
Chaos Computer Club - archive feed
14,494 episodes — Page 25 of 290
Let's discuss on taking Mirrors Pro (osc24)
Today we will talk about Linux Mirrors. What do people use them for? Why they could use a (tiny bit) of modernization? What are the security implications? Where are we now and where do we plan to go? We will show you what we have done to take care of these concerns, how far we’ve gotten and our vision for the road ahead. We want to hear about everyone's opinions on what we’re doing well and more importantly on what we’re doing wrong. Today we will talk about Linux Mirrors. What do people use them for? Why they could use a (tiny bit) of modernization? What are the security implications? Where are we now and where do we plan to go? We will show you what we have done to take care of these concerns, how far we’ve gotten and our vision for the road ahead. We want to hear about everyone's opinions on what we’re doing well and more importantly on what we’re doing wrong. about this event: https://c3voc.de
ALP and SELinux: One year later (osc24)
With ALP we switch from AppArmor to SELinux. This talk will discuss the current state of SELinux on ALP: - what works well - what are the challenges we've seen - what to expect in the future This talk requires a basic understanding of SELinux (e.g. last years talk) With ALP we switch from AppArmor to SELinux. This talk will discuss the current state of SELinux on ALP: - what works well - what are the challenges we've seen - what to expect in the future This talk requires a basic understanding of SELinux (e.g. last years talk) about this event: https://c3voc.de
Midori is much more than a web browser (osc24)
Midori features by being a light, fast and secure browser but in recent years it has become the epicenter of open source and free software services, with a focus on privacy, OpenSUSE is our center for the construction and distribution of Midori. We want to present Midori to the entire free software and OpenSUSE community as a tool for the protection of privacy, for security, also as a vehicle of innovation for navigation and as an ecosystem for the construction of services that revolve around the browser. We are going to talk about Midori, a renowned browser that has been renewed, we are going to talk about the news, our future plans, our commitment to privacy and free software, and we are also going to talk about how we use OpenSUSE in our construction process and the integration of Midori with other applications and services. VPN browsing, DNS, ad blocker, search engine, AstianGO and many other services aimed at user privacy and security. Midori features by being a light, fast and secure browser but in recent years it has become the epicenter of open source and free software services, with a focus on privacy, OpenSUSE is our center for the construction and distribution of Midori. We want to present Midori to the entire free software and OpenSUSE community as a tool for the protection of privacy, for security, also as a vehicle of innovation for navigation and as an ecosystem for the construction of services that revolve around the browser. We are going to talk about Midori, a renowned browser that has been renewed, we are going to talk about the news, our future plans, our commitment to privacy and free software, and we are also going to talk about how we use OpenSUSE in our construction process and the integration of Midori with other applications and services. VPN browsing, DNS, ad blocker, search engine, AstianGO and many other services aimed at user privacy and security. about this event: https://c3voc.de
SUSE ALP: State of the matters (osc24)
Last two years I have talked at this conference about the SUSE ALP - about SUSE’s plans, the products to come, alsi the technology included. A year is a long time, therfore I would like to share what has changed since last year, which products are already out, which are just to come and what will come late r, and how the openSUSE project can build their own products on top of it. Last two years I have talked at this conference about the SUSE ALP - about SUSE’s plans, the products to come, alsi the technology included. A year is a long time, therfore I would like to share what has changed since last year, which products are already out, which are just to come and what will come late r, and how the openSUSE project can build their own products on top of it. about this event: https://c3voc.de
Lotta Puppet Trash (fusion24)
3 Generationen und ein Urlaubsparadies, aber der Haussegen hängt schief. Langeweile und zwei Mütter die angestrengt versuchen, ihre übel gelaunte Tochter von schlimmeren ab zu halten. Oma Odette, geht der Weilen ne Runde saunieren. Und was ist mit dem Neuzuwachs der Familie? Es wird wild, absurd, brutal, lustig und blutig! Happy Holidays! Language: DE Translation: NO Recording: YES 3 generations and a vacation paradise, but the house is a mess. Boredom and two mothers trying hard to keep their bad-tempered daughter from doing worse. Grandma Odette goes for a sauna. And what about the new addition to the family? It's going to be wild, absurd, brutal, funny and bloody! Happy Holidays! Language: DE Translation: NO Recording: YES about this event: https://c3voc.de
Künstliche Intelligenz (oc)
In dieser umfassenden Einführung werden wir die grundlegenden Fragen klären: Was ist KI? Woher kommt sie? Wie funktioniert KI eigentlich? Wie funktionieren Large Language Models? Was sind die Risiken von KI? Was bringt KI in der Zukunft? Von den historischen Meilensteinen bis hin zu den modernen großen Sprachmodellen wie GPT-4 werden wir die Entwicklungen und das Potenzial der KI durchleuchten. Wir werden nicht nur die technische Seite beleuchten, sondern auch einen Blick in die Zukunft werfen: Was kann KI in den kommenden Jahren für unsere Gesellschaft leisten? about this event: https://c3voc.de
What is openSUSE? and how does it help SUSE and its Partners? (osc24)
This session will provide an introduction to the openSUSE Project. It will include details about how the openSUSE community works in close relationship with SUSE to provide benefits to both openSUSE's users and SUSE's Partners. The Session will cover the following topics: * The openSUSE Community * openSUSE's Linux Distributions * openSUSE's Other Projects * How openSUSE helps SUSE and its Partners. * How you can partner with openSUSE Directly. This session will provide an introduction to the openSUSE Project. It will include details about how the openSUSE community works in close relationship with SUSE to provide benefits to both openSUSE's users and SUSE's Partners. The Session will cover the following topics: * The openSUSE Community * openSUSE's Linux Distributions * openSUSE's Other Projects * How openSUSE helps SUSE and its Partners. * How you can partner with openSUSE Directly. about this event: https://c3voc.de
Pagure CI integration with AWS CodePipeline (osc24)
Pagure is a lightweight git centered forge based on Python with a long usage history in the Fedora project. It's well known in the openSUSE project too with an instance on code.opensuse.org. I demonstrate in this talk the current state of the Pagure Plugin system. How I implemented AWS CodePipeline as additional CI type. And how this can serve as blueprint to optimize the Plugin system and add other CI types. I will share the current status of my work to run Pagure on Kubernetes. And some good-first-issues you can tackle if you want to contribute to Pagure. Pagure is a lightweight git centered forge based on Python with a long usage history in the Fedora project. It's well known in the openSUSE project too with an instance on code.opensuse.org. I demonstrate in this talk the current state of the Pagure Plugin system. How I implemented AWS CodePipeline as additional CI type. And how this can serve as blueprint to optimize the Plugin system and add other CI types. I will share the current status of my work to run Pagure on Kubernetes. And some good-first-issues you can tackle if you want to contribute to Pagure. about this event: https://c3voc.de
openSUSEway: a Sway Desktop Environment for openSUSE (osc24)
[openSUSEway](https://en.opensuse.org/Portal:OpenSUSEway) is a Desktop Environment based on Sway - a tiling Wayland compositor. In this talk we would like to present the state of the project, what is our vision, what tools we include and why. We will then go through the new features and improvements that were added by the community in the past couple of years, what we have learned from other similar projects, and show a live demo of what an openSUSEway desktop looks like. We will conclude with our future direction and what our next challenges are. [openSUSEway](https://en.opensuse.org/Portal:OpenSUSEway) is a Desktop Environment based on Sway - a tiling Wayland compositor. In this talk we would like to present the state of the project, what is our vision, what tools we include and why. We will then go through the new features and improvements that were added by the community in the past couple of years, what we have learned from other similar projects, and show a live demo of what an openSUSEway desktop looks like. We will conclude with our future direction and what our next challenges are. about this event: https://c3voc.de
Uyuni: the open-source configuration and infrastructure management solution for software-defined infrastructure. (osc24)
Uyuni is a configuration and infrastructure management tool that saves time, costs and headaches when managing and updating tens, hundreds or even thousands of machines. With automated patch and package management, it enables the deployment of patches and packages based on software channels and repositories that can be assigned. Uyuni makes it easier to onboard and manage any Linux server connected to the network, from IoT edge devices to Kubernetes environment, no matter where it is located (private or 3rd party data center or in the public cloud). Uyuni is a single tool for automated deployment of hardened OS templates (bare metal/VM/container) to tens of thousands of servers and IoT devices for faster, consistent and repeatable provisioning and configuration without compromising speed or security. The CVE audit feature allows to check the status of public security patches and with OpenSCAP it's also possible to check for specification compliance and apply remediations right from Uyuni. Uyuni is a configuration and infrastructure management tool that saves time, costs and headaches when managing and updating tens, hundreds or even thousands of machines. With automated patch and package management, it enables the deployment of patches and packages based on software channels and repositories that can be assigned. Uyuni makes it easier to onboard and manage any Linux server connected to the network, from IoT edge devices to Kubernetes environment, no matter where it is located (private or 3rd party data center or in the public cloud). Uyuni is a single tool for automated deployment of hardened OS templates (bare metal/VM/container) to tens of thousands of servers and IoT devices for faster, consistent and repeatable provisioning and configuration without compromising speed or security. The CVE audit feature allows to check the status of public security patches and with OpenSCAP it's also possible to check for specification compliance and apply remediations right from Uyuni. about this event: https://c3voc.de
Challenges in End-to-End Automation of IT processes (osc24)
In the last years we worked hard at automating (technical) IT processes. In the talk I'll reflect what we did, what went well and what didn't work out. We now see that the next big challenges won't be the technical stuff - that's s "solved problem". We face a couple of challenges: - Reducing manual overhead in planning/preparing - Integration in ITSM processes especially change and incident - Automating manual processes or eliminating them. We'll view at some tools that may help us, but the biggest challenge will be a change in the mindset: How can we reduce work (possibly to zero)? Slides [https://www.jochen.org/vortraege/challenges-in-automation.pdf](https://www.jochen.org/vortraege/challenges-in-automation.pdf) In the last years we worked hard at automating (technical) IT processes. In the talk I'll reflect what we did, what went well and what didn't work out. We now see that the next big challenges won't be the technical stuff - that's s "solved problem". We face a couple of challenges: - Reducing manual overhead in planning/preparing - Integration in ITSM processes especially change and incident - Automating manual processes or eliminating them. We'll view at some tools that may help us, but the biggest challenge will be a change in the mindset: How can we reduce work (possibly to zero)? Slides [https://www.jochen.org/vortraege/challenges-in-automation.pdf](https://www.jochen.org/vortraege/challenges-in-automation.pdf) about this event: https://c3voc.de
Y2038: utmp, wtmp and lastlog (osc24)
The year 2038 problem (also known as Y2038) is a time formatting bug on Unix systems with representing times after 03:14:07 UTC on 19 January 2038. This happens with a 32bit time_t, not with a 64bit time_t. The general statement so far has always been that on 64bit systems with a 64bit time_t you are safe with respect to the Y2038 problem. But this isn't correct: on bi-arch systems like x86-64 (so which can execute 64bit and 32bit binaries) glibc defines __WORDSIZE_TIME64_COMPAT32, which leads to the fact, that struct utmp (used for utmp, wtmp and btmp) and struct lastlog uses int32_t instead of time_t. So we have a Y2038 problem, which is not easy fixable, as this would require ABI and on disk format changes. In this talk I will speak about the background, which tools are affected and how we solved that in openSUSE by dropping utmp, wtmp, btmp and lastlog completely and make use of systemd-logind and other tools instead. The year 2038 problem (also known as Y2038) is a time formatting bug on Unix systems with representing times after 03:14:07 UTC on 19 January 2038. This happens with a 32bit time_t, not with a 64bit time_t. The general statement so far has always been that on 64bit systems with a 64bit time_t you are safe with respect to the Y2038 problem. But this isn't correct: on bi-arch systems like x86-64 (so which can execute 64bit and 32bit binaries) glibc defines __WORDSIZE_TIME64_COMPAT32, which leads to the fact, that struct utmp (used for utmp, wtmp and btmp) and struct lastlog uses int32_t instead of time_t. So we have a Y2038 problem, which is not easy fixable, as this would require ABI and on disk format changes. In this talk I will speak about the background, which tools are affected and how we solved that in openSUSE by dropping utmp, wtmp, btmp and lastlog completely and make use of systemd-logind and other tools instead. about this event: https://c3voc.de
Working together in one place with Nextcloud (osc24)
Nextcloud is the most popular self-hosted, open source collaboration platform for a reason. I'll go over some of those reasons, but more importantly, show and tell what Nextcloud can do for you. As home user, small business or big business (but an emphasis on the smaller side of things). Why should you care? A small handful of big tech firms are gathering up the data of nearly everybody on this planet. They use every trick at their disposal, from pricing to gate keeping, to make sure nobody gets in. And with our data comes not only a massive opportunity to squeeze profits out of everybody using digital devices, they also give a variety of 3-letter agencies a treasure trove of data to use for profiling and worse. But the good news is that, while Big Tech prefers everyone thinks otherwise, there is a real alternative to MS 365 and Google Workspace. If you are new to Nextcloud, this will be a great introduction. If you're aware of Nextcloud, I'll show you what it can do. And if you're very familiar with Nextcloud you'll still learn some things you didn't know! Nextcloud is the most popular self-hosted, open source collaboration platform for a reason. I'll go over some of those reasons, but more importantly, show and tell what Nextcloud can do for you. As home user, small business or big business (but an emphasis on the smaller side of things). Why should you care? A small handful of big tech firms are gathering up the data of nearly everybody on this planet. They use every trick at their disposal, from pricing to gate keeping, to make sure nobody gets in. And with our data comes not only a massive opportunity to squeeze profits out of everybody using digital devices, they also give a variety of 3-letter agencies a treasure trove of data to use for profiling and worse. But the good news is that, while Big Tech prefers everyone thinks otherwise, there is a real alternative to MS 365 and Google Workspace. If you are new to Nextcloud, this will be a great introduction. If you're aware of Nextcloud, I'll show you what it can do. And if you're very familiar with Nextcloud you'll still learn some things you didn't know! about this event: https://c3voc.de
Selbstbestimmungsgesetz: Juliet Meding & Luce deLire (fusion24)
Das"Transsexuellengesetz" ist Geschichte, soweit so gut. Was das neue Selbstbestimmungsgesetz, dass im November in Kraft tritt aber überhaupt bedeutet, was es mit der Anti-Gender-Ideologie von Rechtsaußen zu tun hat, und warum es Geflüchtete, Transfrauen und Menschen unter Betreuung besonders hart trifft, erfahrt ihr bei diesem StandUp-Theory-Theatre. Es geht - nicht nur - um Nazis in der Sauna! Ihr könnt direkt vor Ort, live und in Farbe, euren Personenstand und Namen ändern lassen und dabei in die Untiefen des Entdemokratisierungsdramas einsteigen. Ihr dürft Euch sogar den rechtlichen Rahmen aussuchen: Gesetz der Bundesregierung oder queerokratische Alternative? Language: DE Translation: EN Recording: YES The “Transsexuals Act” is history, so far so good. But what the new self-determination law, which comes into force in November, actually means, what it has to do with the anti-gender ideology of the far right, and why it hits refugees, trans women and people under care particularly hard, you can find out now. You can have your civil status and name changed on the spot, and delve into the depths of the de-democratization drama. You can even choose the legal framework: Federal government law or queerocratic alternative? Language: DE Translation: EN Recording: YES about this event: https://c3voc.de
Learning from embedded: less is more (osc24)
Ultimately, packaging is the right way to distribute and run software maintenance. But at the same time, there are very good reasons why in the Embedded world, images are often before package repositories. These reasons evolved over a very long time and did not change since. A number of typical problems, such as software bloat, configuration drift, broken updates etc are unacceptable in embedded systems as they may cause severe errors, ultimately "bricking" devices. Therefore there are specific practices to ensure those typical requirements for the embedded systems, those can be very beneficial also in other niches. If Edge Computing is on very constrained resources, there is actually a way to solve those "regular" problems, having maximum flexible and configurable solution, without _specifically_ developing a different, special distribution. This talk is intended to outline the following questions: - What are those earlier mentioned practices? - What is the benefit applying them and why does it matter? - Why Yocto Project is designed the way it is, and what part can be applied in SUSE world? - What is still missing in the process and what can be done so the result meets the requirements? **Spoiler**: _Keep it as simple as possible, but not simpler!_ :-) . Ultimately, packaging is the right way to distribute and run software maintenance. But at the same time, there are very good reasons why in the Embedded world, images are often before package repositories. These reasons evolved over a very long time and did not change since. A number of typical problems, such as software bloat, configuration drift, broken updates etc are unacceptable in embedded systems as they may cause severe errors, ultimately "bricking" devices. Therefore there are specific practices to ensure those typical requirements for the embedded systems, those can be very beneficial also in other niches. If Edge Computing is on very constrained resources, there is actually a way to solve those "regular" problems, having maximum flexible and configurable solution, without _specifically_ developing a different, special distribution. This talk is intended to outline the following questions: - What are those earlier mentioned practices? - What is the benefit applying them and why does it matter? - Why Yocto Project is designed the way it is, and what part can be applied in SUSE world? - What is still missing in the process and what can be done so the result meets the requirements? **Spoiler**: _Keep it as simple as possible, but not simpler!_ :-) . about this event: https://c3voc.de
OpenQA - review jobs and file bug report (osc24)
We have automation tests running in https://openqa.opensuse.org/. we aim to make each test green. jobs may fail if: 1. Product bugs 2. Test issue [we may need to update/fix our test code, needles etc] 3. Infrastructure issues [hardware issues/ network issues/ system upgrade etc] I will like to show you a bit how file a bug report if you finding any product bug. In general, it covers: 1. How to make sure it is a product bug 2. How to find useful logs 3. How to file a good bug report 4. How to use openQA webUI to file bug report We have automation tests running in https://openqa.opensuse.org/. we aim to make each test green. jobs may fail if: 1. Product bugs 2. Test issue [we may need to update/fix our test code, needles etc] 3. Infrastructure issues [hardware issues/ network issues/ system upgrade etc] I will like to show you a bit how file a bug report if you finding any product bug. In general, it covers: 1. How to make sure it is a product bug 2. How to find useful logs 3. How to file a good bug report 4. How to use openQA webUI to file bug report about this event: https://c3voc.de
Agama in action (osc24)
Agama is a new experimental installer for openSUSE and SUSE. Although it is under heavy development, it can already install openSUSE MicroOS and Tumbleweed, configuring several aspects of the system like networking and several storage technologies. Agama supports both interactive and unattended installations and can be controlled through a modern web interface, a powerful HTTP API and a convenient command line tool. Join this session to see all those capabilities in action on a real installation, no gimmicks! Agama is a new experimental installer for openSUSE and SUSE. Although it is under heavy development, it can already install openSUSE MicroOS and Tumbleweed, configuring several aspects of the system like networking and several storage technologies. Agama supports both interactive and unattended installations and can be controlled through a modern web interface, a powerful HTTP API and a convenient command line tool. Join this session to see all those capabilities in action on a real installation, no gimmicks! about this event: https://c3voc.de
Why openSUSE is the perfect OS for handhelds (osc24)
The **Steam Deck** has revolutionized the gaming handheld market. With the Linux-based immutable **SteamOS**, **Valve** has fostered an **active community** developing mods and alternative systems for this platform. **Other manufacturers** distribute **Windows-based** mobile consoles. However, time and time again it has been shown that **they lag behind Linux** in terms of software support. But **how easy** is it to **bring** a Linux distribution, say **openSUSE**, to the **Steam Deck**? In this talk, a **prototype** based on **openSUSE's** open technologies and infrastructure will be presented, which is **already** (almost) fully **functional** on the Steam Deck and many other devices. What are the **advantages** of this and comparable systems? Are there any disadvantages? Why will **YOU** personally want to use such a **system**? And why is **openSUSE** a perfect basis for this and many other device classes? The answers to these and many other questions are waiting for you! So **come along**! The **Steam Deck** has revolutionized the gaming handheld market. With the Linux-based immutable **SteamOS**, **Valve** has fostered an **active community** developing mods and alternative systems for this platform. **Other manufacturers** distribute **Windows-based** mobile consoles. However, time and time again it has been shown that **they lag behind Linux** in terms of software support. But **how easy** is it to **bring** a Linux distribution, say **openSUSE**, to the **Steam Deck**? In this talk, a **prototype** based on **openSUSE's** open technologies and infrastructure will be presented, which is **already** (almost) fully **functional** on the Steam Deck and many other devices. What are the **advantages** of this and comparable systems? Are there any disadvantages? Why will **YOU** personally want to use such a **system**? And why is **openSUSE** a perfect basis for this and many other device classes? The answers to these and many other questions are waiting for you! So **come along**! about this event: https://c3voc.de
K.I. (fusion24)
Alle reden über die Probleme, die KI verursachen kann, aber wie können wir sie zum Guten nutzen? Elias, ein alter Fusionist und Asperger-Autist mit ADHS, präsentiert „BrAIn Food“ - einen Multimedia-Vortrag, der euch in KI-Genies verwandelt. Es geht um die KI-Kunst, ums Prompts schreiben und KI-Hacks für unseren Alltag, z.B. um Protokolle von chaotischen Treffen anzulegen oder wie die KI Förderanträge für uns schreiben kann. Language: EN Translation: DE Recording: YES Everybody talks about the problems AI may cause, but how could we use it for the good? Elias, an old Fusionist and Asperger autist with ADHD, presents "BrAIn Food" – a multimedia lecture that turns you into AI geniuses. After an overview of the state of AI-art you will understand about writingprompts and using hacks for our Fusionist lifes, I.e.to structure chaotic meetings, score artfunding and many more. There will be space for questions and discussions. Language: EN Translation: DE Recording: YES about this event: https://c3voc.de
systemd soft-reboot and surviving it as application (osc24)
Since systemd v254 there is the nice feature of "soft-reboot" and since systemd v255 systemd services can survive a soft-reboot. In this talk I will speak about what soft-reboot exactly is, what are the benefits and what are the problems and the status of integration in openSUSE Tumbleweed and MicroOS. Based on this I will also explain how a systemd service can survive a soft-reboot and which requirements the application needs to fulfill for this. Since systemd v254 there is the nice feature of "soft-reboot" and since systemd v255 systemd services can survive a soft-reboot. In this talk I will speak about what soft-reboot exactly is, what are the benefits and what are the problems and the status of integration in openSUSE Tumbleweed and MicroOS. Based on this I will also explain how a systemd service can survive a soft-reboot and which requirements the application needs to fulfill for this. about this event: https://c3voc.de
openSUSE Aeon - Desktop Linux without getting Down and Dirty (osc24)
openSUSE Aeon is an exciting new take on Desktop Linux, aiming to provide Developers, Sysadmins, and general Linux enthusiasts, a fully functioning Desktop OS without the need for hands on management, tinkering, or any of the other distractions that come with 'traditional' Linux desktops. Leveraging years of experience and development in community and commercial efforts like MicroOS and SUSE Linux Enterprise Micro, Aeon takes the advances there and reworks them into a self-healing, self-managing, desktop platform. This session will introduce openSUSE Aeon to the SUSEcon audience and invite them to both use and contribute to the project. openSUSE Aeon is an exciting new take on Desktop Linux, aiming to provide Developers, Sysadmins, and general Linux enthusiasts, a fully functioning Desktop OS without the need for hands on management, tinkering, or any of the other distractions that come with 'traditional' Linux desktops. Leveraging years of experience and development in community and commercial efforts like MicroOS and SUSE Linux Enterprise Micro, Aeon takes the advances there and reworks them into a self-healing, self-managing, desktop platform. This session will introduce openSUSE Aeon to the SUSEcon audience and invite them to both use and contribute to the project. about this event: https://c3voc.de
Developing on Aeon with Distrobox (osc24)
With the advent of Atomic and Transactional systems like Aeon, our development workflow has to adapt to newer paradigms One of which is the use of containers for development. We will see a little introduction to what Aeon is, what Distrobox is, and how to cover all our use cases with it, so to feel at home, in our new containerized environment. [Presentation link](https://github.com/user-attachments/files/16028608/oSC24-distrobox.pdf) With the advent of Atomic and Transactional systems like Aeon, our development workflow has to adapt to newer paradigms One of which is the use of containers for development. We will see a little introduction to what Aeon is, what Distrobox is, and how to cover all our use cases with it, so to feel at home, in our new containerized environment. [Presentation link](https://github.com/user-attachments/files/16028608/oSC24-distrobox.pdf) about this event: https://c3voc.de
Secure Boot on Arm systems (osc24)
Secure boot on x86_64 is mostly taken for granted, as it is a mature feature in UEFI. When it comes to Arm, the Secure Boot implementation can differ on each platform as there's no standardization. In this session, we will learn the general approach used by vendors to implement a complete chain of trust and how you could use it in openSUSE for your next embedded project. Secure boot on x86_64 is mostly taken for granted, as it is a mature feature in UEFI. When it comes to Arm, the Secure Boot implementation can differ on each platform as there's no standardization. In this session, we will learn the general approach used by vendors to implement a complete chain of trust and how you could use it in openSUSE for your next embedded project. about this event: https://c3voc.de
Creating a Language Server for RPM Spec Files (osc24)
RPM packaging is a foundation of the software delivery mechanism on RPM-based Linux distributions, with RPM spec files acting as blueprints for package builds. Despite their enduring relevance, support for editing RPM spec files has not evolved significantly over time, leaving users with rudimentary tooling. In response to this challenge, we have developed a prototype of a language server tailored specifically for RPM spec files. Based on a language server protocol, the solution offers a unified editing experience across various editors, giving users features like auto-completion, linting, and jump-to-definition. All of this is achieved by centralizing "code smarts" in one place. Join us to learn about the thinking behind the language server and the challenges we faced when implementing this new tool. RPM packaging is a foundation of the software delivery mechanism on RPM-based Linux distributions, with RPM spec files acting as blueprints for package builds. Despite their enduring relevance, support for editing RPM spec files has not evolved significantly over time, leaving users with rudimentary tooling. In response to this challenge, we have developed a prototype of a language server tailored specifically for RPM spec files. Based on a language server protocol, the solution offers a unified editing experience across various editors, giving users features like auto-completion, linting, and jump-to-definition. All of this is achieved by centralizing "code smarts" in one place. Join us to learn about the thinking behind the language server and the challenges we faced when implementing this new tool. about this event: https://c3voc.de
Certificate Auto Enrollment on Linux: A Practical Guide (osc24)
Learn how to automate certificate enrollment within your infrastructure using Samba. This session delves into the configuration of Certificate Auto Enrollment, enabling seamless integration with Active Directory Certificate Services. Discover how Samba's approach to certificate renewal simplifies the process, enhancing security and efficiency across your organization. Learn how to automate certificate enrollment within your infrastructure using Samba. This session delves into the configuration of Certificate Auto Enrollment, enabling seamless integration with Active Directory Certificate Services. Discover how Samba's approach to certificate renewal simplifies the process, enhancing security and efficiency across your organization. about this event: https://c3voc.de
Another Approach to AI (osc24)
Progressively, there are more and more [risks](https://jarnoduursma.com/blog/the-risks-of-artificial-intelligence/) associated with computer intelligence, and as a transparent software company we at Nextcloud have the responsibility to intervene and protect our users. [Microsoft laid off its entire ethics and society team](https://www.theverge.com/2023/3/13/23638823/microsoft-ethics-society-team-responsible-ai-layoffs), the team that taught employees how to make AI tools responsibly. Nextcloud on the other hand, embraces the ethics and challenges that make up today’s AI and aims to take them head on. The field of AI is moving fast, and many of the new capabilities face ethical and even legal challenges. Moreover, many people ask WHY do you need it in the first place. Until Hub 3, we succeeded in offering features like related resources, recommended files, our priority inbox and even [face and object recognition](https://nextcloud.com/blog/all-you-need-to-know-about-facial-recognition-technology-and-the-nextcloud-recognize-app/) without reliance on proprietary blobs or third party servers. Yet, while there is a large community developing ethical, safe and privacy-respecting technologies, there are many other relevant technologies users might want to use. We want to provide users these cutting-edge technologies – but also be transparent. For some use cases, ChatGPT might be reasonable, while for other data, absolutely not. To differentiate these, we developed an Ethical AI Rating. I will describe how our Ethical AI rating works, and give a bunch of examples. And, as a bonus, show how it is integrated in Nextcloud and how it can help you get work done - without leaking your data! I look forward to any feedback you wonderful folks in the audience have. Progressively, there are more and more [risks](https://jarnoduursma.com/blog/the-risks-of-artificial-intelligence/) associated with computer intelligence, and as a transparent software company we at Nextcloud have the responsibility to intervene and protect our users. [Microsoft laid off its entire ethics and society team](https://www.theverge.com/2023/3/13/23638823/microsoft-ethics-society-team-responsible-ai-layoffs), the team that taught employees how to make AI tools responsibly. Nextcloud on the other hand, embraces the ethics and challenges that make up today’s AI and aims to take them head on. The field of AI is moving fast, and many of the new capabilities face ethical and even legal challenges. Moreover, many people ask WHY do you need it in the first place. Until Hub 3, we succeeded in offering features like related resources, recommended files, our priority inbox and even [face and object recognition](https://nextcloud.com/blog/all-you-need-to-know-about-facial-recognition-technology-and-the-nextcloud-recognize-app/) without reliance on proprietary blobs or third party servers. Yet, while there is a large community developing ethical, safe and privacy-respecting technologies, there are many other relevant technologies users might want to use. We want to provide users these cutting-edge technologies – but also be transparent. For some use cases, ChatGPT might be reasonable, while for other data, absolutely not. To differentiate these, we developed an Ethical AI Rating. I will describe how our Ethical AI rating works, and give a bunch of examples. And, as a bonus, show how it is integrated in Nextcloud and how it can help you get work done - without leaking your data! I look forward to any feedback you wonderful folks in the audience have. about this event: https://c3voc.de
Uyuni project: where we started... (osc24)
The Uyuni project was announced at the openSUSE conference 2018. In this presentation the attendees will be guided into our journey, from the fork of Spacewalk to the ongoing containerization effort that is taking place these days. While presenting the different ways to contribute to the project, the attendees will be also involved in defining how to shape the future of the project. The Uyuni project was announced at the openSUSE conference 2018. In this presentation the attendees will be guided into our journey, from the fork of Spacewalk to the ongoing containerization effort that is taking place these days. While presenting the different ways to contribute to the project, the attendees will be also involved in defining how to shape the future of the project. about this event: https://c3voc.de
The XZ Backdoor - report from our side, retrospection and looking forward (osc24)
End of March 2024 we faced the biggest supply chain attack we seen so far in the Open Source Ecosystem. A dedicated attacker had launched a multi year effort to backdoor the xz compression library. openSUSE Tumbleweed contained the backdoor for 3 whole weeks before an outside researcher found it. We will give a report on this attack, our reaction on it and also go into some future considerations to detect or avoid these kind of sophisticated attacks. End of March 2024 we faced the biggest supply chain attack we seen so far in the Open Source Ecosystem. A dedicated attacker had launched a multi year effort to backdoor the xz compression library. openSUSE Tumbleweed contained the backdoor for 3 whole weeks before an outside researcher found it. We will give a report on this attack, our reaction on it and also go into some future considerations to detect or avoid these kind of sophisticated attacks. about this event: https://c3voc.de
openQA - current state and moving forward (osc24)
openQA is one of the key elements that ensures the delivery of updates and new versions of operating systems, it is the heart of openSUSE's effort to deliver stable systems for our users, and SUSE's quality gate, used to ensure that updates and new releases of the operating systems aren't breaking operations of customers; however it is growing outside openSUSE, Fedora and SUSE, expanding to other distributions, so we need to start thinking how to collaborate further, and have a clearer picture for users of openQA's ecosystem and integration capabilities. The speaker will give a quick overview of features, challenges and opportunities for further development, but also, wants to provide a window into how to close the gap between users outside of openSUSE/SUSE and the openQA development team Santiago Zarate is the Product Owner of [Quality Engineering Core team](https://progress.opensuse.org/projects/qa/wiki/Core#Scope-of-QE-Core) at SUSE, they collaborate closely with the [Quality Engineering Tools Team](https://progress.opensuse.org/projects/qa/wiki/Tools#Team) and rest of the teams of the Quality Engineering department To know more about openQA - [Talk: Shortening the feedback loops between R&D and the real world with openQA @ SUSECON 2022](https://youtu.be/3HN61L7RzzA?si=cFKT5JkujLc-w3_n) openQA is one of the key elements that ensures the delivery of updates and new versions of operating systems, it is the heart of openSUSE's effort to deliver stable systems for our users, and SUSE's quality gate, used to ensure that updates and new releases of the operating systems aren't breaking operations of customers; however it is growing outside openSUSE, Fedora and SUSE, expanding to other distributions, so we need to start thinking how to collaborate further, and have a clearer picture for users of openQA's ecosystem and integration capabilities. The speaker will give a quick overview of features, challenges and opportunities for further development, but also, wants to provide a window into how to close the gap between users outside of openSUSE/SUSE and the openQA development team Santiago Zarate is the Product Owner of [Quality Engineering Core team](https://progress.opensuse.org/projects/qa/wiki/Core#Scope-of-QE-Core) at SUSE, they collaborate closely with the [Quality Engineering Tools Team](https://progress.opensuse.org/projects/qa/wiki/Tools#Team) and rest of the teams of the Quality Engineering department To know more about openQA - [Talk: Shortening the feedback loops between R&D and the real world with openQA @ SUSECON 2022](https://youtu.be/3HN61L7RzzA?si=cFKT5JkujLc-w3_n) about this event: https://c3voc.de
A Message from SUSE's CEO (osc24)
Dirk-Peter van Leeuwen (“DP”) is Chief Executive Officer of SUSE and a member of the Management Board of SUSE S.A. DP will provide a short video to conference attendees. Dirk-Peter van Leeuwen (“DP”) is Chief Executive Officer of SUSE and a member of the Management Board of SUSE S.A. DP will provide a short video to conference attendees. about this event: https://c3voc.de
Blind Folded Experience - YOGA (fusion24)
Schenkt Euren Augen eine Pause und lasst Euch mit geschlossenen oder verbundenen Augen durch eine sanfte und kraftvolle Yogaeinheit leiten. Spürt die Qualitäten der Übungen so bewusst wie noch nie. Schärft eure anderen Sinne, und lasst euch nur von Anna-Lenas Worten führen. Sie hat die Erfahrung gemacht, dass ihr nicht nur während, sondern auch nach dieser Stunde die Welt ganz neu erleben werdet. Language: DE Translation: NO Recording: NO Experience fascination that will broaden your horizon. Follow only Anna Lenas words and let her detailed instructions safely guide you through a gentle, yet powerful, blindfolded yoga session. Find your focus within and strengthen the perception of your other senses. Feel the qualities of body, breath and meditation exercises as consciously as you have never before. Give your eyes a loving break and enjoy this unique body experience with mindfulness. Language: DE Translation: NO Recording: NO about this event: https://c3voc.de
BEi DEN LINKEN (fusion24)
Das Stück blickt zurück auf 20 Jahre politischen Aktivismus in Deutschland und beschäftigt sich mit Begegnungen von Migrant:innen und linker Szene. Die Bewohner:innen eines Flüchtlingslagers fragen sich: Wer sind die und warum unterstützen die uns? Und was macht dieser Austausch mit uns? Das Stück handelt von Empowerment und Missverständnissen und wirft einen humorvollen Blick auf eine gemeinsame Bewegung. Language: DE Translation: NO Recording: YES The play reflects on 20 years of political activism in Germany and encounters between migrants and the left. The inhabitants of a refugee camp are wondering: who are these people and why are they supporting us? What is this exchange doing to us? This is a piece about empowerment and misunderstandings with a humorous perspective on a joint movement. Language: DE Translation: NO Recording: YES about this event: https://c3voc.de
Radikale Therapie (fusion24)
Radikale Therapie hat alles was wir gut finden: Selbstorganisiert, hierarchielos, heilsam, radikal. RT ist eine sozialkritische Gruppentherapie, aufbauend auf Co-Counselling und Aspekten der Transaktions-Analyse. Statt einzeln zu therapeutischen Institutionen zu rennen oder unendlich lang auf einen Therapieplatz zu warten, trifft sich eine gleichgesinnte Gruppe in einem geschützten Rahmen, um sich selbstbestimmt über Machtstrukturen und kulturelle und soziologische Prägungen auszutauschen und Wege zu finden authentisch, frei und gut zu sich und anderen zu sein. Hier lernst du erste Methoden kennen und erfährst, wie du eine solche Gruppe finden und gründen kannst. Language: DE Translation: EN Recording: NO Are you tired of therapists who do not understand your worldview? Have you been unsuccessful in trying to phone your way through an endless list of therapists or are you lacking the success mindset of paying for your therapy as a private luxury? Or maybe you just want to exchange with cool, like-minded people in a safe space about the shit that is happening in our society, about societal and political power strutures, cultural and sociological imprinting as well as finding ways to be authentic, free and good to yourself? Then Radical Therapy (RT) could be your thing. RT relies on methods from co-counselling, expanding them with theory from the radical psychiatry of transactional analysis. You will have the opportunity to get a glimpse into elements of RT. Also, of course, you will learn how to find or start a respective group. Language: DE Translation: EN Recording: NO about this event: https://c3voc.de
Migranos (fusion24)
Migranos ist eine migrantische, selbstorganisierte Initiative von Menschen mit Flucht- und Rassismuserfahrung im sächsischen Alltag, die die gesellschaftliche Teilhabe von geflüchteten Menschen, vor allem jenen in Lagern und im ländlichen Raum stärken. Sie empowern durch neue Vernetzungsformate und Vorträge/ Workshops (u.a. für Fachkräfte und solidarische Menschen). Ziel ist es mehr Sichtbarkeit für ihre Lebenssituation zu erreichen und langfristig eine breitere gesellschaftliche Solidarität zuerzielen. Language: EN Translation: DE Recording: YES Migranos is a migrant, self-organised initiative of people who have experienced flight and everyday racism in Saxony. Theywant to empower refugees to participate in society, especially those living in camps and in rural areas through new networking formats and raise awareness of their living conditions through presentations/workshops (e.g. for experts and supporters). The long-term goal is to achieve a broader solidarity in society. Language: EN Translation: DE Recording: YES about this event: https://c3voc.de
Hass im Netz (dgna)
Mit dem Aufkommen von Social Media und Blog Posts erhielten plötzlich alle eine Stimme. Diese neue digitale Öffentlichkeit bietet aufregende Möglichkeiten zum Austausch und gegenseitigen Informieren. Gleichzeitig sind wir mit neuen Problemen konfrontiert: Digitale Hassrede und Beschimpfungen stellen etablierte soziale Normen in Frage. Was können wir dagegen tun? Vorgeschlagene Lösungen beinhalten oft Zensur oder Deanonymisierung im digitalen Raum. Aber gibt es vielleicht auch andere Wege, um den digitalen Dialog vor der Verrohung zu retten, und die digitale Öffentlichkeit wiederherzustellen? Am Netzpolitischen Abend erzählt uns Sophie Achermann, Leiterin und Mitbegründerin der Public Discourse Foundation, was es für einen gesunden medialen Diskurs braucht, und welche Rolle die Medienhäuser dabei spielen. about this event: https://www.digitale-gesellschaft.ch/event/netzpolitischer-abend-zu-hass-im-netz/
Team Updates @ Field Day (WHY2025)
Team Leads give a short update about the current status of their planning. about this event: https://c3voc.de
Jugend hackt Zürich 2024, Projektpräsentationen (jhch)
Präsentation der Projekte anlässich des «Jugend hackt» Events vom 14 bis 16 Juni 2024 im Hackerspace «Bitwäscherei» in Zürich. In «Evolution City» können die Spieler:innen Kraftwerke bauen, um Strom zu produzieren, womit sie wieder Geld verdienen, um neue Kraftwerke zu bauen. Allerdings steigt der CO2-Gehalt in der Luft bei jedem Kraftwerkbau entsprechend dem Bautyp. Wer 10 Minuten überlebt, ohne zu viel CO2 zu produzieren, gewinnt. Mit «Sicherheit auf die 1!» wurde eine Alarmanlage entworfen, bei der ein Sensor durch einen Micro Controller ein hörbares Signal auslöst, wenn es in Kontakt mit Licht kommt. Das Signal kann über Internet weltweit über eine Webseite empfangen werden: «So kann man immer und überall wissen, ob jemand in den Raum eingetreten ist oder nicht». «trainCCI» - ein alternativer Weg zur Reiseplanung bei instabiler Internetverbindung. Dabei können Reisewillige Abreiseort, -zeitpunkt und Zielort über einfache Kommandozeilen eingeben und erhalten dann – einzig diese Abfrage bedarf Internetanschluss – die entsprechenden ÖV-Verbindungen. Bei «Quack Snacks» geht es schliesslich um gesunde Ernährung. Im Spiel können Gamer:innen in einem Restaurant zum Beispiel zwischen einem Burger und einem Salat wählen. «Wählst du den Salat, wirst du upgegraded, gesund und sportlich.» Nach der Wahl des Burgers erscheint eine Zuckerpuppe, die Diabetes darstellt, ein Schrei hallt durch den Raum, und es erscheint ein Grabmal: «Du wirst gelöscht und stirbst.» about this event: https://c3voc.de
Abreise / Closing (iger-2024)
Das IGERla geht zu Ende und wir blicken gemeinsam zurück, bevor sich alle wieder in der Weite des Universums verteilen. Auf Wiedersehen, werte Datenreisende! about this event: https://cfp.fairydust.reisen/iger-2024/talk/RLDUE3/
Hacker*innen-Jeopardy! (iger-2024)
Wenn ihr beim Anblick des Titels instinktiv vor euch auf den Tisch geschlagen und "Was ist ein beliebtes Abendprogramm auf Chaos-Veranstaltungen?" (oder so ähnlich) gerufen habt, dann habt ihr alles richtig gemacht. Beim Hacker*innen-Jeopardy! müsst ihr schnell sein, wenn ihr die Lösung wisst, und euch auch noch richtig ausdrücken, denn es gilt "Antwort sucht Frage": Die "Antwort" ist hier vorgegeben; eure Aufgabe ist es, einen dazu passenden Fragesatz zu formulieren. Die backspace-Variante des Hacker*innen-Jeopardy! ist euch vielleicht schon von den vergangenen Intergalaktischen Erfahrungsreisen bekannt. Inzwischen gibt es eine neue Iteration der Software. about this event: https://cfp.fairydust.reisen/iger-2024/talk/MN89ZZ/
Remote Attestation in 5G Networks (iger-2024)
The ongoing digitization of the society and services call for a high availability of secure mobile networks, like 5G. Remote attestation can be a measure to maximize trust, security and privacy when using a mobile telecommunications network. In this talk, I give a rough overview on how a mobile network works, followed by some insight into ongoing threats the public mobile network is facing in the past years. As a solution to some of the threats, remote attestation is a heavily discussed topic in research, and even from the mobile equipment vendors. I give an introduction into the topic of remote attestation and how and where it can be used in mobile networks and how it might impact the performance. about this event: https://cfp.fairydust.reisen/iger-2024/talk/YCWG7K/
Lightning Talks (iger-2024)
Du hast 5 Minuten Zeit, um über dein Herzensthema zu referieren. Wenn du schon immer einen Vortrag halten wolltest, aber dich nie dazu durchringen konntest, diesen offiziell einzureichen, hast du jetzt die Gelegenheit, einen Anfang zu wagen. Die Bühne gehört dir! vmann set! franzt archeologische prospektion martinm Primitives Asset-Management mit Textdateien p.t.flea Driftcart venti Lasers in (Hack)Space about this event: https://cfp.fairydust.reisen/iger-2024/talk/3SSJG7/
Meshtastic - sichere, autarke Kommunikation im Funk-Mesh (iger-2024)
Ohne Weltuntergangspropheten zu sein, autarke Kommunikation finden wir schön. Noch schöner, wenn wir auch unter uns bleiben können. Und mit LoRa funken, das ist das i-Tüpfelchen! Über Ge- und Missbrauchsmöglichkeiten sprechen wir in Theorie und Praxis. Was ist ein Node, was macht ein Repeater und was haben Message-Queues damit zu tun? Wie sieht das aus, wenn ich von A nach C eine Nachricht schicken möchte, aber C nicht in Reichweite ist? Könnte ich damit eigentlich auch Sensordaten übertragen? Aufbauend auf Microcontroller-Hardware (ESP32) für lizenzfreien LoRa-Betrieb schauen wir Hard- und Software etwas unter die Haube und probieren aus, ob uns das gefällt. Wer schon ein oder mehrere Boards hat - bitte mitbringen! Einige Boards für 433 MHz haben wir auch vorrätig. about this event: https://cfp.fairydust.reisen/iger-2024/talk/W9PEDM/
Das MINT-Mobil unterwegs (iger-2024)
Mobile Workshops für Kinder und Jugendliche im Landkreis zu Mathe, Informatik, Naturwissenschaft und Technik Das MINT-Mobil fährt bepackt mit Material von Graphitpulver bis VR-Brillen und Lernrobotern durch den Landkreis und veranstaltet Workshops zu Mathe, Informatik, Naturwissenschaft und Technik für Kinder und Jugendliche. Dieses Projekt möchte ich euch kurz vorstellen (an dem ich seitens der Uni Bamberg beteiligt bin). Dabei möchte ich einige von euch auch dafür gewinnen, in meinen IGERla-Workshop »MINT-Mobil und Experimentierkiste Informatik« zu kommen, um über Ideen, Erfahrungen und Verbesserungen zu reden. about this event: https://cfp.fairydust.reisen/iger-2024/talk/XLAAXV/
Elementarinformatik – was ist das? (iger-2024)
Computational Thinking und digitale Handlungskompetenzen kindgerecht vermitteln – FELI an der Uni Bamberg Die Forschungsgruppe Elementarinformatik (FELI) an der Uni Bamberg möchte informatische Konzepte über die Anregung von „Wie funktioniert das?“'-Fragen vermitteln und zudem Lehrkräfte dazu befähigen, dies mit ihren Schülys zu tun. Schon Kinder lernen Computer, Smartphones, das Internet als Konsumentys kennen, als ein Angebot, das sie weitgehend passiv nutzen. Wir wollen ihnen die Fähigkeiten vermitteln, diese Technik als Werkzeug nutzen zu können, ihre Ideen umzusetzen, zu gestalten. Dazu müssen sie verstehen, wie Computer grundsätzlich funktionieren, was ein Algorithmus ist, und wieso der Rechner nicht mit dem Drucker reden kann. about this event: https://cfp.fairydust.reisen/iger-2024/talk/T3VQVG/
KI und Schule - über modernen Götzenkult (iger-2024)
KI ist der neue Hype und Schulen drehen durch. Was KI in der Schule bedeutet, und warum der ganze bescheuerte Futurismus dahinter die Zukunft gefährdet, erkläre ich hier.... Die KI ist da und in der Bildung drehen alle durch. Dabei scheinen die meisten Lehrkräfte und deren Vorgesetzte nicht zu wissen, was ein LLM eigentlich tut. Und das bedeutet, dass wir vor einer Schule steht, die eine Sache will und die andere Sache tun wird, wenn wir Nerds denen nicht sagen, dass das dumm ist. about this event: https://cfp.fairydust.reisen/iger-2024/talk/RTZBE7/
Anreise (Opening) (iger-2024)
Das IGERla ist gelandet. Das IGERla ist gelandet. about this event: https://cfp.fairydust.reisen/iger-2024/talk/JW7KGQ/
Nokia TCSM2, a bank of TRAUs with E1 interfaces: Part 1, initial examination of the hardware (retronetcall)
about this event: https://c3voc.de
Closing ceremony (emf2024)
The ceremony in which we close the festival. Goodbye! about this event: https://www.emfcamp.org/schedule/2024/551-closing-ceremony
HEU1993 to WHY2025: Dutch hacker camps from the past and the future (emf2024)
The Dutch hacker camps take place between editions of EMF. They have a long history and a bright future! In this talk the Dutch camps from the past will be visited and the state of the next camp, WHY2025, will be presented. about this event: https://www.emfcamp.org/schedule/2024/474-heu1993-to-why2025-dutch-hacker-camps-from-the-past
Field-FX: Digital art, Demos and Prizegiving (emf2024)
Music and animation, art and code, all come together in a demoscene tradition with a history of over 40 years. It's generative art, storytelling, creative coding and more, with contributors of diverse skill levels from across the globe. We're having a party on Saturday night, and we're going to have a prizegiving ceremony and recap of the winning entries on stage on Sunday. Prepare to be awed! You can take part too! Check out field-fx.party online to find out how. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/378-field-fx-digital-art-demos-and-prizegiving