Are you still rocking your X1 Carbon Gen 6 in 2020? Well, Lenovo just released a new BIOS firmware 1.50. Here are changes in this release: [Important updates] - Update includes a security fix. - Addresses CVE-2020-8696 and CVE-2020-8698. (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8696) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8698) - Addresses CVE-2020-0587, CVE-2020-0588, CVE-2020-0590, CVE-2020-0591, CVE-2020-0592, and CVE-2020-0593. (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0587) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0588) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0590) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0591) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0592) (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0593) [New functions or enhancements] - Updated the CPU microcode. - Updated the Diagnostics module to version 04.15.000. [Problem fixes] Nothing. It’s worth to note that this new firmware is available on Fedora (33) via fwupdmgr. ...

While creating a new user account on one my servers running FreeBSD 12, I encountered the following error: root@nas2:~ # adduser Username: devops Full name: Ansible Operator Uid (Leave empty for default): Login group [devops]: Login group is devops. Invite devops into other groups? []: Login class [default]: Shell (sh csh tcsh nologin) [sh]: Home directory [/home/devops]: Home directory permissions (Leave empty for default): Use password-based authentication? [yes]: no Lock out the account after creation? [no]: no Username : devops Password : <disabled> Full Name : Ansible Operator Uid : 1002 Class : Groups : devops Home : /home/devops Home Mode : Shell : /bin/sh Locked : no OK? (yes/no): yes pw: user 'devops' disappeared during update adduser: ERROR: There was an error adding user (devops). Add another user? (yes/no): no Goodbye! According to a discussion on a FreeBSD forum, the problem could have caused by the databases being out of sync. ...

While practicing with certificates reqeust using FreeIPA, I came across this duplicated certificates for the first time. This happened because I also practiced the same thing a few weeks ago. Here is how to re-produce this message: [root@client ~]# ipa-getcert request \ -f /etc/vsftpd/certs/cert.pem \ -k /etc/vsftpd/certs/cert.key \ -K ftp/client.lab.example.net \ -D client.lab.example.net Certificate at same location is already used by request with nickname "20201008131445". Because I’m still not familiar yet with FreeIPA on this certificate topic, I turned to Google search and found very useful information on this blog post: Dealing with Duplicate SSL certs from FreeIPA. ...

Lenovo just released a new BIOS firmware for its ThinkPad P1 Gen 1, v1.32. This version fixes a few issues, as well as update the CPU microcode. Here is the changes from Lenovo’s website. CHANGES IN THIS RELEASE Version 1.32 [Important updates] - Addresses CVE-2020-8696, CVE-2020-8698 - Addresses CVE-2020-8694, CVE-2020-8695 [New functions or enhancements] - Updated the CPU microcode. [Problem fixes] - Fixed an issue where system might hang up at POST when some KVM device was connected. - Fixed an issue where the screen might not be displayed on Thinkpad LCD when opened lid just before startup Windows. - Fixed an issue where system might not boot from network which is connected to ethernet of Thunderbolt3 WS Dock when boot mode is Legacy mode. - Fixed an issue where system might hang at POST when Thunderbolt3 WS Dock is attached. - Fixed an issue where BIOS might generate 0288 beep error. I haven’t had time to update this 1.32 on my machine yet, though I think the update would be just as smooth as previous release on Fedora 32 system. ...

After many and many weeks, I finally got libvirt working on this Gentoo machine. Before revealing how I’ve fixed this problem, let’s go through what the issues were. On this Gentoo I run Firewalld with nftables as backend. An alternative to nftables is iptables, but since nftables is newer and is becoming the default backend for more and more distribution including Fedora, I think it’s a good thing to adobt it early. ...