Practical Technology

for practical people.

January 6, 2022
by sjvn01
0 comments

Salt Security Finds Serious GraphQL API Security Hole

GraphQL, the open source query language for application programming interfaces (APIs), is very powerful. With great power comes great responsibility, as Spider-Man reminds us, and sometimes developers go badly wrong. And, that’s exactly what happened, according to Salt Security, a leading API security company, when their researchers found a GraphQL API authorization vulnerability in a B2B financial technology (FinTech) platform.

Whoops.

Salt Security Finds Serious GraphQL API Security Hole. More>

January 6, 2022
by sjvn01
0 comments

Solo BumbleBee makes Linux eBPF programming easier

In 1992, the Berkeley Packet Filter (BPF) was introduced in Unix circles as a new, improved network packet filter. Nice, but not that big a deal. Then, in 2014, it was changed and brought into the Linux kernel as extended BPF (eBPF). Again, that was okay. Just okay. Soon thereafter though, developers started using it to run user-space code inside a virtual machine (VM) on the Linux kernel.  And, then it was a huge deal. As Netflix computer performance expert Brendan Gregg said, with eBPF, “superpowers have finally come to Linux.”

What superpowers? eBPF gives you the power to run programs in the Linux kernel without changing the kernel source code or adding additional modules. In effect, it acts as a lightweight (VM) inside the Linux kernel space. There, programs that can run in eBPF run much faster, while taking advantage of kernel features unavailable to other higher-level Linux programs.

Solo BumbleBee makes Linux eBPF programming easier. More>

January 5, 2022
by sjvn01
0 comments

Lenovo IdeaPad Duet 5: Great Chromebook, great tablet

I’m usually not keen on either ARM-powered Chromebooks or dual Chromebooks/tablets. But, the latest Lenovo IdeaPad Duet 5 has me reconsidering.

This hybrid laptop is a 2-in-1 Chromebook and tablet. The lightweight 13.3-inch tablet/display is completely detachable.

Its screen is one of the things I love about this combo. It’s an organic light-emitting diode (OLED) Samsung Display, which provides incredible colors, darks, and contrast. I am not a fan of watching videos on screens. That’s why I paid serious money for an  LG OLED77C1 4K TV . I mean, why would I watch something on a small display when I have a 77-inch TV? But, for the first time, I have a portable screen I’ll be happy to watch the next episode of Star Trek Discovery on.

Lenovo IdeaPad Duet 5: Great Chromebook, great tablet. More>

January 4, 2022
by sjvn01
0 comments

The open office floor plan: rethinking an awful idea

Some friends and I were talking about the new Google building at 2000 North Shoreline Blvd. in Mountain View, Calif. Truth be told, we’re not impressed. As one person said, it looks like a sagging tent city covered in dragon scales (and not in a good way). But the real kicker? Someone else dared to hope that at least it would have real offices instead of an open office floor plan.

Alas, it won’t. And “that’s one reason why I’m never going back into the office again,” one of my friends declared. “At least at home, I have a private office where I can close the door. Those days are so long gone at ‘work.’”

Personally, I believe open offices are one of the many reasons behind the Great Resignation. Indeed, the hate generated by them is one reason so many people love the idea of working from home now.

The open office floor plan: rethinking an awful idea. More>

January 3, 2022
by sjvn01
0 comments

Cleaning up the Linux kernel’s ‘Dependency Hell’: This developer is proposing 2,200 commit changes

Last year, Linux’s source code came to a whopping 27.8 million lines of code. It’s only gotten bigger since then. Like any 30-year old software project, Linux has picked up its fair share of cruft over the years. Now, after months of work, senior Linux kernel developer Ingo Molnar is releasing his first stab at cleaning it up at a fundamental level with his “Fast Kernel Headers” project.

The object? No less than a comprehensive clean-up and rework of the Linux kernel’s header hierarchy and header dependencies. Linux contains many header, .h, files. To be exact there are about 10,000 main .h headers in the Linux kernel with the include/ and arch/*/include/ hierarchies. As Molnar explained, “Over the last 30+ years they have grown into a complicated & painful set of cross-dependencies we are affectionately calling ‘Dependency Hell’.”

Cleaning up the Linux kernel's 'Dependency Hell': This developer is proposing 2,200 commit changes. More>

December 9, 2021
by sjvn01
0 comments

It’s time to move off CentOS 8, here are your best choices.

The end of CentOS 8 Linux has been coming for awhile now, and the day is finally here. On December 31, 2021, Red Hat‘s CentOS Linux 8 will reach End Of Life (EOL). Since that falls right in the heart of the holiday season, Red Hat will extend CentOS Linux 8 zero-day support until January 31, 2022. Indeed, there will be one last CentOS Linux 8 release — perhaps even after CentOS 8’s official EOL. After that, it’s all over for CentOS Linux.

What can you do now?

CentOS Linux 8 is about to die. What do you do next? More>