Brave is a free and open source web browser focused on providing a privacy-oriented setup by default. It is released under the Mozilla Public License Version 2.0, and it is based on chromium, which is also the open source foundation upon Google Chrome is built. Brave comes with useful built-in features such an ad-blocker, a private search engine, an integrated VPN, and Tor support.
Groups are an essential part of how discretionary access control (DAC) is implemented on Linux and, in general, on any Unix-based operating system. The creation, modification, and removal of groups are relatively straightforward operations which can be carried out using some utilities installed by default.
On Linux, traditionally, a process could either run as root, and so have limitless access to the system, or as a non-root user, subject to a set of restrictions. Since version 2.2 of the kernel, capabilities were introduced as a way to grant permissions in a more granular way.
One of the main innovations introduced by Podman was the ability to run rootless containers. Security wise, this was a big improvement, since a potentially compromised container running as root represents a security threat for the host system. In order to obtain a similar behavior, recent versions of Docker support running the docker daemon in the user context. Running unprivileged containers, albeit more secure, has also its drawbacks, as the inability to bind to privileged host ports.
Fail2ban is a free and open source software we can use to mitigate brute force and DoS/DDoS attacks: it scans log files for multiple failed authentication attempts and bans related IP addresses by creating ad-hoc firewall rules.
Since all the major Linux distributions adopted Systemd as their init system, they progressively became more and more similar to each other. Void Linux is an exception: it was written from scratch entirely by volunteers, uses Runit as its init system and service manager, and, as its name may suggest, it was designed with simplicity in mind.
Powertop is a free and open source utility developed by Intel to monitor power consumption on Linux. The tool is able to display and export reports about the estimated discharge rate, and statics about processors and devices behavior. It also lets us easily tune some kernel parameters on the fly in order maximize battery life.
Snippets are small fragments of reusable code which, in all the major text editors, can be defined, organized and associated to key shortcuts. Although in Vim it is possible to create snippets without using any plugin, Ultisnips provide us extra features and write snippets using a clean and well documented syntax.
Fdisk, cfdisk and sfdisk are command line partitioning utilities included by default in all Linux distributions. They provide different interfaces to the same set of functions: while they all can be used interactively, only sfdisk is script-oriented. They support DOS, GPT, SGI and SUN partition tables.
Jupyter Notebook is a web application used to produce computational documents, commonly called “notebooks” which can contain human-readable text, executable code, charts, and more. When used together with Python and libraries like pandas and Matplotlib, Jupyter notebooks are an excellent tool we can use for presentations and data analysis.
Tlp is a command line utility we can use to optimize power consumption on Linux. It provides reasonable defaults, and, at the same time, an easy to understand text-based configuration file we can use to create our own setup. An external project provides a user-friendly GTK frontend to Tlp written in Python: Tlpui.
GNU time is a really handy utility available in the repositories of every Linux distribution: we can use it to retrieve information about the “real”, “user”, and “system” execution times of a command, and, more generally, to check the amount of system resources used by it.