SecureHome
SecureHome
I add two movies about SecureHome on Youtube.com. I also prepared packages for OpenSUSE Tumbleweed.
Currently, there is many major problems with SecureHome. If it crash or closed without normal exit procedure, you end up with broken system or without protection. Use at your own risk and on VM only – currently not on production system.
If you can – watch, install on VM, test and fill bugs on sourceforge.net. Thanks!
Why this solution? Because home directory is not well protected and stored important configuration, like .profile, compositor configuration, etc. Maybe there is other security solution, which could been used, but in some cases, user may need to omit restrictions, like editing ~/.profile in one of text editor and some text editor could been scripted, so there is no way to understand if some action is malicious. Also, user could protect browser cookies (there were attack based on cookie stealing), but in some cases may read cookie.
I select FUSE, because write solution based on FUSE looks easiest way.
Member
FutureboyCheck if Your Password Has Been Compromised
Tumbleweed – Review of the week 2025/37
Dear Tumbleweed users and hackers,
This week, we were finally able to deliver on the promise of Mesa 25.2. Although it was a bit surprising to us, version 25.2.2 has eliminated the crash, despite the reported bug not receiving any reaction from upstream. Likely the same error was observed in different scenarios as well, which resulted in a fix. Of course, that was not all that changed this week: a total of 5 snapshots (0904, 0905, 0908, 0909, and 0910) could be released, bringing you these changes:
- Mesa 25.2.2
- A bunch of kernel firmware updates
- cnf 0.9.0
- GCC 15.2.0
- Linux kernel 6.16.5
- mariadb 11.8.3
- gpg 2.5.12
That’s almost everything I listed last week under the planned, future changes. Almost. As Tumbleweed rolls, this means new items are appearing in the list now. Currently, we are working on these updates:
- KDE Gear 25.08.1
- KDE Plasma 6.4.5
- Linux kernel 6.16.6
- systemd 257.9
- cmake 4.1.0
- LLVM 21
- cURL 8.16.0: issues collected in https://bugzilla.opensuse.org/show_bug.cgi?id=1249448
Planet News Roundup
This is a roundup of articles from the openSUSE community listed on planet.opensuse.org.
The below featured highlights listed on the community’s blog feed aggregator are from September 6 to today. The most recent blogs involve updates around KDE Akademy, widget for Plasma, immutable KDE options like Kalpa, openVINO, openSUSE’s transition to a git workflow and much more.
Here is a summary and links for each post:
Twenty-seventh audio from Podcast Linux
Baltolkien highlighted the 27th episode of Podcast Linux, where Juan Febles reviewed the Slimbook One desktop device. Despite the podcast project being on hiatus, the blog continues to promote these valuable Spanish-language Linux discussions.
Cursor Eyes Widget – Visual Plasmoids for Plasma 6.21
KDE Blog introduces a playful widget for Plasma 6.21 that tracks your cursor with animated eyes. This small but fun addition adds another layer of desktop personalization for Plasma users.
A First Look at KDE Linux – The Official KDE Distro
Víctorhck gives an overview of KDE Linux, the newly announced official distribution from KDE. The blog discusses its goals, features, and the potential it holds for the wider Linux ecosystem.
Fixing Firmware Update Issues on Framework Laptop 13
CubicleNate shares practical solutions for addressing firmware update problems on Framework laptops. The post provides troubleshooting steps and insights useful to Framework owners.
Fifth Update of Plasma 6.4
The KDE Blog outlines the fifth maintenance update to Plasma 6.4, detailing bug fixes and refinements that continue to improve the desktop experience.
Project Halfway There with Git Adoption
openSUSE News reports on the community’s progress in migrating infrastructure and workflows to Git. The post highlights achievements so far and what remains to be done in this key transition.
NPM Alert – Compromised Packages with Billions of Downloads
Assunto Nerd warns about a major security issue in the JavaScript ecosystem where heavily downloaded NPM packages were found compromised. The article urges vigilance among developers.
OpenVINO 2025.3.0 Now Natively Available on openSUSE
Innovators for openSUSE announce the availability of Intel’s OpenVINO toolkit 2025.3.0 natively on openSUSE. This enhances AI and machine learning workflows with official support on the distribution.
KDE Express Podcast – Episode 52
Episode 52 of KDE Express covers the “back to school” period along with news from the KDE world. The podcast continues its role in informing and entertaining KDE followers.
Could KDE Neon’s Days Be Numbered?
Víctorhck speculates on the possible decline of KDE Neon in light of KDE Linux’s arrival. The post reflects on what this change could mean for users and developers.
Moga Neon Cursors for Your PC
KDE Blog showcases a new cursor theme inspired by Moga Neon, offering bright and colorful visuals to further personalize the KDE desktop.
KDE Linux – The New Official Immutable GNU/Linux Distro
Víctorhck dives into KDE Linux, KDE’s official immutable distribution. The article explains its positioning, potential impact, and why this marks an important milestone for KDE.
More App Permission Settings – Pre-Akademy Plasma Update
Just before Akademy, KDE Blog highlights continued progress on app permission settings in Plasma. The post shows how Plasma is strengthening user control and privacy.
View more blogs or learn to publish your own on planet.opensuse.org.
Fixing Firmware Update Issues on Framework Laptop 13
Project Halfway there with Git Workflow Adoption
Leap 16 now accepts contributions exclusively via the new git workflow. This shift reflects a broader trend: many development projects in the Open Build Service have already adopted Git, and new ones are being onboarded daily.
Tumbleweed has not yet switched to the new Git workflow. The openSUSE release team is evaluating the new staging to ensure it can scale effectively as we need to make sure that pre-intergration acceptance testing remains effective to handle up to 1,500 submissions a week.
Leap 16.0 is near the end of its development. Since there are few submissions expected per week until its release, simplified pre-integration workflow is less of a concern as that of Tumbleweed’s weekly submissions. We wanted to avoid having two different systems for managing sources in Leap 16 and to ensure git adoption in its first release.
The transition to Git should be completed by the end of the year. Once scaling concerns are addressed, Tumbleweed is expected to fully adopt Git as well. Developers can reach out to the factory mailing list if they have any questions.
This blog is meant to help contributors understand the shift to a Git-based workflow in both Leap and Tumbleweed, so they can align their packaging practices and people are encouraged to read the Documentation on the Git Packaging Workflow.
OpenVINO™ 2025.3.0 now natively available on openSUSE!
We’re excited to announce the new OpenVINO
2025.3.0 release, now available for installation directly from the official openSUSE repository. It expands native support for running generative AI and LLM models with acceleration on Intel® CPUs, GPUs, and NPUs!
Highlights of the 2025.3.0 release:
Expanded coverage for GenAI and LLMs:
- New supported models: Phi-4-mini-reasoning, AFM-4.5B, Gemma-3 (1B-it, 4B-it, 12B).
- NPU support for Qwen3-1.7B, 4B, and 8B — with optimized models from the OpenVINO Hugging Face repository.
- Preview support for OpenVINO Execution Provider in Windows ML, leveraging the power of the new Intel® Core
Ultra line.
Performance and advanced compression:
- Contexts of up to 8K tokens, dynamic prompts, and dynamic LoRA for NPU-based LLMs.
- Dynamic batch size with automatic reshaping and control of multiple concurrent requests.
- New per-channel cache compression technique, in addition to per-token KV-cache, further improving accuracy in GenAI.
Portability and performance anywhere:
- Official support for Intel® Arc Pro B50 and B60 GPUs.
- GGUF models in OpenVINO Model Server, with support for DeepSeek, Qwen2, Llama 3, etc.
- Data-aware int4 weight compression for ONNX in NNCF: less memory, same accuracy!
With this integration in openSUSE, developers can now take full advantage of the Linux ecosystem to build, test, and deploy AI in a more efficient, portable, and optimized way.
Install via Zypper and take your AI to the next level.
openvino #opensuse #GenAI #LLM #NPU #IntelCoreUltra #huggingface #edgeAI #IAopensource #multicortex #aiopensource #openvino2025 #intel
https://build.opensuse.org/request/show/1303034
Tumbleweed – Review of the week 2025/36
Dear Tumbleweed users and hackers,
Another week has passed at full speed, bringing five new snapshots to the Tumbleweed userbase. As usual, the snapshots (0828, 0829, 0901, 0902, and 0903) are packaged with software updates and fixes, just as you are accustomed to from Tumbleweed snapshots.
The most relevant changes were:
- fwupd 2.0.14
- postfix 3.10.4
- inxi 3.3.39
- Qt 6.9.2
- PHP 8.4.12
- PCRE2 10.46
- Mozilla Firefox 142.0.1
- SDL 3.2.22
- icewm 3.9.0
- LibreOffice 25.8.1.1
- libvirt 11.7.0
After the last snapshot is just before the next snapshot. In this spirit, 0904 is currently already in openQA and is being tested. As part of that snapshot, and plans taken from the Staging dashboard, you can expect these changes anytime soon:
- Linux kernel 6.16.4
- GCC 15.2
- cmake 4.1.0
- Mesa 25.2.x
The New Request Workflow is Going Live!
openSUSE Leap and Leap Micro doubles down on support
openSUSE Leap and Leap Micro doubles down on support
openSUSE Leap 15 is a record breaker. It will keep receiving updates until April 30 2026, delivering a lengthy amount of unmatched community support.
The usual lifecycle is 12 months plus 6 months of overlap for a smooth upgrade, but Leap 15.6 has been stretched by an additional 4 months so we can maintain the familiar six month overlap after the release of Leap 16.0 in October 2025.
Altogether, Leap 15 delivered more than 1.5 times the typical 60 months of support offered by most long-term support distributions.
We are excited to announce that the record will not stand for long. Leap 16 will take things even further by supporting users with maintenance updates over two releases, giving each release a full 24 months of community support. Unless there is a strategic change the final, the Leap 16 release will go to 16.6 in Fall 2031 and it will keep receiving updates until Leap 17.1 arrives two years later.
Essentially the same applies to our immutable server distribution openSUSE Leap Micro, which is adopting the Leap 16 lifecycle and effectively becomes one of the Leap 16 appliances.
And for those who need even more than 24 months of support for a point release, the opensuse migration tool makes it simple to move to SUSE Linux Enterprise or SLE Micro where decades of support are available.
This long lifecycle is only possible because Leap keeps sharing its binary core with SUSE Linux Enterprise, which is also extending its general support to 24 months.
The long lifecycle of Leap 15 also brought some complaints that parts of the system became outdated. Leap 15.6 and the corresponding SLES refresh already solved many of the biggest pain points such as old versions of Ruby and system Python.
Learning from the past, openSUSE Leap 16 is better prepared. We plan to revisit the tic toc model and give product management more flexibility to deliver larger ecosystem updates when needed, rather than strictly enforcing a feature release followed by a maintenance release.
I believe this is GREAT NEWS for everyone looking for a free stable modern and predictable community-supported platform to base their solutions on.