Planet News Roundup
This is a roundup of articles from the openSUSE community listed on planet.opensuse.org.
The community blog feed aggregator lists the featured highlights below from May 8 to 14.
Blogs this week cover the Plasma 6.7 beta launch, sovereign Tech funds major investment in KDE, a leadership change on the openSUSE Board, two helpful Firefox tips, a Tumbleweed review, a new Plasmoid for displaying song lyrics, a KDE Frameworks update, and an openSUSE Leap 15.6 reaches end-of-life.
Here is a summary and links for each post:
openSUSE Leap 15.6 Reaches End of Life – Time to Upgrade
Victorhck reports that openSUSE Leap 15.6 reached its official end of life on April 30, which means it will no longer receive security patches or official support. Users are advised to migrate to openSUSE Leap 16.0 to keep their systems up to date and secure.
Plasma 6.7 Beta Released
The KDE Blog announces the launch of the Plasma 6.7 beta and invites testers to try the new release and report any bugs at bugs.kde.org ahead of the final release. Key new features include a quick light/dark mode toggle in the Brightness and Color widget and a modern new print queue application with active job badges in the Printers widget.
The syslog-ng Insider 2026-05: OTEL; Central Log Collection; Old Mac
Peter Czanik’s Blog presents the 140th issue of the syslog-ng Insider monthly newsletter and covers three topics: how Databricks customers can stream logs to a data lakehouse using syslog-ng with OAuth2 authentication and the OpenTelemetry protocol; a reminder that central log collection is valuable far beyond mere compliance, benefiting operations, security, and development teams alike; and a guide to compiling the latest syslog-ng release on older Intel-based Macs where Homebrew no longer provides full support.
Sovereign Tech Fund Invests Over €1 Million in KDE
Victorhck covers the announcement that the Sovereign Tech Fund will invest €1,285,200 in the KDE community across 2026 and 2027. The funding is aimed at strengthening the structural reliability and security of KDE’s core infrastructure, including Plasma and the frameworks supporting KDE’s communication services. The author translates the official KDE announcement into Spanish and shares his thoughts on the significance of the investment for the free software ecosystem.
Plasma Lyrics Widget – View Song Lyrics in Plasma 6 (28)
The KDE Blog presents Plasma Lyrics, a new widget for KDE Plasma 6 that displays the lyrics of the currently playing songs directly on the desktop. This is the 28th entry in the blog’s ongoing series showcasing Plasmoids for Plasma 6, which is aimed at users who want richer desktop integration with their music player.
Fifth Update of Plasma 6.6
The KDE Blog announces the fifth bugfix update to KDE Plasma 6.6, which was released on May 12. The update brings improved animation fluidity on high-refresh-rate displays along with the usual bug fixes and stability improvements.
How to Change the Annoying Firefox “Not Found” Sound
Victorhck shares a practical tip for Firefox users annoyed by the jarring sound the browser plays when a text search via Ctrl+F finds no match on the page. The post walks through how to replace that default sound with a system sound of the user’s own choosing.
IA MED: Public Health, Privacy and Brazilian Technological Sovereignty
Alessandro’s Blog introduces IA MED, which is a an AI solution developed by MultiCortex to bring advanced language models to the public health sector with a focus on precision, privacy, and data sovereignty. The system is already operational in the city of Bebedouro, São Paulo. The post argues that vertically specialized, locally hosted AI running on cost-effective hardware represents a viable and responsible alternative to generic cloud-based AI for public health systems across Brazil.
SOTAQUE: When AI Learns to Speak like a Brazilian
Alessandro’s Blog introduces SOTAQUE (Speech-Oriented Training Audio for Quality Understanding and Expression), which is a community-driven initiative to build an open dataset of Brazilian Portuguese voices that captures the country’s regional diversity of accents. The project, which is published under the CDLA-Permissive-2.0 license, aims to collect up to 10,000 hours of audio so that AI speech tools better represent all Brazilians rather than defaulting to a narrow Southeastern urban standard. Anyone over 18 in Brazil can contribute by recording just a few minutes of their own voice at sotaque.ia.br.
Firefox Not Displaying Japanese (or Chinese or Korean) Characters in Plasma
Victorhck explains how to fix the issue of Firefox displaying small empty squares instead of Japanese kanji characters when browsing the web on KDE Plasma. The solution involves installing the appropriate font packages to give the browser the rendering support it needs.
Framework Becomes a KDE Patron
The KDE Blog announces that Framework, the company behind the modular Framework Laptop, has become an official patron of KDE e.V., and joins existing supporters such as The Qt Company, SUSE, Google, Canonical, Slimbook, and Rocky Linux. Framework founder Nirav Patel noted that KDE is extremely popular within the Framework community, while KDE e.V. President Aleix Pol highlighted that Framework’s commitment to repairability strongly aligns with KDE’s own values of sustainability and open hardware.
malcontent: Disk Space Exhaustion via Globally Accessible D-Bus API (CVE-2026-44931)
The SUSE Security Team Blog discloses CVE-2026-44931, a local denial-of-service vulnerability in malcontent, the GNOME parental control system, introduced in version 0.14.0 as part of the GNOME 50 update packaged for openSUSE. The flaw allows any unprivileged local user to slowly exhaust disk space in /var/lib/malcontent-timerd by repeatedly calling the RecordUsage D-Bus method with arbitrary app identifiers, with no upstream fix currently available. The SUSE team reported the issue privately in February 2026 and, after receiving no follow-up from upstream despite repeated contact, proceeded with public disclosure to avoid further delay.
26th Update of KDE Frameworks 6 and the KArchive Library
The KDE Blog covers the 26th update to KDE Frameworks 6, highlighting improvements to the KArchive library among other fixes across the KDE software stack. The post follows the blog’s regular cadence of documenting each KDE Frameworks release for Spanish-speaking KDE users.
Linux Saloon 200 | Open Mic Night
CubicleNate’s Blog celebrates the 200th episode of the Linux Saloon podcast with an Open Mic Night format, where participants shared tech topics that were top of mind. Highlights included a hands-on look at the new Framework Laptop 13 Pro and its hardware improvements, a discussion about Brave’s new Origin browser on Linux, and a nostalgic trip back to the old internet covering GeoCities, webrings, and Homestar Runner.
openSUSE Board Leadership Change
Victorhck reports on the change at the top of the openSUSE Board. The post translates and expands on the official announcement of Gerald Pfeifer stepping down as chair on May 7 after nearly seven years in the role. He is succeeded by Jeff Mahoney, who was elected to the board in 2024.
ICC Profiles in HDR ❤️ – This Week in Plasma
The KDE Blog summarizes “This Week in Plasma” with headlines featuring new support for ICC color profiles in HDR mode. This addition is a significant step forward for color-accurate workflows on Linux, particularly for photographers and designers using HDR-capable displays.
USS/FMS Carrier
Jakub Steiner’s Blog dives into FMS Carrier, a tiny 2-operator FM synthesizer and sequencer for the Nintendo Game Boy Advance created by Ess Mattisson, the original designer of the Elektron Digitone. Jakub shares his enthusiasm for the sequencing workflow, which mirrors the building-block composition approach he loves on his Dirtywave M8 tracker.
Tumbleweed – Review of the Weeks 2026/18 & 19
Victorhck and Dominique Leuenberger cover nine Tumbleweed snapshots published across weeks 18 and 19. Major package arrivals include GNOME 50.1, Linux kernel 7.0.1 through 7.0.3, glibc 2.43, systemd 260.1, Boost 1.91.0, and Mozilla Firefox 150.0.
LliureX Turns 21 – Happy Birthday!
The KDE Blog celebrates the 21st anniversary of LliureX, a GNU/Linux distribution based on Ubuntu and KDE Plasma developed by the Valencian Community’s regional education authority in Spain. The project has been delivering a free software desktop tailored to educational environments in the Valencian Community for over two decades.
View more blogs or learn to publish your own on planet.opensuse.org.
Member
CzPThe syslog-ng Insider 2026-05: OTEL; central log collection; old Mac
Dear syslog-ng users,
This is the 140th issue of syslog-ng Insider, a monthly newsletter that brings you syslog-ng-related news.
Streaming syslog-ng data to your lakehouse using OTEL
Version 4.11.0 of syslog-ng contains contributions from Databricks related to OAuth2 authentication. Recently, they published a blog about how this enables their customers to send logs to their data lake using syslog-ng and the OpenTelemetry protocol.
Central log collection - more than just compliance
I often hear, even at security conferences that “no central log collection here” or “we have something due to compliance”. Central logging is more than just compliance. It makes logs easier to use, available and secure, thus making your life easier in operations, security, development, but also in marketing, sales, and so on.
https://www.syslog-ng.com/community/b/blog/posts/central-log-collection—more-than-just-compliance
Compiling syslog-ng on an old Mac
I have an aging, but fully functional MacBook. I bought it for syslog-ng testing, but I also use for watching movies. Homebrew no more fully supports old, Intel-based Macs. This blog helps to compile the latest syslog-ng release on these old, but otherwise functional machines.
https://www.syslog-ng.com/community/b/blog/posts/compiling-syslog-ng-on-an-old-mac
syslog-ng logo
Your feedback and news, or tips about the next issue are welcome. To read this newsletter online, visit: https://syslog-ng.com/blog/
malcontent: Disk Space Exhaustion via Globally Accessible D-Bus API (CVE-2026-44931)
Table of Contents
- Introduction
- Review Summary
- Disk Space Exhaustion Issue
- Upstream Report
- CVE Assignment
- Timeline
- References
Introduction
malcontent is a parental control system for the GNOME desktop environment which allows to restrict access to adult Internet content and to keep track of and restrict the amount of screen time for children. As part of the GNOME 50 version update malcontent 0.14.0 was packaged for openSUSE, triggering a review of changes in the package’s D-Bus methods and Polkit actions.
During this review we identified a local disk space exhaustion attack vector via one of the newly added D-Bus methods. There is currently no upstream bugfix available for the issue. The full details about the issue and communication with upstream will be provided in the following sections.
Review Summary
The complexity of malcontent increased a lot compared to the last time we looked into it. There now exist three different malcontent D-Bus daemons utilizing three different service user accounts and some additional daemons not providing D-Bus interfaces on top of that.
Some parts of the user tracking in malcontent suffer from race conditions. We believe this is acceptable, given that parental controls don’t need to be strong security boundaries; it is sufficient if the target audience (children) is not able to bypass the parental controls.
Disk Space Exhaustion Issue
The newly introduced RecordUsage D-Bus method in
malcontent-timerd is problematic beyond the possibility to bypass parental
controls. It allows arbitrary users in the system to slowly fill up disk space
in /var/lib/malcontent-timerd. The following shell construct is a simple
reproducer of the issue:
for I in `seq 100000`; do
gdbus call -y -d org.freedesktop.MalcontentTimer1 \
-o /org/freedesktop/MalcontentTimer1 \
-m org.freedesktop.MalcontentTimer1.Child.RecordUsage \
"[(0, 1000, \"app\", \"org.gnome.MyApp$I\")]"
done
The daemon will create an entry for every supposed GNOME app identifier passed
to it in /var/lib/malcontent-timerd/store/<caller-username>.gvdb. This will
slowly use up the disk space in /var and therefore is a local
Denial-of-Service attack vector.
To fix the problem, the method call could be restricted to callers in local active sessions. Furthermore an upper limit of usage entries could be placed on every user account to prevent excess disk usage.
Upstream Report
We reported this issue privately via the upstream’s GitLab bug tracker on 2026-02-18 offering coordinated disclosure. We only received an initial reply a couple of weeks later in which upstream confirmed the issue but also mentioned that there is a lack of developer resources for malcontent. At this time we expressed our opinion that a non-disclosure period would not be strictly necessary since the impact of the issue is not high. We never received further replies from upstream, so we decided to go public with this report to avoid wasting more time without a bugfix being developed.
CVE Assignment
Due to the lack of replies we could not discuss with upstream whether a CVE assignment is appropriate for this issue. Given that upstream at least basically confirmed the issue and there is no bugfix available we assigned CVE-2026-44931 to track the defect and to make others aware.
Timeline
| 2026-02-18 | We created a private issue in the upstream GitLab, offering coordinated disclosure. |
| 2026-03-11 | Lacking a reaction we pinged the issue asking if anybody were reading it. |
| 2026-03-11 | An upstream developer responded confirming the issue and pointing out that little developer time is available for malcontent. |
| 2026-03-23 | We asked how upstream wants to continue regarding coordinated disclosure. We explained that in our view a non-disclosure period is not strictly necessary for the issue and pointed out that the maximum non-disclosure period we can offer is 90 days until 2026-05-19. |
| 2026-04-09 | Still without an answer we urged upstream once more to come to a decision and a path forward regarding the publication of the issue. |
| 2026-04-21 | We informed upstream that we would publish the report on our end if no reaction is received by 2026-04-30. |
| 2026-05-05 | We published our Bugzilla bug describing the issue. |
| 2026-05-08 | We assigned CVE-2026-44931 for the issue and communicated this in the upstream issue. |
| 2026-05-11 | Publication of this report. |
References
Linux Saloon 200 | Open Mic Night
USS/FMS Carrier
I'm a sucker for pixel art and very constrained music grooveboxes. While I'm not into chiptunes, they sure are a cultural phenomenon.
You heard me boast about the Dirtywave M8 numerous times, even in person, because it's my tool of choice for producing and performing music. Its genius lies in high sound quality and a workflow that grew out of the tiny screen and button constraints on the Nintendo Gameboy, the platform of choice for an app called LSDJ, which the M8 is modelled after. That, and the sheer amount of sound engines living in your pocket. Building on the shoulders of giants and all.
The small M8 community has a few 'celebrities', such as Ess Mattisson. I first heard of Ess when I ran into an amazing single channel track called Wertstoffe. Ess has a great pedigree as the creator of the original Digitone FM synthesizer while working at Elektron. FM remains his forte, and after creating numerous plugins through Fors, he has now released a little 2-operator FM synth and sequencer for the platform of the future, Nintendo Gameboy Advance.
What makes FMS a bit crazy is what it's doing under the hood. The Gameboy Advance has no FM synthesis hardware at all. Its audio gives you two Direct Sound DMA channels of 8-bit signed PCM — that's 256 amplitude levels, roughly 48 dB of dynamic range. For comparison, a CD has 96 dB, in much finer fidelity. The CPU is an ARM7TDMI running at 16.78 MHz with 256 KB of RAM, and that's where all the FM math happens. Sine waves, modulation, mixing four channels, all in real time, in software, on a chip from 2001 that was designed to shuffle sprites around. The hiss you hear is just part of the deal: quantization noise from that 8-bit DAC. So few amplitude steps means everything that comes out has this fuzzy, slightly crushed quality. You can't get rid of it. It is the sound. And somehow there are four channels of 2-operator FM synthesis in there, each with envelopes and ratio control. On a Gameboy Advance.
Picking GBA as a platform of choice in 2026 may be strange. Surprisingly, it can be used on a very large array of hardware. Not only can you plug a memory card into the original hardware or new fancy clones like the Analogue Pocket, you have an exponentially larger choice of dozens if not hundreds of Chinese emulator handhelds from Anbernic, Powkiddy, Miyoo or Retroid. You can also use the Steam Deck or any PC running one of the many emulators, RetroArch being the most popular one.
FMS really touched me. Partly because I have a soft spot for the Nordic demo scene, but mainly for its novel approach to composition. Just like with the M8, creating basic building blocks and then applying transposition to break the looping monotony is my favorite workflow. This little thing has that in the form of pattern and trig transposition but also a novel take on "effects". Yes, you heard me right. There's a sorta-kinda-delay. Even does stereo field ping-pong.
I will keep on trying to create something that … sounds good. The process has been amazing. I truly love some of the sequencing tricks and workflows. The sequencer is, however, so good it would be worth seeing it run on top of a higher quality sound engine too.
Tumbleweed – Review of the weeks 2026/18 & 19
Dear Tumbleweed users and hackers,
Long weekends are a nice thing, holidays on Fridays (like Labor Day), or also the upcoming Ascension Day next week, on Thursday) make for a great time to relax. But they pull me away from my desk and make me slack off on writing the weekly review. I know deep inside that you’re eagerly awaiting to hear what has changed and, for many, even more important, what changes might hit you soon, so you can prepare for them.
During the last fortnight, Tumbleweed has seen 9 snapshots being published (0423, 0425, 0426, 0428, 0429, 0430, 0504, 0505, and 0506) with these changes included:
- Pipewire 1.6.4
- libgcrypt 1.12.2
- time 1.10
- coreutils 9.11
- git 2.54.0
- sed 4.10
- Mozilla Firefox 150.0 & 150.0.1
- cups 2.4.18 & 2.4.19
- GNOME 50.1
- openSSH 10.3p1
- systemd 260.1
- Linux kernel 7.0.1, 7.0.2 & 7.0.3
- LLVM 22.1.4
- Samba 4.23.7
- sssd 2.13.0
- glibc 2.43
- Mesa 26.0.6
- SDL 3.4.6
- Boost 1.91.0
- cURL 8.20.0
- perl 5.42.1
- SELinux-policies: Change store root-path for selinux modules from /var/lib/selinux to /etc; this is to stabilize usage on transactional systems further
Currently, these updates and changes are being prepared and tested:
- Rust 1.95
- Linux kernel 7.0.5
- KDE Gear 26.04.1
- Mesa 26.1.0
- util-linux 2.42
- python3 packaging change: split the /usr/bin/python3 symlink and rpm symbol out into its own, specific package
- GCC 16 as the system compiler
Planet News Roundup
This is a roundup of articles from the openSUSE community listed on planet.opensuse.org.
The community blog feed aggregator lists the featured highlights below from May 1 to 7.
Blogs this week cover a Tumbleweed review, syslog-ng with Fedora 44, the openSUSE Summit in the Americas, SUSE response to the Copy Fail kernel vulnerability, KDE’s participation in Google Summer of Code 2026 and and much more.
Here is a summary and links for each post:
Playing .wma Files with Amarok in openSUSE
Victorhck shares a practical tip for openSUSE Tumbleweed users who find that the Amarok music player won’t play .wma audio files. The root cause is that Amarok relies on GStreamer and lacks certain codec packages by default, unlike VLC which bundles its own. The fix is straightforward: add the Packman repository and install gstreamer-plugins-bad, gstreamer-plugins-ugly, and gstreamer-plugins-libav via zypper.
Mix of KDE Gear 26.04 Highlights – “KDE at 30” Edition
The KDE Blog wraps up its series on KDE Gear 26.04 with a roundup of smaller improvements across many applications in what is dubbed the “KDE at 30” edition, which celebrates three decades of KDE. Highlights include bug fixes for Akregator and Alligator, Angelfish defaulting to the AI-free version of DuckDuckGo, RAR extraction support in Ark’s Flatpak version, and NeoChat gaining a rich text editor with thread support.
Fedora 44, CentOS 7 and Amazon Linux syslog-ng Questions
Peter Czanik’s blog reports that Fedora 44 has shipped with syslog-ng 4.11 and that a quick test confirms everything works as expected. The post raises two open questions for the community: whether anyone is still using syslog-ng packages on the end-of-life RHEL 7 / CentOS 7, and whether the Amazon Linux 2023 Copr package should be updated to a newer release.
Free Software Foundation Newsletter Roundup – May 2026
Victorhck presents a Spanish-language summary and translation of the May 2026 Free Software Foundation newsletter. Among the stories covered are Amazon’s upcoming May 20 Kindle shutdown affecting older devices and the FSF’s critique of DRM restrictions, as well as France’s announced plan to migrate some government computers from Windows to Linux.
What’s New in Kdenlive in KDE Gear 26.04 – “KDE at 30” Edition
The KDE Blog covers improvements coming to the Kdenlive video editor as part of the KDE Gear 26.04 release. The post highlights new features and refinements aimed at both new and experienced video editors on Linux.
Summit Draws Landmark Regional Gathering
openSUSE News reports that 321 developers, students, and technology professionals gathered at Universidad Libre in Barranquilla, Colombia, for the first-ever openSUSE Summit in the Americas. The event marked a landmark moment for the community’s reach in the region and brought together contributors from across many nations.
Tumbleweed Monthly Update – April 2026
openSUSE News recaps a busy April for Tumbleweed, which highlighted the arrival of GNOME 50 and KDE Gear 26.04, and critical fixes for “Copy Fail”, which has now been patched for both Tumbleweed and Slowroll users who ran zypper dup. The Linux kernel advanced to 7.0.2 and Mesa to 26.0.5 with raytracing fixes. Security received heavy attention with WebKitGTK, CUPS, Python, Flatpak, sudo, and OpenEXR all receiving multiple CVE fixes.
Accessing openSUSE Cockpit from a Remote Machine
Victorhck continues his series on the Cockpit tool being developed as a replacement for YaST in openSUSE. The tutorial walks through enabling port 9090 in the firewall to make remote access possible. This follows his earlier posts on installing Cockpit and managing software and repositories through its interface.
Neon Multicolor Icons for Your PC: BeatyBeam
The KDE Blog presents BeatyBeam, a neon multicolor icon pack for KDE Plasma that is well-suited for dark themes. The pack brings vibrant, colorful icons to the desktop for users looking to personalize their visual environment.
Managing Software and Repositories in openSUSE via Cockpit
Victorhck explains how to use Cockpit that is being developed to succeed YaST in openSUSE to manage software repositories and install or remove packages directly from the browser. The post covers the relevant Cockpit modules needed for these tasks and how they compare to equivalent YaST functionality.
Tux Manager – The Linux Clone of Windows Task Manager
CubicleNate’s Blog takes a look at Tux Manager, a task manager application for Linux that closely mirrors the look and feel of the Windows Task Manager. The app is aimed at users coming from Windows who want a familiar interface for monitoring processes and system resources on KDE Plasma.
AutoRound: State of the Art in Quantization for CPU/XPU/NVIDIA GPU
Alessandro introduces AutoRound, an Intel-developed quantization toolkit for LLMs and VLMs that reduces model weights to 2, 3, 4, or 8 bits while maintaining high accuracy using signed gradient descent. Unlike naive rounding, AutoRound learns the optimal way to round weights and adjust clipping limits to minimize output error.
Invest in Your Identity
Cornelius Schumacher’s Blog offers a thoughtful reflection on the importance of building a genuine personal digital identity in the age of AI agents. The author argues that decades of authentic writing, publishing, and presentations create a personal corpus that can anchor AI tools to who you actually are.
exeLearning 4.0 Released
The KDE Blog announces the release of eXeLearning 4.0, which is an open-source tool for creating interactive educational content. The new major version demonstrates that the project remains active and evolving with new features for educators building digital learning materials.
Linux Saloon 199 | Ubuntu 26.04
CubicleNate’s Blog recaps episode 199 of the Linux Saloon podcast, which focused on Ubuntu 26.04 LTS and its various flavors, including user experiences and installation challenges. Participants shared their impressions of the new LTS release and discussed differences across the Ubuntu ecosystem.
Background Apps and Zoom Scaling – This Week in Plasma
The KDE Blog translates and summarizes the latest “This Week in Plasma” development report and covers work on background application handling. The post highlights ongoing refinements across several Plasma components aimed at improving usability and visual consistency.
Free Software from North to South, East to West: 6 LibreLocal Meetups
Victorhck highlights May 2026 as “LibreLocal month,” promoted by the Free Software Foundation as an occasion for free software supporters to organize local meetups to share ideas, learn from each other, and celebrate free software. The post spotlights six upcoming LibreLocal meetups taking place across Spain.
KDE Participates in Google Summer of Code 2026
The KDE Blog announces that KDE is once again participating in Google Summer of Code (GSoC) 2026, welcoming student developers to contribute to KDE projects over the summer. The post outlines how the program works and encourages interested learners to apply and get involved with the KDE community.
SUSE Responds to the copy.fail Vulnerability
SUSE Communities details the company’s response to Copy Fail, a critical Linux kernel vulnerability in the algif_aead module that allows a local non-root user to gain full root access. The post, written by Marcus Meissner, outlines which SUSE and openSUSE products are affected and confirms that patches have been issued. Users are strongly advised to apply the available updates immediately.
View more blogs or learn to publish your own on planet.opensuse.org.
Fedora 44, CentOS 7 and Amazon Linux syslog-ng questions
Fedora 44 was announced last week: syslog-ng 4.11 is part of it. While checking the Fedora Copr build service for Fedora 44, I realized that CentOS 7 and Amazon Linux 2023 packages are also there. I have a few questions about those for you!
syslog-ng logo
Fedora 44
The availability of the Fedora 44 release was announced last week. Vesion 4.11 of syslog-ng, the current latest release, is part of it. As usual, I did a quick test: everything works as expected.
RHEL 6
The removal of RHEL 6 packages from Copr was announced many years ago. Then, the countdown was silently canceled. I have just checked: RHEL 6 packages are no longer available, so I deleted all my related repositories. Also, I deleted a couple of temporary test repos along the way.
CentOS 7
When talking to product manager friends around the world, I realized that syslog-ng is not an “enterprise” application. “Enterprise” developers are still actively maintaining packages for RHEL 6, when even RHEL 7 has reached end of life a long time ago. Of course, this is just a satirical definition of “enterprise”, at least in my view…
Support for RHEL 7 / CentOS 7 was dropped in syslog-ng a month before the distro became end-of-life. Copr announced the deletion of CentOS 7 packages, but after a while, the countdown suddenly disappeared. Packages built 10+ years ago are still here, and CentOS 7 is still a valid build target.
Question: is there anyone still using my syslog-ng packages on RHEL 7 / CentOS 7? Otherwise, I would be happy to delete anything related from my Copr repositories. I could delete many repositories, save storage, and I would not have to deselect them as a build target during package builds.
Amazon Linux 2023
Another question mark in my mind is Amazon Linux 2023 support. If we can believe the download statistics provided by Copr, then this is one of the most popular syslog-ng repos on Copr. However, over the years, I only received a single feedback about it, which was on Twitter years ago: “Thanks, I use it.” That is all. While there were regular requests to create these packages, nobody asked for features, updates, whatever. The repo is still stuck at syslog-ng version 4.8.
Question: should I update syslog-ng to a more recent version, as time permits?
What is next?
Share your thoughts with us in this syslog-ng GitHub discussion: https://github.com/syslog-ng/syslog-ng/discussions/5691 or reach out to me on Twitter / Mastodon / LinkedIn.
Originally published at https://www.syslog-ng.com/community/b/blog/posts/fedora-44-centos-7-and-amazon-linux-syslog-ng-questions
Tumbleweed Monthly Update - April 2026
Three hundred twenty-one developers, students and technology professionals converged on Universidad Libre in Barranquilla, Colombia, for the first-ever openSUSE America Summit.
It was a two-day event held at Universidad Libre’s campuses that wrapped up on May 1 with calls to expand open-source culture and contribution across the region.
A capture the flag competition added a hands-on cybersecurity dimension to the summit, challenging participants to test their offensive and defensive skills in a live environment. The exercise drew significant interest from students and IT professionals alike.
The conference drew presenters from across the globe, which reflects the international reach of the open-source community. Speakers representing Colombia, Argentina, Brazil, Mexico, the Dominican Republic, India, the United Kingdom, Germany and the United States addressed topics ranging from cybersecurity and cloud infrastructure to machine learning and community development.
Luis Delascar of Colombia opened Day 2 with a presentation on Kuná Red, an offline-first, open-source mesh networking solution designed to enable communication in rural and underserved regions lacking reliable internet or cellular infrastructure. Diego Córdoba of Argentina delivered a deep dive into Netfilter and firewall architecture in openSUSE using nftables, while compatriot Andrea Navarro, also from Argentina, addressed the use of Jupyter notebooks in educational settings as an alternative to commercial cloud platforms.
Patrick Fitzgerald made the case for Linux migration in an update talk titled about migrating from Windows to Linux citing growing concerns around data sovereignty, tariffs, and unreliable international partnerships as compelling reasons for individuals and organizations to move to Linux.
Ram Mohan Rao Chukka and Shibi Ramachandran, both from India, presented two sessions; one on improving end-to-end testing using Kuttl to reduce broken builds, and another on intelligent drift detection and auto-remediation in ArgoCD for enterprise Kubernetes environments.
Walddys Dorrejo of the Dominican Republic, an openSUSE moderator, presented on unified observability and security using Wazuh. Gabriel Bazzotti of Brazil introduced Git-based packaging for openSUSE and Anuar Harb of Mexico spoke about open-source infrastructure as the foundation for connected digital ecosystems in emerging regions.
Colombian speakers were featured prominently throughout the program. Jorge Lambrano presented a full machine learning workflow. Jorge Aguilar addressed building modern, robust open-source data platforms for demanding analytics workloads. Jesuse Bossa explored the historical and philosophical purpose of engineering and Deiner Bello showcased VisitChocó, an interactive tourism platform built with React, TypeScript and geospatial data promoting the Colombian department of Chocó. Integration of Weblate to enable community-driven translations and expand the platform’s reach to broader audiences across Latin America and beyond is being considered.
Johannes Segitz delivered two sessions. His talk about the current AI landscape and how LLMs are reshaping how people code, patch and package software was a crowd pleaser.
Organized by sponsorship lead Astian Inc., which the company behind the Midori light-weight Web Browser along with a network of local support from LinuxBQ and Red Team Barranquilla, Barranquilla’s community of free and open-source software enthusiasts organized and ran the summt April 29 through May 1.
Having the event at two campuses, Universidad Libre’s Central Campus on April 29 and North Campus on April 30, was a natural fit for the open-source event. Attendees included speakers, IT professionals and students from university had hours of discussions about openSUSE and the broader open-source ecosystem.
The event was made possible with support from SUSE and the Geeko Foundation, both of which help to champion growth of the openSUSE Project and the global open-source community.
The choice of Barranquilla as host city may prove to be more than symbolic. Organizers and attendees have begun discussing the possibility of transforming the openSUSE America Summit into a recurring, traveling event modeled after the openSUSE.Asia Summit, which rotates among countries throughout Asia. Each host nation contributes its own cultural identity and local community to the gathering.
Colombia, with its growing technology sector, strong university ecosystem and passionate open-source community, make a compelling case as a starting point and center of gravity for future events. The LinuxBQ community’s enthusiasm and the active participation of Universidad Libre students signal that the conditions for a sustainable, grassroots open-source movement in the region are already in place. If the model takes hold, future editions of the summit could travel to other nations across the Americas and the Caribbean, amplifying the voices of tech leaders throughout the region and building a collective, traveling community of experts much as the Asia Summit has done across that continent.
A community barbecue on May 1 brought speakers and volunteers together to close out the event. Sessions were livestreamed and are available for viewing on the LinuxBQ YouTube channel.
Summit Draws Landmark Regional Gathering
Three hundred twenty-one developers, students and technology professionals converged on Universidad Libre in Barranquilla, Colombia, for the first-ever openSUSE America Summit.
It was a two-day event held at Universidad Libre’s campuses that wrapped up on May 1 with calls to expand open-source culture and contribution across the region.
A capture the flag competition added a hands-on cybersecurity dimension to the summit, challenging participants to test their offensive and defensive skills in a live environment. The exercise drew significant interest from students and IT professionals alike.
The conference drew presenters from across the globe, which reflects the international reach of the open-source community. Speakers representing Colombia, Argentina, Brazil, Mexico, the Dominican Republic, India, the United Kingdom, Germany and the United States addressed topics ranging from cybersecurity and cloud infrastructure to machine learning and community development.
Luis Delascar of Colombia opened Day 2 with a presentation on Kuná Red, an offline-first, open-source mesh networking solution designed to enable communication in rural and underserved regions lacking reliable internet or cellular infrastructure. Diego Córdoba of Argentina delivered a deep dive into Netfilter and firewall architecture in openSUSE using nftables, while compatriot Andrea Navarro, also from Argentina, addressed the use of Jupyter notebooks in educational settings as an alternative to commercial cloud platforms.
Patrick Fitzgerald made the case for Linux migration in an update talk titled about migrating from Windows to Linux citing growing concerns around data sovereignty, tariffs, and unreliable international partnerships as compelling reasons for individuals and organizations to move to Linux.
Ram Mohan Rao Chukka and Shibi Ramachandran, both from India, presented two sessions; one on improving end-to-end testing using Kuttl to reduce broken builds, and another on intelligent drift detection and auto-remediation in ArgoCD for enterprise Kubernetes environments.
Walddys Dorrejo of the Dominican Republic, an openSUSE moderator, presented on unified observability and security using Wazuh. Gabriel Bazzotti of Brazil introduced Git-based packaging for openSUSE and Anuar Harb of Mexico spoke about open-source infrastructure as the foundation for connected digital ecosystems in emerging regions.
Colombian speakers were featured prominently throughout the program. Jorge Lambrano presented a full machine learning workflow. Jorge Aguilar addressed building modern, robust open-source data platforms for demanding analytics workloads. Jesuse Bossa explored the historical and philosophical purpose of engineering and Deiner Bello showcased VisitChocó, an interactive tourism platform built with React, TypeScript and geospatial data promoting the Colombian department of Chocó. Integration of Weblate to enable community-driven translations and expand the platform’s reach to broader audiences across Latin America and beyond is being considered.
Johannes Segitz delivered two sessions. His talk about the current AI landscape and how LLMs are reshaping how people code, patch and package software was a crowd pleaser.
Organized by sponsorship lead Astian Inc., which the company behind the Midori light-weight Web Browser along with a network of local support from LinuxBQ and Red Team Barranquilla, Barranquilla’s community of free and open-source software enthusiasts organized and ran the summit April 29 through May 1.
Having the event at two campuses, Universidad Libre’s Central Campus on April 29 and North Campus on April 30, was a natural fit for the open-source event. Attendees included speakers, IT professionals and students from university had hours of discussions about openSUSE and the broader open-source ecosystem.
The event was made possible with support from SUSE and the Geeko Foundation, both of which help to champion growth of the openSUSE Project and the global open-source community.
The choice of Barranquilla as host city may prove to be more than symbolic. Organizers and attendees have begun discussing the possibility of transforming the openSUSE America Summit into a recurring, traveling event modeled after the openSUSE.Asia Summit, which rotates among countries throughout Asia. Each host nation contributes its own cultural identity and local community to the gathering.
Colombia, with its growing technology sector, strong university ecosystem and passionate open-source community, makes a compelling case as a starting point and center of gravity for future events. The LinuxBQ community’s enthusiasm and the active participation of Universidad Libre students signal that the conditions for a sustainable, grassroots open-source movement in the region are already in place. If the model takes hold, future editions of the summit could travel to other nations across the Americas and the Caribbean, amplifying the voices of tech leaders throughout the region and building a collective, traveling community of experts much as the Asia Summit has done across that continent.
A community barbecue on May 1 brought speakers and volunteers together to close out the event. Sessions were livestreamed and are available for viewing on the LinuxBQ YouTube channel.