A simple guide to installing and using Google's Gemini CLI on Ubuntu, a free, open source command line way to access Gemini LLM and use it to work with local files.
You're reading How to Install Gemini CLI on Ubuntu to Access AI from Your Terminal, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
In recent times, two critical Linux security frameworks, AppArmor and SELinux, have seen noteworthy acceleration in real-world deployment. As Linux continues to anchor enterprise, container, cloud, and desktop systems, these Mandatory Access Control (MAC) tools have crossed threshold events signaling broader acceptance. This article examines those pivotal inflection points, dives into why they matter, and offers reflections on the shifting landscape of Linux security.
A Swift Journey to Widespread Use SELinux’s AscendancyOriginally conceived by the NSA and later shepherded by Red Hat, SELinux added powerful MAC controls to Linux by the early 2000s. Since being fully embedded into the Linux 2.6.x kernel, SELinux has steadily expanded its reach. It has become the default security layer on Red Hat Enterprise Linux, Fedora, and their derivatives, and integrated into Debian 9+, plus Ubuntu from version 8.04. Android further embraced SELinux starting from version 4.3, marking its normalization in mobile devices.
But the most recent watershed occurred in early 2025: openSUSE Tumbleweed made SELinux the default MAC for new installations beginning with snapshot 20250211, accompanied by minimalVM images running in enforcing mode. Existing installations remain unaffected unless manually migrated, and AppArmor remains an installer option. Moreover, openSUSE Leap 16 will be shipping with SELinux in enforcing mode by default, affirming a full shift within SUSE ecosystems.
This chain of events reflects a conscious pivot in favor of SELinux across both SUSE and community platforms, aligning them more closely with enterprise-grade security policies.
AppArmor’s Established ReachAppArmor, originally named SubDomain in the late '90s, emerged from Immunix and later became a core tool in SUSE distributions. It officially became part of the Linux kernel in version 2.6.36 around October 2010. Ubuntu began shipping it by default starting with 7.10; by 8.04, CUPS was protected. Over the following releases, its scope widened to include MySQL, libvirt, browser sessions, and more. In Debian 10 ("Buster"), released July 2019, AppArmor became enabled by default, anchoring its adoption across Debian-based ecosystems.
Go to Full ArticleHello community, here we have another set of package updates.
Current PromotionsGet our latest daily developer images now from Github: Plasma, GNOME, XFCE. You can get the latest stable releases of Manjaro from CDN77.
Our current supported kernelsPackage Changes (Thu Jul 24 16:30:18 CEST 2025)
Overlay Changes
A list of all changes can be found here.
Check if your mirror has already synced:
8 posts - 7 participants
Thunderbird 141 brings minor changes to the email client, including a new notification action, OpenPGP key warnings, and better Exchange login support.
You're reading Thunderbird 141 Adds ‘Archive’ Notification Action & Fixes, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
GitHub is urging the EU to create a €350m fund for open source maintenance. But as Big Tech profits, should taxpayers be the ones to pay the tab?
You're reading GitHub Wants the EU to Fund Open Source, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
A system administrator’s routine tasks include configuring, maintaining, troubleshooting, and managing servers and networks within data centers. There are numerous
The post 22 Linux Networking Commands for Sysadmin first appeared on Tecmint: Linux Howtos, Tutorials & Guides.A big update to OBS Studio Snap package is available to test, with Canonical rebasing the software on top of Core24 and switching the source code it is built from.
You're reading OBS Studio Snap App Gets a Major Upgrade – AI Plugins Inbound, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Privilege escalation in Linux has always walked a tightrope between convenience and risk. sudo allows users to perform tasks as root without sharing the root password—intuitive, powerful—but also a high-value target for exploits rooted in memory safety bugs. Ubuntu is now pioneering a transition: replacing the traditional C-based sudo with sudo‑rs, a Rust-powered rewrite engineered for safer root handling.
Understanding sudo‑rsBuilt under the Trifecta Tech Foundation’s “Privilege Boundary” initiative, sudo‑rs is a from-scratch implementation of sudo and su created in Rust, a language celebrated for its compile-time guarantees against memory mishaps. Designed to behave like the classic “sudo,” it supports user prompts, permission checks, and environment handling, but keeps underlying behavior Turing-equivalent.
Why Ubuntu Is Betting on RustRust’s strict approach to memory usage eradicates whole classes of vulnerabilities—like buffer overflows and use-after-free—that have long plagued system tools. For a utility as privileged as sudo, these protections offer exponentially greater security value. Ubuntu’s strategy, dubbed “Carefully But Purposefully Oxidising Ubuntu,” is a methodical shift toward memory-safe tooling.
Transitioning in Ubuntu 25.10 and BeyondCanonical has announced that Ubuntu 25.10 (“Questing Quokka”), scheduled for October 9, 2025, will ship sudo‑rs as the default /usr/bin/sudo. This serves as a proving ground ahead of Ubuntu 26.04 LTS (April 2026). Regular users will find no change—commands, flags, and password prompts remain familiar—while Ubuntu monitors real-world feedback.
Ensuring CompatibilityTo deliver a smooth switch, Canonical is funding “Milestone 5” development in sudo‑rs to implement:
NOEXEC for shell escape control,
AppArmor integration,
sudoedit,
Support for kernels older than 5.9 (critical for Ubuntu 20.04 containers).
A “less‑is‑more” philosophy guides, meaning legacy niche features—like LDAP-based sudoers—might remain absent. But, for most workflows, sudo‑rs should cover every essential feature.
Coexistence and RollbackUbuntu’s old sudo will still be available in the repositories and can be reselected via the alternatives system. Users needing features not yet ported to sudo‑rs can effortlessly revert.
Go to Full ArticleIf you’re managing multiple Ubuntu machines in a network, downloading updates and packages for each system individually is a pain,
The post How to Set Up Local Repositories with apt-mirror in Ubuntu first appeared on Tecmint: Linux Howtos, Tutorials & Guides.Argon ONE UP is a 14-inch laptop powered by a Raspberry Pi Compute Module 5. It boasts ports, expansion ports, and 40 pin GPIO add-on. Details inside.
You're reading Argon ONE Up Laptop Runs on a Raspberry Pi CM5, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
KDE Plasma 6.5 will automatically round the bottom corners of Breeze-decorated windows, adding a feature that's been asked for by KDE fans for years.
You're reading KDE Plasma Adds Rounded Bottom Window Corners to Apps, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Firefox 141 is out, featuring AI-powered tab groups, lower memory usage on Linux, a new unit converter, and expanded PiP support. See what's new.
You're reading Firefox 141 Adds AI Tab Grouping, Reduces Memory Use on Linux, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
If you’ve ever tried to set up HTTPS locally for development, you’ve probably run into a wall of complexity. Generating
The post mkcert: Make Locally-Trusted Development Certificates on Linux first appeared on Tecmint: Linux Howtos, Tutorials & Guides.Gradia 1.7 adds code snippet generator, more text tool outlines, image rotation, and arrives on the Canonical Snap Store for easier installation on Ubuntu.
You're reading Screenshot Tool Gradia Adds Code Snippet Generator, Snap Install, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Skip running multiple commands to update packages on Ubuntu with TopGrade, a CLI tool which upgrades everything, from apt to pip, with a single command.
You're reading This Tool Upgrades Everything on Ubuntu with One Command, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Hello community, here we have another set of package updates.
Current PromotionsGet our latest daily developer images now from Github: Plasma, GNOME, XFCE. You can get the latest stable releases of Manjaro from CDN77.
Our current supported kernelsPackage Changes (Sat Jul 19 08:50:01 CEST 2025)
A list of all changes can be found here.
Check if your mirror has already synced:
71 posts - 41 participants
Hello community, here we have another set of package updates.
Current PromotionsGet our latest daily developer images now from Github: Plasma, GNOME, XFCE. You can get the latest stable releases of Manjaro from CDN77.
Our current supported kernelsPackage Changes (Sat Jul 19 08:50:01 CEST 2025)
Overlay Changes
A list of all changes can be found here.
Check if your mirror has already synced:
21 posts - 12 participants
Copyright © 2025 WNCLUG-Asheville - All rights reserved
Developed & Designed by Alaa Haddad
