Mini UbuCon Malaysia 2025 - An Event Dedicated To Advancing The Open Source Software Ecosystem

Mini UbuCon Malaysia 2025

We are thrilled to announce the Mini UbuCon Malaysia 2025, an event dedicated to advancing the open-source software ecosystem in our region. This year, the Ubuntu Malaysia LoCo Team is proud to partner with Cyber Digital Services, Defence and Security Asia (CyberDSA), a leading regional event serving key stakeholders in the cyber defence and security industry.

Please save the date and venue for this event:

Event: Mini UbuCon Malaysia 2025

Dates: 30 September 2025

Venue: Kompleks MITEC KL Metropolis, 8, Jalan Dutamas 2, Segambut, 50480 Kuala Lumpur

For more information and registration, please visit:

Mini UbuCon Malaysia 2025: https://2025.ubuntu.my/

CyberDSA: https://www.cyberdsa.com/

Through this collaboration, CyberDSA is the Official Place Sponsor for Mini UbuCon Malaysia 2025. This sponsorship has made it possible for us to select Kompleks MITEC KL Metropolis as our official venue, a premier convention center that will provide an exceptional setting for our community to connect, learn, and network.

Why Attend Mini UbuCon Malaysia 2025?

Stay Ahead with Cutting-Edge Technology

As one of the world's most popular Linux distributions, Ubuntu is a cornerstone of the open-source movement. Dive deep into the latest advancements that Ubuntu and the broader Linux ecosystem have to offer. Whether you are a seasoned professional or a beginner, this conference provides invaluable insights into the evolving landscape of Linux and its powerful applications in cybersecurity.

Network with Experts and Enthusiasts

Meet and connect with like-minded individuals, industry experts, and key contributors to the Ubuntu community. This is a unique opportunity to expand your network and collaborate with others who share your passion for open-source technology.

Support the Ubuntu Malaysia Community

The local Ubuntu Malaysia Community plays a crucial role in the ongoing development and support of this versatile operating system. Your participation helps bolster this community and ensures the continuous growth and innovation of Ubuntu, which in turn strengthens the global Linux community as a whole.

About CyberDSA

CyberDSA aspires to be a catalyst for change, connecting decision-makers in government and private sectors to accelerate the cyber defence and security agenda. This event aims to impart the latest knowledge and intriguing insights about cybersecurity while showcasing cutting-edge technologies that would safeguard digital economies and foster global competitiveness.

We are confident that this conference will be a significant step forward for the Malaysian open-source community. We look forward to seeing you there.

Sincerely,

Harisfazillah Jamel (LinuxMalaysia)

Ubuntu Malaysia LoCo Team

  

Mini UbuCon 2025 Sedang Dirancang - Malaysia

 

🚀 Mini UbuCon 2025 Sedang Dirancang! 🐧

Kami sedang giat merancang Mini UbuCon 2025 – sebuah himpunan komuniti Ubuntu dan sumber terbuka yang bakal mengumpulkan peminat teknologi, pembangun, dan pencinta Linux dari seluruh Malaysia.

💬 Pandangan anda amat kami perlukan!

Sama ada anda memang berminat untuk hadir, masih berkira-kira, atau sekadar mempunyai idea topik menarik berkaitan Ubuntu dan sumber terbuka — kami ingin mendengar buah fikiran anda.

👉 Isi borang tinjauan ini segera dan bantu kami membentuk acara ini:

🔗 https://form.ubuntu.my/2025/ubucon/

• 🎤 Kongsi topik cadangan.

• 🧠 Bantu kami memahami minat komuniti.

• 📍 Bentuk UbuCon mengikut suara anda!

Ayuh, kita hidupkan semangat komuniti sumber terbuka bersama di Mini UbuCon 2025! 💡

#MiniUbuCon2025 #UbuntuMY #OpenSource #LinuxMalaysia #UbuCon

Jom sertai perbincangan lanjut mengenai Mini UbuCon 2025 di Telegram Ubuntu Malaysia Loco Team:

https://t.me/ubuntumalaysia

Apa Itu Mini UbuCon?

Mini UbuCon ialah acara komuniti yang berfokuskan kepada sistem pengendalian Ubuntu dan ekosistem sumber terbuka (open source). Ia berfungsi sebagai platform perkongsian ilmu, bengkel teknikal, perbincangan, serta peluang berinteraksi dengan pakar dan peminat lain. Objektif utamanya adalah untuk memupuk semangat kolaborasi dan memperkasa penggunaan teknologi sumber terbuka.

Apa Itu Ubuntu Linux?

Ubuntu Linux ialah sistem pengendalian berasaskan Linux yang popular, percuma, dan sumber terbuka oleh Canonical Ltd. Ia dikenali kerana kemudahan penggunaan, kestabilan, dan sokongan komuniti yang luas, sesuai untuk pelbagai kegunaan dari komputer peribadi hingga pelayan dan awan. Kodnya boleh diakses, diubah suai, dan diedarkan secara bebas, menggalakkan inovasi.

Ubuntu dan Kecerdasan Buatan (AI)

Ubuntu menjadi pilihan utama dalam pembangunan Kecerdasan Buatan (AI) dan Pembelajaran Mesin (ML) kerana kestabilan serta sokongan ekosistem sumber terbukanya. Ia menyediakan persekitaran optimum untuk rangka kerja AI seperti TensorFlow dan PyTorch, termasuk integrasi lancar dengan GPU NVIDIA. Ubuntu Server dan Core turut menyokong AI skala awan dan peranti pinggir, memupuk kolaborasi komuniti.

16 Julai 2025

Rujukan

https://docs.google.com/document/d/e/2PACX-1vQrDag1dkNnrpXYxg8EnoFw_uJbmzPJXCT5EPBC7IFuQLFvfxWPmbJtMRe6CMH7cWzaHSxsNRWhDFX9/pub

Critical OpenSSH Vulnerability (CVE-2024-6387): Please Update Your Linux

 

Critical OpenSSH Vulnerability (CVE-2024-6387): Please Update Your Linux

A critical security flaw (CVE-2024-6387) has been identified in OpenSSH, a program widely used for secure remote connections. This vulnerability could allow attackers to completely compromise affected systems (remote code execution).

Who is Affected?

Only specific versions of OpenSSH (8.5p1 to 9.7p1) running on glibc-based Linux systems are vulnerable. Newer versions are not affected.

What to Do?

1. Update OpenSSH: Check your version by running ssh -V in your terminal. If you're using a vulnerable version (8.5p1 to 9.7p1), update immediately.

2. Temporary Workaround (Use with Caution): Disabling the login grace timeout (setting LoginGraceTime=0 in sshd_config) can mitigate the risk, but be aware it increases susceptibility to denial-of-service attacks.

3. Recommended Security Enhancement: Install fail2ban to prevent brute-force attacks. This tool automatically bans IPs with too many failed login attempts.

Optional: IP Whitelisting for Increased Security

Once you have fail2ban installed, consider allowing only specific IP addresses to access your server via SSH. This can be achieved using:

• ufw for Ubuntu

• firewalld for AlmaLinux or Rocky Linux

Additional Resources

• OpenSSH Security Page: https://www.openssh.com/security.html

• DevSec Hardening Framework - SSH Baseline: https://dev-sec.io/

• Fail2ban: https://github.com/fail2ban

About Fail2ban

Fail2ban monitors log files like /var/log/auth.log and bans IPs with excessive failed login attempts. It updates firewall rules to block connections from these IPs for a set duration. Fail2ban is pre-configured to work with common log files and can be easily customized for other logs and errors.

Installation Instructions:

• Ubuntu: sudo apt install fail2ban

• AlmaLinux/Rocky Linux: sudo dnf install fail2ban

About DevSec Hardening Framework

The DevSec Hardening Framework is a set of tools and resources that helps automate the process of securing your server infrastructure. It addresses the challenges of manually hardening servers, which can be complex, error-prone, and time-consuming, especially when managing a large number of servers. The framework integrates with popular infrastructure automation tools like Ansible, Chef, and Puppet. It provides pre-configured modules that automatically apply secure settings to your operating systems and services such as OpenSSH, Apache and MySQL. This eliminates the need for manual configuration and reduces the risk of errors.

Prepare by LinuxMalaysia with the help of Google Gemini

5 July 2024

 

In Google Doc Format 

 

https://docs.google.com/document/d/e/2PACX-1vTSU27PLnDXWKjRJfIcjwh9B0jlSN-tnaO4_eZ_0V5C2oYOPLLblnj3jQOzCKqCwbnqGmpTIE10ZiQo/pub 

Download Latest version Of Nginx Stable For Latest Security Patch

 

Download And Use latest Version Of Nginx Stable

To ensure you receive the latest security updates and bug fixes for Nginx, configure your system's repository specifically for it. Detailed instructions on how to achieve this can be found on the Nginx website. Setting up the repository allows your system to automatically download and install future Nginx updates, keeping your web server running optimally and securely.

Visit this websites for information on how to configure your repository for Nginx.

https://nginx.org/en/linux_packages.html

https://docs.nginx.com/nginx/admin-guide/installing-nginx/installing-nginx-open-source/ 

Installing Nginx on different Linux distributions

Example from https://docs.bunkerweb.io/latest/integrations/#linux 

Ubuntu

sudo apt install -y curl gnupg2 ca-certificates lsb-release debian-archive-keyring && \ curl https://nginx.org/keys/nginx_signing.key | gpg --dearmor \ | sudo tee /usr/share/keyrings/nginx-archive-keyring.gpg >/dev/null && \ echo "deb [signed-by=/usr/share/keyrings/nginx-archive-keyring.gpg] \ http://nginx.org/packages/debian `lsb_release -cs` nginx" \ | sudo tee /etc/apt/sources.list.d/nginx.list # Latest Stable (pick either latest stable or by version) sudo apt update && \ sudo apt install -y nginx # By version (pick one only, latest stable or by version) sudo apt update && \ sudo apt install -y nginx=1.24.0-1~$(lsb_release -cs)

AlmaLinux / Rocky Linux (Redhat)

Create the following file at /etc/yum.repos.d/nginx.repo

[nginx-stable] name=nginx stable repo baseurl=http://nginx.org/packages/centos/$releasever/$basearch/ gpgcheck=1 enabled=1 gpgkey=https://nginx.org/keys/nginx_signing.key module_hotfixes=true [nginx-mainline] name=nginx mainline repo baseurl=http://nginx.org/packages/mainline/centos/$releasever/$basearch/ gpgcheck=1 enabled=0 gpgkey=https://nginx.org/keys/nginx_signing.key module_hotfixes=true # Latest Stable (pick either latest stable or by version) sudo dnf install nginx # Latest Stable (pick either latest stable or by version) sudo dnf install nginx-1.24.0

Nginx Fork (This for reference only - year 2024)

https://thenewstack.io/freenginx-a-fork-of-nginx/ 

https://github.com/freenginx/ 

Use this Web tool to configure nginx.

https://www.digitalocean.com/community/tools/nginx

https://github.com/digitalocean/nginxconfig.io 

Example

https://www.digitalocean.com/community/tools/nginx?domains.0.server.domain=songketmail.linuxmalaysia.lan&domains.0.server.redirectSubdomains=false&domains.0.https.hstsPreload=true&domains.0.php.phpServer=%2Fvar%2Frun%2Fphp%2Fphp8.2-fpm.sock&domains.0.logging.redirectAccessLog=true&domains.0.logging.redirectErrorLog=true&domains.0.restrict.putMethod=true&domains.0.restrict.patchMethod=true&domains.0.restrict.deleteMethod=true&domains.0.restrict.connectMethod=true&domains.0.restrict.optionsMethod=true&domains.0.restrict.traceMethod=true&global.https.portReuse=true&global.https.sslProfile=modern&global.https.ocspQuad9=true&global.https.ocspVerisign=true&global.security.limitReq=true&global.security.securityTxt=true&global.logging.errorLogEnabled=true&global.logging.logNotFound=true&global.tools.modularizedStructure=false&global.tools.symlinkVhost=false 

Harisfazillah Jamel - LinuxMalaysia - 20240619

Call For Speaker For Mini UbuCon Malaysia 2024

Call For Speaker for Mini UbuCon Malaysia 2024

Mini UbuCon Malaysia 2024: Call for Speakers

Share your Ubuntu expertise!

The Ubuntu Malaysia LoCo Team is thrilled to invite you to speak at Mini UbuCon Malaysia 2024 on August 7, 2024, during Siber Siaga and CyberDSA. This is your chance to share your knowledge and experiences with a passionate community of Ubuntu users.

What is Ubuntu?

Ubuntu is a free and open-source operating system based on Linux. It's popular for its user-friendly interface, wide range of software applications, and strong community support. Whether you're a developer, system administrator, or everyday computer user,  Ubuntu offers a powerful and customizable computing experience.

What We're Looking For

• Technical Talks
  • Case studies, development experiences, implementations, and applications related to Ubuntu.
  • Focus on practical, knowledge-sharing content.
  • Avoid marketing materials.
• Ubuntu-Centric Topics
  • Priority given to subjects directly related to Ubuntu, its ecosystem, and the community.
  • Be specific! Broad topics like "What is Security?" are less likely to be accepted. For instance, a talk on "Advanced Security Configurations in Ubuntu" is more likely to be accepted than a general overview of security.
• Unique Insights
  • Share your hard-won experiences and hard-to-find information, not easily searchable content.
• Community-Oriented Talks
  • Generic topics are okay if directly connected to Ubuntu projects or the community (e.g., managing budget for UbuCon events).

Please note that this is a volunteer opportunity and speaker participation is on your own expense.

Get Inspired

Browse past UbuCon sessions on the Ubuntu wiki for ideas: https://wiki.ubuntu.com/Ubucon

Speaker Requirements

• All slides must be published under a Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) license. This allows others to remix and share your work with attribution. https://creativecommons.org/licenses/by-sa/4.0/deed.en
  

Important Dates

• Speaker Application Deadline: July 5, 2024
• Selection Notification: After selection process by the committee
• Presentation Slide Submission: August 1, 2024 (if selected)

How to Apply

• Submit a 50-100 word abstract through this online form https://forms.gle/xAENumMzLU5tNLa19
  
• Contact ask@ubuntu.my
• Join the Ubuntu Malaysia Loco Team Telegram group: https://t.me/ubuntumalaysia

About Mini UbuCon Malaysia 2024

Mark your calendars for August 7, 2024, as Mini UbuCon Malaysia 2024 will take place during the prestigious Siber Siaga and CyberDSA events. These events provide a dynamic platform for cybersecurity and digital transformation, making them the perfect backdrop for our Mini UbuCon.

For those of you who want to attend Mini UbuCon Malaysia 2024, you still need to register through SIBER SIAGA 2024. Visit Facebook https://www.facebook.com/sibersiaga  and other links https://linktr.ee/sibersiaga24 for more info.

Online Registration

• Visit: https://form.evenesis.com/cyberdsa2024
• Select "General Visitors" by pressing + for total (at least 1).
• Click "Continue" and fill out the required information.
• In the field "Any specific vendors / exhibitors you are interested in meeting?", enter "Mini UbuCon Malaysia 2024".
• Press "Register".

Anything regarding Mini UbuCon 2024 can be asked on Telegram Ubuntu Malaysia Loco Team: https://t.me/ubuntumalaysia

Don't miss this opportunity to connect with the Ubuntu community in Malaysia

Privacy Notice

We take your privacy seriously. Any personal information collected through the online speaker application form, including email addresses, telephone numbers, names, and profiles, will only be used for purposes related to Mini UbuCon Malaysia 2024 speaker selection and communication. This information will not be shared with third parties without your consent.

FAQs

1. What topics are best suited for Mini UbuCon Malaysia 2024? We are looking for technical talks, Ubuntu-centric topics, unique insights, and community-oriented talks that provide value and knowledge to the Ubuntu community.

2. How do I submit my application to speak? Submit a 50-100 word abstract through the online form. Ensure you meet the application deadline.

3. Can I attend Mini UbuCon Malaysia 2024 without speaking? Yes, you can attend by registering through Siber Siaga 2024. In the field "Any specific vendors / exhibitors you are interested in meeting?", enter "Mini UbuCon Malaysia 2024".

4. What is the Creative Commons license requirement? All presentation slides must be published under the Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0) license to encourage sharing and collaboration.

5. Where can I get more information about past UbuCon sessions? You can browse past sessions on the Ubuntu wiki for ideas and inspiration.