Destination Linux

In this episode of Destination Linux, we are joined by Red Hat design legend Máirín Duffy (Mo) to tackle some of the biggest shifts in the open-source ecosystem. We start with the massive news that Linux has officially surpassed 5% market share on the Steam Survey, a historic milestone driven by the Steam Deck and the end-of-life for Windows 10.

Next, Mo provides an expert breakdown of how AI is revolutionizing security research. From Project Glasswing to the Alpha Omega project, we look at how frontier models are being used to find (and fix) vulnerabilities in critical infrastructure like the Linux kernel. We discuss the "personality quirks" of different AI models and why human expertise is still the "apex predator" in the security chain.

Ryan also shares an update on his "GIMP Challenge," revealing how he’s successfully moved his professional thumbnail workflow to open source. This leads to a deep dive into Adobe’s recent "bad behavior," including $150 million settlements and secret modifications to system hosts files. We ask the tough question: When does commercial software become malware?

Plus, we cover the latest news, including Linux 7.0-rc7, Firefox’s new free VPN, and Zorin OS’s firm stance against mandatory age verification laws.

Timestamps:

00:00:00 Welcome to Destination Linux

00:02:13 Community Feedback: TLDR vs. Manpages

00:05:40 Store Update: Pastel Tumblers & New Desk Mats

00:08:18 Sponsored by Sandfly Security

00:10:16 Steam Linux Milestone: Breaking 5%!

00:23:16 AI in Open Source Security & curl Reports

00:25:03 AI Security Projects: Alpha-Omega and Project Glasswing

00:50:34 Using Open Models for Security Research

00:54:05 Red Hat Evaluates Security Bugs Reported by Mythos

01:00:52 The GIMP Challenge: Ryan’s Workflow Shift

01:06:03 Adobe's Bad Behavior: Software or Malware?

01:13:03 News Roundup: Linux 7.0-rc7 Released

01:14:06 Firefox Adds Free VPN

01:15:01 PacHub: A Sleek GUI for Pacman and AUR

01:16:09 ZorinOS Rejects Mandatory Age Verification

01:25:16 Closing Thoughts

Show References & Links

Community & Tools:

TLDR Pages: https://tldr.sh/

GIMP 3 Themes (GitHub): https://github.com/bunnywaffle/GIMP-3-Themes/tree/main

G'MIC Plugin for GIMP: https://gmic.eu/download.html

Articles & News:

Linux Smashes Past 5% on Steam Survey: https://www.gamingonlinux.com/2026/04/linux-smashes-past-5-percent-on-the-steam-survey-for-the-first-time/

Adobe Secretly Modifies Your Hosts File (OSNews): https://www.osnews.com/story/144737/adobe-secretly-modifies-your-hosts-file-for-the-stupidest-reason/

Zorin OS Says No to Mandatory Age Verification: https://linuxiac.com/zorin-os-says-no-to-mandatory-age-verification-in-linux/

Firefox Free VPN Enabled: https://www.omgubuntu.co.uk/2026/04/firefox-free-vpn-enabled

Linux 7.0-rc7 Released: https://www.phoronix.com/news/Linux-7.0-rc7-Released/

Security & AI Research:

Aisle: AI Cybersecurity After Mythos: https://aisle.com/blog/ai-cybersecurity-after-mythos-the-jagged-frontier

Aisle Wall of Fame (Vulnerability Research): https://aisle.com/wall-of-fame

Red Hat: Navigating the Mythos Haunted World: https://www.redhat.com/en/blog/navigating-mythos-haunted-world-platform-security

Humorous Video on DNF5 & Age Verification: https://www.youtube.com/watch?v=flH17X32MrY

Support the Show:

Destination Linux Official Store: https://shop.deviantairwaves.com/

Sandfly Security (Agentless Linux Security): https://deviantairwaves.com/sandfly

Is it actually possible to run a professional media company using nothing but Open Source software? This week on Destination Linux, Jill, Ryan, and Zeb provide a massive update on their Open Source Startup journey.

We break down the technical stack keeping Deviant AirWaves running:

Infrastructure: How Nextcloud has become our "absolute savior" for RSS, Markdown notes, and document security.

Production: The "superb quality" of VDO.Ninja and OBS Studio for remote recording without the monthly fees of closed-source alternatives.

Communication: Moving the needle with Signal, KeePassXC, and our brand-new Mumble server.

Web & Editing: Why we stick to WordPress and how Kdenlive and Audacity handle our heavy-lift editing.

We also take a look at the Orion Web Browser, a WebKit-powered alternative that just hit public Beta on Linux. To wrap things up, we cover Zeb’s Quick-fire News, including a high-severity Snap vulnerability, Linus Torvalds’ thoughts on AI tools in kernel development, and a heartfelt thank you to Martin Wimpress as he seeks new maintainers for Ubuntu MATE.

Show Resources & Community

Official Website: deviantairwaves.com

Merch Store: shop.deviantairwaves.com

Patreon Support: patreon.com/destinationlinux

Community Discord: deviantairwaves.com/discord

Topic: Running a Small Business with Open Source

Sponsor: Sandfly Security: deviantairwaves.com/sandfly

Mumble Server Address: mumble.deviantairwaves.com

Video Production Tool: vdo.ninja

Kdenlive: https://kdenlive.org/

KeePassXC: https://keepassxc.org/

PhotoPea: https://www.photopea.com/

WordPress: https://wordpress.com/

DigitalOcean: https://www.digitalocean.com/

Audacity: https://www.audacityteam.org/

Topic: Orion Web Browser

Orion for Linux Beta Release https://orionbrowser.com/

Quick Fire News

Linux Kernel 7.0-rc5 Announcement: lore.kernel.org/lkml/7.0-rc5

Ubuntu Snapd Vulnerability: phoronix.com/news/Ubuntu-Snapd-High-Vulnerability

Ubuntu AppArmor Security Issues (Mentioned): phoronix.com/news/Ubuntu-AppArmor-Security-Issues

iPhone Hacking Tool (Ars Technica): arstechnica.com/security/2026/03/hundreds-of-millions-of-iphones-can-be-hacked

Opera GX for Linux: omgubuntu.co.uk/2026/03/opera-gx-linux-released

Ubuntu MATE Seeking Maintainers: discourse.ubuntu.com/t/ubuntu-mate-seeking-maintainers/79264

Chapters List:

00:00:00 Welcome to Destination Linux

00:01:29 Community Feedback

00:12:43 Artemis 2 Launch Reflection

00:19:02 Sponsored by Sandfly Security

00:22:32 Running a Business with Open Source Part 2, NextCloud Update

00:25:02 VDO.Ninja Update

00:29:53 Making Our Website with Wordpress

00:36:20 Matrix Update

00:41:15 Editing with Open Source Tools

00:45:58 New Mumble Server

00:54:44 Orion Web Browser Linux Public Beta

01:00:30 Zeb's Quickfire News Roundup, Opera GX Linux Release

01:05:59 Linux 7.0 Release Candidates

01:08:38 AppArmor and Snap Vulnerabilities

01:10:42 DarkSword iPhone-Hacking Technique

01:17:42 Ubuntu MATE Seeking Maintainers

01:27:05 Closing Remarks and Sign Off

Welcome to Destination Linux Episode 459! This week, we are jacking into the digital frontier with a packed mission log. Joining hosts Ryan and Jill is a "High-Tier" summon: Mathieu from Lutris, the man ensuring Linux gaming stays as smooth as a Gundam flight suit.

We kick things off with a critical look at Healthcare Data Security. With the recent Navia benefit solutions breach affecting millions, we discuss why companies are demanding sensitive data they clearly cannot protect—and why it’s time to push back on providing Social Security numbers.

Then, we break down the FCC’s official ban on foreign-made consumer routers. This move has effectively frozen the release of next-gen hardware like Wi-Fi 7 in the U.S. market. We explore the implications for your privacy and why Open-Source firmware (OpenWrt) and DIY hardware (OPNsense/pfSense) are now the ultimate safeguards for your digital sovereignty.

Jill also returns with Part 2 of her SCaLE 23x highlights, featuring heartwarming reunions with Linux legends like Jon “Maddog” Hall and John Robinson (developer of Window Maker), plus a look at the Ubuntu Academy project.

Finally, we cover the latest in Linux Gaming and AI, including Steam Client updates, VR gaming improvements in GE-Proton, and how TurboQuant is revolutionizing AI memory efficiency.

Set your phasers to "Open Source" and join us for a "Plus Ultra" level of geekery!

Timestamps

[00:00:00] Welcome to Destination Linux

[00:04:43] Community Feedback

[00:18:13] Sponsored by Sandfly Security

[00:21:34] Personal Security Stories

[00:28:25] The Social Security Dilemma

[00:34:20] Navia Data Breach

[00:40:07] Highlights from SCaLE 23x

[00:51:42] FCC Bans Foreign-made Routers

[00:57:02] Building Your Own Router

[01:04:44] Steam Client and SteamOS Updates

[01:09:08] VR Gaming in GE-Proton

[01:16:46] TurboQuant Improves AI Memory Efficiency

[01:19:34] Closing Thoughts and Sign Off

References

Community & Tools

FreeDroidWarn Solutions: https://github.com/woheller69/FreeDroidWarn?tab=readme-ov-file#solutions

Sandfly Security (Sponsor): https://deviantairwaves.com/sandfly (Use code DESTINATION50 for 50% off Home Edition)

Navia Healthcare Data Breach: https://lifehacker.com/tech/navia-data-breach-social-security-numbers

SCaLE 23x Photo & Video Gallery: https://imgur.com/a/ZzVIzSA

Jill’s Treasure Hunt (Eee PC/Window Maker): https://youtu.be/AQ5b1pLNSUc

Welcome to Episode 458 of Destination Linux! This week, the crew is joined by special guest co-host Craig Rowland of Sandfly Security for a deep dive into the shifting landscape of digital threats.

In our Security Scoop, we break down the massive IDMerit leak that exposed nearly 1 billion sensitive records and discuss the "industrialization" of malware. We explore how attackers are using LLMs to create "Vibeware" or malware written in exotic languages like Crystal and Nim to bypass traditional EDR signatures.

Jill takes us on a journey through her Top 5 Highlights from SCaLE 23x in Pasadena, featuring everything from meeting the creator of Lutris to preserving Linux history with "Maddog" and her SCaLE museum.

For those looking to de-Google their digital lives, Ryan reviews Ente.io, an open-source, end-to-end encrypted photo storage solution that uses local AI for facial recognition, keeping your memories private and secure without losing "smart" features.

Finally, we cover the latest in the Quickfire News with Zeb.

Show Notes:

Isaac's documentary trailer: https://www.youtube.com/watch

Unordinary People podcast: https://youtube.com/@unordinary_people

Unordinary People podcast interview with Jill: https://youtu.be/1lmLuDTSLjU?si=mntitbm1Pqps3qU4

Sandfly Security: https://deviantairwaves.com/sandfly

Use code code DESTINATION50 for 50% off

Security Scoup: https://www.msn.com/en-us/money/other/1-billion-identity-records-exposed-in-id-verification-data-leak/ar-AA1YlJs4

Mathew's SCaLE article: https://matthewplascencia.substack.com/p/penguins-penguins-everywhere-scale?triedRedirect=true

Interview on Destination Linux with Yuning Liang from DeepComputing and RISC-V: https://youtu.be/1YoXdfGtPpw

Interviews on Destination Linux with Jon "Maddog" Hall, Linux Legend:

https://youtu.be/90N6oWIkDZI

https://youtu.be/9WBd8ISmtuI

Encrypted Cloud Photo Solution: https://ente.io/

Steam user numbers: https://www.techspot.com/news/111663-game-developers-cash-steam-sees-5863-titles-earn.html

Linux 7.0-rc3 is big: https://www.phoronix.com/news/Linux-7.0-rc3

New SuperTux: https://www.phoronix.com/news/SuperTux-0.7-Released

And become a patron at https://patreon.com/destinationlinux

Support the show at https://shop.deviantairwaves.com/

Destination Linux website: https://deviantairwaves.com/ to get the links to listen to Destination Linux on your favorite podcasting apps, or the videos on YouTube, to support us, and to keep those Linux penguins marching!

Timestamps:

00:00:00 Welcome to Destination Linux

00:01:29 Community Feedback: The Kdenlive Documentary

00:06:25 Sponsored by Sandfly Security

00:09:17 Security Scoop with Craig: Ericsson & Agentless EDR

00:15:51 IDMerit Leak: 1 Billion Records Exposed

00:22:14 AI-Assisted Malware & "Vibeware"

00:34:10 SCaLE 23x Highlights: Part 1

00:40:27 Meeting Viewers at SCaLE

00:52:07 Linux 7.0-rc3 Released

00:58:17 Steam Statistics & Record Growth

01:04:17 SuperTux 0.7.0 Released

01:06:25 Closing Remarks

Linux #opensource #podcast #security

cybersecurity #infosec

SandflySecurity #SCaLE23x #gaming
Special Guest: Craig Rowland.

Is there a way to use the web without being the product? In Episode 457, the Destination Linux team explores the growing world of decentralized networks and alternative internet protocols. From federated solutions to mesh-style connectivity, we discuss how users are reclaiming their digital sovereignty.

We also dive into the "Local First" movement with Jan, an open-source tool that allows you to run powerful AI models entirely offline. No subscriptions, no data mining, just pure local compute.

In the news, we break down the latest corporate shakeup: SUSE is for sale again. We analyze what this means for the enterprise Linux landscape and the community. We also share our "Hidden Gem" open-source apps, including the multi-track video editor Flowblade, and see who survives Zeb’s Quickfire Revenge.

Timestamps:

00:00:00 - Welcome to the Underworld of Tech (DL 457)

00:01:46 - The Fight Against ID Verification

00:15:02 - Hidden Gems: Top Secret Open Source Apps

00:25:51 - Local AI: Keeping Your Data Off the Grid with Jan

00:27:30 - Deep Dive: Decentralized Networks & The Secret Internet

00:43:55 - SUSE For Sale: The Corporate Cycle Continues

01:05:23 - Steam Report: Is Linux Gaming the New Standard?

01:08:52 - Zeb’s Revenge: The Quickfire Round

01:14:48 - Final Thoughts & Community Mission