can run/install almost any Linux tool integrated into Windows.
Please note that while you can run daemons and jobs like PostgreSQL, MYSQL, sshd, etc., via an interactive shell, you can’t use WSL to run persistent Linux servers, jobs, etc.

Source: https://fossbytes.com/install-windows-subsystem-for-linux-wsl-on-windows-server/
Submitted by: Arnfried Walbrecht

LXD: Weekly Status #10


Christian Brauner (@brauner) and Stéphane Graber (@stgraber) were attending Debconf17 in Montreal.
We had the opportunity to catch up with colleagues, friends and users.

Stéphane gave a talk about LXD and system containers on Debian, a recording is available:

Senthil Kumaran S of Linaro was also presenting LXC on Debian:

Extended CFP for containers micro-conference

As we still have a number of slots available for the containers micro-conference at Linux Plumbers 2017, we’ve decided to extend the CFP. All current proposals have been approved.

You can send a proposal here: https://linuxplumbersconf.org/2017/ocw/events/LPC2017/proposals/new

Upcoming conferences

Ongoing projects

The list below is feature or refactoring work which will span several weeks/months and can’t be tied directly to a single Github issue or pull request.

Upstream changes

The items listed below are highlights of the work which happened upstream over the past week and which will be included in the next release.




  • Nothing to report this week

Distribution work

This section is used to track the work done in downstream Linux distributions to ship the latest LXC, LXD and LXCFS as well as work to get various software to work properly inside containers.


  • LXD 2.16 was backported to Ubuntu 16.04 LTS and 17.04 (in the backports pocket)
  • LXC 2.0.8, LXCFS 2.0.7 and LXD 2.0.10 have also been backported to Ubuntu 14.04 LTS.


  • Removed CRIU support from the snap as current CRIU doesn’t work with snap confinement.
  • Fixed a number of issues with /run inside the snap environment missing files needed for DNS resolution to properly function.
  • Fixed support for nesting, allowing the LXD snap to be installed inside an unprivileged LXD container.
  • Added libacl as required by the recently introduced ACL shifting code.
  • Changed the LXD daemon directory to be 0755 rather than 0711, having it now be the same as the .deb package.

Ubuntu Desktop Weekly Update: August 11, 2017


The GNOME conference happened last week with good representation from Ubuntu. The spirit was good and the discussions constructive. Decisions were made, details can be read on https://didrocks.fr/2017/08/03/ubuntu–guadec-2017-and-plans-for-gnome-shell-migration/


We’re preparing to make the changes described above in the coming weeks, that means that the GNOME Shell Ubuntu session is going to transition to this design in the next few days. Didier will be posting a series of blog posts next week on how this all works as they are landing. The vanilla upstream GNOME session will also emerge from this work. And we’ll link to the posts in next week’s newsletter, but keep an eye on social media for up-to-date information.

We’ve resurrected the “power off” option when the power button is pressed.  This will appear in GNOME Control Center 3.25.90.

Video, Audio, Bluetooth, Networking

You might have seen this screenshot earlier in the week:

We’re testing some patches to Chromium 60 in Artful to enable video acceleration and we’re seeing roughly a 50% saving in CPU overhead when using VA API.  In the screenshot above playing the video without acceleration is on the left and playing with acceleration is on the right.  The CPU is Haswell.  There are still more bugs to fix, but we’re making progress.

In Pulse Audio we’ve dropped some more patches for Android support (from Ubuntu Touch) bringing us more inline with upstream.  This will make maintenance easier and should reduce the chance of bugs cropping up from our patches.

Our patches to add enabling and disabling of the Network Connectivity Checker are in review upstream.  This will eventually add a toggle switch in the privacy settings of Control Center to allow you to turn on/off the connectivity checker.  We should be able to distro-patch these into Ubuntu soon before they appear upstream, and then drop the patches once they are available upstream.

We’re including the Rhythmbox “Alternate Toolbar” by default in 17.10, this brings a tidier user interface


  • Updated Chromium stable to 60.0.3112.78, pending validation.  The next Chromium stable update is 60.0.3112.90, already lined up in a PPA.  Updated Chromium beta to 61.0.3163.31, Chromium dev to 62.0.3175.4.
  • Updating LibreOffice Snap to 5.4.0.
  • Merged upstream Ghostscript version 9.21 from Debian into Ubuntu.
  • Synced newest versions from Debian for hplip, cups-bjnp, ippusbxd.  System-config-printer updated to a new snapshot from upstream GIT.
  • GNOME got a stack of updates to 3.25.90 (evolution, games, font viewer, online accounts, tweak tool, map, log, disk, calculator, cheese, todo)


In The News

  • We’re planning a Fit And Finish hackfest in London at the end of August to find and fix all the niggly little bugs and theming issues. If you’ve got skills to offer and would like to get involved please see Popey’s blog post.
  • Softpedia also covers this topic here.
  • Linux Action News discuss the changes to the default session in 17.10.
  • 16.04.3 was released last week.  OMG covers the release here.
  • OMG also have articles on the dock and the Rhythmbox plugin
  • Softpedia discuss Didier’s blog post about the changes coming to the default session