Recent Changes - Search:
NTLUG

Linux is free.
Life is good.

Linux Training
10am on Meeting Days!

1825 Monetary Lane Suite #104 Carrollton, TX

Do a presentation at NTLUG.

What is the Linux Installation Project?

Real companies using Linux!

Not just for business anymore.

Providing ready to run platforms on Linux

Show Descriptions... (Show All) (Two Column)

LWN.net

  • Woodruff: You shouldn't trust trusted publishing
    William Woodruff, better known online as "yossarian", has publisheda blog post to make the case that users should not place their trustin trustedpublishing:

    Trusted Publishing is a mechanism for establishing trust between anexternal machine identity (like a CI/CD workflow) and one or moreprojects on a package index/registry. The "trust" in "TrustedPublishing" refers to that trust relationship, and not to anythingelse.

    It is not, and cannot be, a signal for package trust orquality. You cannot use it to determine whether a package is safe or"good," and PyPI consciously stymies attempts to misuse it for thatpurpose by not rendering it as a "green checkmark" or anything else ofthe sort.

    Or as another framing: Trusted Publishing is just a form ofauthentication. It doesn't tell you anything other than that an uploadwas authenticated, which all uploads to PyPI are.

    LWN covered trustedpublishing in June.



  • [$] Faster RCUs and lockless memory allocation
    Puranjay Mohan shared some of thework he's been doing recently on improving theperformance of read-copy-update (RCU) at the 2026LinuxStorage, Filesystem, Memory-Management, and BPF Summit; his talk would havebeen nice context to have earlier in the day when Harry Yoo and AlexeiStarovoitov led a session about thenew kmalloc_nolock() function thatallows for lockless allocation from any kernel context, and which interacts withthe RCU subsystem to allow that. This article therefore covers the two sessionstogether and in the reverse order, to provide that missing context.


  • Security updates for Tuesday
    Security updates have been issued by AlmaLinux (nodejs22 and nodejs24), Fedora (clamav, hplip, kernel, kernel-headers, librabbitmq, mingw-expat, mir, perl-Imager, podman-tui, prometheus-podman-exporter, python-rpds-py, rust-ashpd, rust-busd, rust-gtk4-macros, rust-inferno, rust-quick-xml, rust-reqsign-aws-v4, rust-wayland-scanner, and sandogasa), Oracle (container-tools:rhel8, kernel, mariadb:10.11, mariadb:11.8, nginx, perl:5.32, php, php:7.4, rrdtool, ruby:2.5, ruby:3.3, ruby:4.0, and uek-kernel), Red Hat (kernel, opentelemetry-collector, and python-urllib3), Slackware (c-ares and openssh), SUSE (bind, chromedriver, cryptsetup, s390-tools, dnsmasq, jackson-annotations, jackson-core, jackson-databind, lcms2, pacemaker, perl-Cpanel-JSON-XS, perl-Crypt-SaltedHash, postfix, and python-mistune), and Ubuntu (gnutls28, gzip, openssh, php7.0, python-parsl, python3.10, python3.12, python3.14, request-tracker5, socat, sogo, and tar).


  • OpenSSH 10.4 released
    OpenSSH 10.4 has been released. In addition to a number of securityand bug fixes, there are a few notable changes; this release addsexperimental support for a composite post-quantum signature schemecombining ML-DSA 44 and Ed25519 as described in thisIETF draft. With 10.4, if OpenSSH is compiled with sandbox supportit will fail on Linux systems that have not enabled SECCOMPor NO_NEW_PRIVS; prior to this release, sshd would log an errorbut continue operation. See the release notes fora full list of changes.


  • [$] The kernel's iomap layer
    Conversations about the kernel's filesystem implementations often involve alayer called "iomap", but relatively few people can reliably say what iomapactually is. That is just the kind of gap that LWN exists to fill. Inshort, iomap handles the mapping between data in the filesystem space(identified by a file of interest, and an offset within that file) and inthe storage space (which may be a memory location, or a set of blocks on astorage device). Using that mapping, iomap handles a long list of common,filesystem-related tasks, allowing a lot of boilerplate code to be removedfrom individual filesystem implementations.


  • Security updates for Monday
    Security updates have been issued by AlmaLinux (container-tools:rhel8, grafana, grafana-pcp, kernel, ruby:2.5, and ruby:3.3), Debian (bird3, chromium, kernel, linux-6.1, mediawiki, nginx, openvpn, php-phpseclib, php8.2, php8.4, and sympa), Fedora (7zip, buildah, chromium, clamav, freerdp, leptonica, mariadb10.11, mariadb11.8, nextcloud, nsd, openqa, openvpn, os-autoinst, pdns, pdns-recursor, perl-Crypt-ScryptKDF, podman, python-jupyter-server, and python-streamlink), Mageia (mariadb and yt-dlp), Slackware (libevent, libseccomp, mozilla, mutt, and php82), SUSE (apache2, containerd, dnsmasq, docker, dracut, firewalld-legacy, gimp, glibc, golang-github-docker-libnetwork, google-guest-agent, gstreamer-plugins-bad, helm, kernel, kernel-devel, keybase-client, kitty, krb5, libarchive, libnfs, libslirp, nilfs-utils, openCryptoki, openQA, openssl-3, pacemaker, pcr-oracle, perl-DBI, perl-List-SomeUtils-XS, podman, python-pip, python-pydata-sphinx-theme, python-tornado6, python3-lxml, python311-mistune, python313-joserfc, rmt-server, sg3_utils, systemd, tracker-miners, and xdg-dbus-proxy), and Ubuntu (cifs-utils, linux-nvidia, linux-nvidia-6.17, linux-raspi-realtime, and ncurses).


  • Kernel prepatch 7.2-rc2
    The 7.2-rc2 kernel prepatch is out fortesting. Linus said: "It's Sunday afternoon, and rc2 is out. Thingslook very normal - it's not a small rc2, but it's in line with recentreleases, and slightly smaller than rc2 was in 7.1. Let's see how that allcontinues, but so far so good."


  • Seven stable kernels for Saturday including two security fixes
    Greg Kroah-Hartman has announced the release of the 7.1.3, 6.18.38, 6.12.95, 6.6.144, 6.1.177, 5.15.211, and 5.10.260 stable kernels. Several kernelsin this batch include afix for a vulnerability introduced in the 6.0 kernel in IPv6 (CVE-2026-53362),which couldallow an attacker to escape a container and gain root access.

    There is also afix for a use-after-free bug in KVM (CVE-2026-53359)that was introduced in the 2.6.36 kernel. As usual, each stable kernel includesa number of fixes throughout the tree. Users are advised toupgrade.



  • Four vulnerabilities in Guix
    The GNU Guix project has announcedthree vulnerabilities in the guix substitute utility as wellas a fourth that affects the guix pull and guixtime-machine commands. The impact of the vulnerabilities ranges from remote privilegeescalation to local disclosure of sensitive files.

    The remote exploitation of guix substitute only requires that thevulnerable system attempt to download a binary substitute. Anyconfigured substitute server, including ones discovered usingguix-daemon's --discover option, can exploit this, and so can aman-in-the-middle (MITM), regardless of whether https is used in thesubstitute server urls.

    The local exploitation of guix substitute only requiresthe ability to connect to guix-daemon's socket, which by default anyuser can do.

    Separately, another security issue (CVE ID pending) was identifiedin guix pull and guix time-machine, which enables anyone who cancontrol the channels file used by these commands to cause a file to becreated or overwritten wherever the user running the command inquestion has permission to create them.

    The project is recommending that all users upgrade guixand guix-daemon immediately. See the announcement forinstructions, how to test for the vulnerabilities, the disclosuretimeline, and more.



  • [$] Limiting negative dentries
    A number of problems related to negative directory entries (dentries) werethe topic of a filesystem-track session atthe 2026 Linux Storage,Filesystem, Memory Management, and BPF Summit. Negative dentries areused to indicate that a file of a given name does not exist in a directory;it is an optimization that short-circuits the lookup of the file name whenthe answer is already known.Miklos Szeredi led asession that discussedsome problems that come from having too many negative dentries for adirectory.


  • Security updates for Friday
    Security updates have been issued by AlmaLinux (389-ds-base, bind9.18, evince, fence-agents, freerdp, frr, frr10, gimp, gnutls, hplip, jmc, mariadb:11.8, mysql:8.4, php:7.4, postgresql-jdbc, postgresql:15, postgresql:16, valkey, xorg-x11-server, and xorg-x11-server-Xwayland), Debian (fastnetmon), Fedora (7zip, apptainer, cpp-httplib, mysql8.4, and nmap), Oracle (freerdp, giflib, glib2, glibc, kernel, libreoffice, libvirt, mariadb:10.11, postgresql, python3.11, python3.12, rrdtool, and thunderbird), Red Hat (buildah, podman, and skopeo), SUSE (alloy, apache2, buildah, c3p0, containerd, crun, cups, dhcpcd, dnsmasq, docker-stable, dracut, editorconfig-core-c, ffmpeg-7, fontforge, google-guest-agent, google-osconfig-agent, graphicsmagick, gstreamer-plugins-bad, gstreamer-plugins-good, helm, jackson-annotations, jackson-core, jackson-databind, jline3, kernel, kubectl-cnpg, lcms2, libslirp, libssh2_org, libxreaderdocument3, openbabel, openssl-3, pacemaker, perl-CGI-Session, perl-list-someutils-xs, python-lxml, python-tornado, python-tornado6, python3-onionshare, python311-python-engineio, sg3_utils, thunderbird, transmission, and trivy), and Ubuntu (cifs-utils, kernel, libvncserver, linux-aws-6.8, linux-gcp-6.8, linux-gke, linux-gkeop, linux-ibm-6.8, linux-nvidia-lowlatency, linux-oracle-6.8, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia-tegra, linux-oracle-5.15, linux-raspi, linux-xilinx, nghttp2, nginx, perl, and vim).


  • CalyxOS is back
    In August 2025, the CalyxOS privacy-focusedAndroid distribution announcedthat it was pausing all releases while it reworked itsrelease process, security protocols, and changed its signing keysfollowing the departure of one of its founders. The project has now announcedthat it is "officially back from the hiatus" with the7.2.2.0 release.

    CalyxOS 7.2.2.0 is signed by us using a newHSM-based, open-source signing solution we designed to enhance thesecurity of the entire signing process, ensure redundancy, and removesingle points of failure. You can verify CalyxOS 7.2.2.0 and futurebuilds following theseinstructions. For anyone who is interested, the security auditreport of the HSM provisioning ceremony script can be found here.

    In addition, we also went through significant infrastructureimprovements. In particular, we have set up a cleaner server structureto streamline each release. In response to Google's less frequent AOSPsource code releases, our team developed scripts to reduce theoverhead in applying monthly patches and updates. Please keep in mind,additional manual steps are still needed to compensate for AOSPchanges, such as requesting and storing kernel sources with eachupdate. Currently, our lead engineer is continuing the maintenance ofthe base device trees for both LineageOS and CalyxOS to bridge the gapcreated by the absence of Google Pixel device trees.


  • Kernel archive /pub tree restoring
    A few astute observers have noticed that somecontent on kernel.org had disappeared and were understandablyconcerned. Konstantin Ryabitsev has provided an update viasocial.kernel.org:
    There was an unfortunate error while changing the kernel.orgprimary/secondary mirroring infrastructure, which resulted in the /pubtree suddenly becoming empty. No data was lost, just public mirrorcopies. Everything is now being restored, but deletes are fast andrestores are slow, so thank you for your patience!
    The incident isbeing tracked on the Linux Foundation's IT status page.



  • Spoofed email from LWN
    We were made aware today of an email sent to a reader that wasspoofed to appear to be from LWN. The message claimed, among otherthings, that we were providing personal information about the readerto another site user. As is explained in our privacy policy we do not,and would not, provide such information.

    If any other readers have received an odd message from LWN, it isan attempt at a hoax; if in doubt, please check the DKIM header of theemail. Any email that does come from LWN will have a proper DKIMsignature in its headers.

    If you receive such a message, please feel free to send it to us,with its headers intact. But to reiterate, we are not providing anyuser information upon request, nor banning any accounts. We hope thiswill not be a recurring problem.



  • Fedora Council proposes pausing Community Initiatives
    Aoife Moloney has, on behalf of the Fedora Council, posted anannouncement that the Fedora Council is "proposing we pause theCommunity Initiatives process as an official project process"because it has decided the current process is ineffective. It is alsoclosing discussion regarding the AI developer desktopinitiative covered by LWN in May.

    The Fedora Objectives/Initiatives framework was never intended as amandatory prerequisite to do the work in Fedora. It supposed to helpby focusing the community on a certain work when needed, not to decidewhat is allowed. The AI developer desktop initiative proposalhighlighted that the Community Initiatives process has failed to serveas a good framework in Fedora where new ideas can surface, receiverespectful feedback, and gain Council support for work that fits theproject's present and/or future. This is something that the Councilmust address.

    As a first step, we would like to halt the community initiativeprocess immediately. Existing initiatives in flight (Fedora Forge,Atomic, and Fedora Docs 2026) will continue with full Councilbacking. Their underlying work will be completed as planned in theircurrent timeboxed state, though the administrative framework aroundthem may evolve.As a second step, we would like to work out a new mechanism to allowCouncil to set strategic direction in an open, transparent way thatmore intentionally includes the community voice. We recognise that wehave to be better at being more open in our discussions and decisionmaking.

    The council is considering the "sandbox" proposal as analternative or supplement to a process that replaces the CommunityInitiatives.



LXer Linux News

  • Razer Certifying Their First Laptop For Linux: Razer Blade 18 RZ09-0582
    Razer is a brand synonymous with gaming and finally in 2026 they are in the process of certifying their first laptop for Ubuntu Linux. This laptop going through Ubuntu Linux certification is the Razer Blade 18 RZ09-0582 and it offers incredible performance with the Core Ultra 9 290HX Plus processor and GeForce RTX 5090 graphics but with that also comes a very high price tag.





  • "I'll Make The Linux Kernel Mailing List Burn": Prominent LLVM Linux Developer Returns
    One of the original developers behind the work to allow the Linux kernel to be compiled using LLVM/Clang as an alternative to the GCC compiler is now back in the saddle working on LLVM Linux support. LLVM/Clang support for building the Linux kernel has been important for improving code portability and addressing GCC'isms, making use of LLVM compiler features not yet found with the GNU toolchain, evaluating the performance between GCC and Clang, and all the more important these days with the Linux kernel Rust integration...




  • Axiomtek MANO330 SBC features Intel N97/N150, HDMI, VGA, and LVDS
    Axiomtek’s MANO330 is a coming-soon Thin Mini-ITX single-board computer designed around Intel Processor N97 and N150 options, with DDR5 memory, multiple display interfaces, dual LAN, and M.2 expansion for compact embedded systems. According to the product listing, the MANO330 supports DDR5-4800 SO-DIMM memory with up to 32GB capacity. Expansion options include an M.2 Key B […]



  • Ryzen AI Developer Platform: AMD's Own Linux Distribution Built Atop Debian
    With the AMD Ryzen AI Halo developer platform there is the option of ordering this Ryzen AI Max+ mini PC with either Microsoft Windows 11 or "Linux OS". When receiving a AMD Ryzen AI Halo review sample last month, I fully expected it to just be an Ubuntu LTS install with ROCm preloaded. I was quite surprised when powering it up to find that it's an OS called the AMD Ryzen AI Developer Platform 1 "Rex" and is based on Debian Linux.



  • 9to5Linux Weekly Roundup: July 5th, 2026
    The 299th installment of the 9to5Linux Weekly Roundup is here for the week ending July 5th, 2026, keeping you updated on the most important developments in the Linux world.








  • FEX 2607 Optimizing For Yet-To-Be-Released ARM 256-bit SVE2 Hardware
    The FEX Emulator that allows running Linux x86/x86_64 software on ARM64 (AArch64) systems, including the likes of Wine / Valve's Steam Play (Proton) for Windows gaming on ARM, is out with its newest monthly feature release. The Valve-backed project for running x86_64 games and other software on ARM for the upcoming Steam Frame and other more typical ARM Linux systems has been baking more optimizations and improvements...



Error: It's not possible to reach RSS file http://services.digg.com/2.0/story.getTopNews?type=rss&topic=technology ...

Slashdot

  • Doom Developer id Software Is Reportedly Losing Half Its Staff
    Doom developer id Software is reportedly laying off about half its staff as part of Microsoft's broader Xbox cuts. The reported layoffs potentially affects around 90 employees. Engadget reports: While neither Microsoft nor id Software have formally acknowledged the layoffs, one former member of the studio's staff, Michael Maynard, has echoed the 50 percent figure on LinkedIn. According to at least one of Game Developer's sources, that could translate to around 90 job cuts, though it's so far unclear what departments at id Software have been hit hardest. [...] Bloomberg reported yesterday that as part of the "reset" at Xbox, ZeniMax Media, the parent company of id Software, will be focusing on its biggest franchises -- like The Elder Scrolls, Fallout, Wolfenstein and Doom -- going forward. It's possible that motivated the cuts to id Software, but the developer at least outwardly appears to be already heavily focused on Doom. The studio launched Doom: The Dark Ages in 2025 and an expansion to the game on July 7, 2026. Whatever the reason, the cuts at Xbox aren't over: While Microsoft eliminated 1,600 roles alongside the announcement that Xbox is restructuring, it still plans to lay off another 1,600 employees over the coming months.


    Read more of this story at Slashdot.


  • Microsoft Flips Windows Backup On By Default Outside the EU
    Microsoft will turn on Windows settings backup and restore by default for eligible Windows 11 business devices outside the EU, starting with Windows 11 26H2. The Register reports: Now dubbed "Windows settings backup and restore," the service backs up a device's settings and a list of installed Microsoft Store apps, which can then be restored to a new device. Microsoft gave a use case for the technology: "Imagine a lost laptop, a hardware refresh, or an unexpected reset. These are some of the moments when your users need backup most. And that's rarely when anyone wants to discover that backup was never turned on." However, some organizations might not want it on. Perhaps those with strict privacy or data sovereignty requirements, or those regulated by the EU Digital Markets Act (DMA), for whom the default-on behavior won't apply. Windows 11 25H2 and earlier are also excluded, as is any device with a backup policy that explicitly disables the setting. Everything else running Windows 11 26H1 will get switched on after a feature update, and the same applies to 26H2, currently with Windows Insiders in the Experimental channel. Administrators might reasonably be wary of this being opt-out rather than opt-in. Backups are useful, but Microsoft is clear that this is not a comprehensive backup solution, calling it only "one step in a broader Windows resiliency effort." The implications still need consideration. An opt-out setting that quietly ships settings data off-device is exactly the sort of thing that adds to administrators' workloads rather than lightening them.


    Read more of this story at Slashdot.


  • Samsung Passes Nvidia To Become Most Profitable Company In the World
    Samsung's chip division is projected to earn more in 2026 than it made across its previous 40 years in semiconductors, driven by soaring AI-fueled demand for memory and storage. The company's latest quarterly operating profit reportedly topped Nvidia's, making Samsung the world's most profitable tech company for the period. Tom's Hardware reports: Brokerage consensus puts Samsung's full-year 2026 operating profit near 300 trillion won ($196 billion), and its second-quarter figure at about 84.6 trillion won ($55.1 billion). Samsung easily beat the consensus with $58.5 billion when it posted preliminary results on July 7, overtaking Nvidia's most recent quarterly operating profit of $53.54 billion and becoming the most profitable technology company in the world for the period, on the back of AI-driven memory demand. Samsung's DS division booked 53.7 trillion won ($35.1 billion) of the company's 57.2 trillion won in total operating profit during the first quarter of 2026, roughly 94% of the total, which is why the division's projection sits so close to Samsung's full-year consensus. "This year's profit will exceed the cumulative profit generated over the past 40 years since we entered the semiconductor business," Kim Yong-Kwan told staff, scoping the claim to the chip business rather than the wider conglomerate. Further reading: Samsung Chip Workers To Get $340,000 Average Bonus In AI Boom


    Read more of this story at Slashdot.


  • FCC To End Biden-Era Rule That Forces ISPs To List All Their Fees
    The FCC plans to roll back broadband label rules that require ISPs to itemize all passthrough fees. Under the proposal, providers could instead list a single "up to" amount for location-based charges. It would also allow ISPs to link to pricing labels rather than display them prominently, while eliminating machine-readable pricing files. Ars Technica reports: ISPs routinely advertise prices much lower than those actually charged to consumers on their monthly bills. One method of raising monthly bill prices above advertised rates is to tack on fees that, ISPs claim, are used to offset charges imposed by local governments. ISPs would be well within their rights to advertise accurate monthly prices and charge those exact prices on monthly bills. But because ISPs rarely do that, the FCC has required them to make specific price disclosures to consumers for the past decade. The Biden-era FCC updated the broadband-label rules to require that ISPs "itemize on the label (PDF) all discretionary monthly fees that the provider passes through to the consumer." The change drew protest from Comcast and other ISPs that complained bitterly about the complexity of listing all the hidden fees they had chosen to charge. Under Chairman Brendan Carr, the Trump FCC has steadily whittled away at requirements imposed under Democrats. An order (PDF) released in draft form last week would eliminate the requirement to itemize passthrough fees and let ISPs list them in a single "up to" amount. The "up to" amount can include both government fees and fees charged by non-government entities such as owners of utility poles. "Rather than continuing to require providers to itemize 'passthrough fees' that can vary by location, we allow providers to display such fees in the aggregate, either as a maximum or 'up to' amount for the total fees applicable in any location where the service plan is offered, or as the exact total of such fees assessed in a particular location," the FCC draft order said. The order to be voted on later this month includes a few other changes that will please ISPs and their lobby groups. ISPs will be allowed to provide links to price labels instead of displaying the full labels prominently on ordering pages and account portals, and will be allowed to stop making the price-label information available in machine-readable spreadsheets. The FCC is also relaxing the requirement that price information be available over the phone. The FCC said the change will "allow phone sales representatives to present label information conversationally, as a summary of key label fields, rather than require verbatim recitation." The changes have been in the works since October 2025, when the FCC issued a Notice of Proposed Rulemaking to let the public submit comments on the proposals. The outcome of that process is the draft order, which will be voted on at the FCC's July 22 meeting and take effect 30 days after it is published in the Federal Register. There are many types of passthrough fees that ISPs will be able to stop listing individually and roll into the "up to" amount. The FCC defined the fees as follows, saying they include just about anything that isn't a tax [...]. Another planned change will eliminate a requirement that providers archive all labels for at least two years after a service plan is no longer available. The Utility Reform Network, an advocacy group, told the FCC that the archived labels provide crucial data about how prices and services change over time, and that machine-readable labels are important for affordability research and information accessibility.


    Read more of this story at Slashdot.


  • China's DeepSeek Developing Its Own AI Chip
    An anonymous reader quotes a report from Reuters: Chinese startup DeepSeek is developing its own AI chip, according to three people familiar with the matter, a push that could reduce its reliance on Nvidia and Huawei chips, which it has depended on to train and run its globally popular models. The chip is designed for inference -- the stage of AI computing in which a trained model generates responses for users -- rather than for training new models, the sources said. If successful, DeepSeek's expansion into semiconductor development would mark a major strategic shift for a company widely hailed in China as the country's AI champion, potentially adding to challenges faced by Chinese tech giant Huawei.


    Read more of this story at Slashdot.


  • Major Banks In Talks To Exploit Debit Card Loophole
    JPMorgan, Bank of America, Wells Fargo, PNC, and other major banks have reportedly explored acquiring Fiserv's debit-card networks, STAR and Accel, in a move that could help them bypass federal caps on debit-card transaction fees. A law limits the fees big banks can charge merchants, but only if the transactions are routed through an outside network. There are no caps on these interchange fees over a bank-owned network, however. The Wall Street Journal reports: When Capital One Financial bought Discover Financial in a $50.6 billion deal, it got a network that cut out the need for a middleman in card transactions and allowed it to deal more directly with merchants. Now, big banks are looking on with envy because owning a network can mean exemption from a federal law that caps debit-card fees. Those fees collectively amount to billions of dollars each year across the industry, but banks have long complained the government-defined cap limits their ability to offer customers debit-card rewards and other services. Some have been exploring a small deal that could upend the rules, though they are worried about political backlash if they try. Big banks including JPMorgan Chase, Bank of America, Wells Fargo and PNC Financial Services Group have in recent months held preliminary and tentative discussions about a deal to acquire a network owned by the financial-technology company Fiserv, according to people familiar with the matter. There is no certainty a deal will happen. Several of the banks that looked at the Fiserv network have already decided it would be unlikely for them to move forward, some of the people said. Some have privately expressed concern that such a deal could prompt backlash from lawmakers, regulators and merchants, the people added.


    Read more of this story at Slashdot.


  • Microsoft Can Track Users Via a Windows Device ID
    A criminal complaint against alleged Scattered Spider member Peter Stokes revealed that Microsoft can associate Windows activity with a persistent "Global Device ID," which investigators used to link his PC to online activity connected to a hack. While unique device IDs are common, the case has raised privacy concerns because the identifier can apparently persist across updates, has no simple opt-out, and may allow Microsoft to connect a Windows installation to activity on third-party services. PCMag reports: Last week, the U.S. announced it had extradited 19-year-old Peter Stokes from Europe for allegedly being a member of the notorious hacking group Scattered Spider. But the case stands out because Microsoft played a key role in linking Stokes to the suspected hacking crimes, according to an unsealed criminal complaint. Stokes allegedly hacked an unnamed luxury jewelry retailer in May 2025 while using a VPN. The 39-page criminal complaint shows the FBI used Microsoft records to discover that his IP address was associated with a Microsoft device identifier known as Global Device ID (GDID). "According to a Microsoft representative, a Global Device Identifier in the Windows ecosystem is a persistent, device-level identifier designed to uniquely identify an installation of a Windows operating system on a device, either a physical device (e.g., a mobile phone or laptop) or virtual machine, across certain Microsoft services and scenarios," the complaint explains. The global device ID isn't exactly surprising, given that it's standard practice to assign a unique ID to each account or device so a tech provider can recognize and distinguish between them. But the complaint reveals Microsoft can associate the GDID with third-party services and the timing as well, giving Redmond a way to theoretically track a user's online activity. In other words, Redmond might be able to track the online activity of your Windows PC without third-party browser cookies. Stokes was discovered exploiting a web development tool called ngrok to bypass the jewelry retailer's network defenses. The complaint says Microsoft had records showing that on May 12, 2025, at 19:21 UTC, the GDID associated with Stokes' computer "accessed, among other ngrok pages, 'https://dashboard[.]ngrok.com/signup,' the ngrok page to set up an ngrok account." The document adds that Microsoft records also showed the GDID accessing "multiple sites" from servers at Tzulo, a web hosting provider, to help pull off the hack. Hence, the fact that federal investigators used the Microsoft identifier to nab a suspected hacker is raising concerns that it could be abused for other surveillance purposes. "Microsoft Windows is surveillance software," cybersecurity expert Matthew Hickey alleged in a tweet.


    Read more of this story at Slashdot.


  • Amazon Will Stop Accepting New Customers For Mechanical Turk
    An anonymous reader quotes a report from TechCrunch: These may be the last days of Amazon's Mechanical Turk. An announcement on the Mechanical Turk website says that on July 30, 2026, the crowdsourcing service will close to new customers. Amazon Web Services says the decision was made after "careful consideration," adding, "Existing customers can continue to use the service as normal. AWS continues to invest in security and availability improvements for Mechanical Turk, but we do not plan to introduce new features." In other words, Amazon isn't completely pulling the plug, but the service is very much on life support. Further reading: Horror Stories From Inside Amazon's Mechanical Turk (2020)


    Read more of this story at Slashdot.


  • Learning Another Language Appears To Slow Brain Aging By Up To 13 Years
    A new study suggests multilingualism may slow brain aging, with bilingual people showing brains that appear about six years younger than monolingual speakers and people who speak four languages showing brains that appear up to 13 years younger. Researchers say earlier language learning and higher proficiency appear to strengthen the effect. The Guardian reports: Our brains are made up of billions of nerve cells that communicate with one another. But as we get older, the connectivity in our brains often deteriorates, causing memory and speed of thought to decline. While previous research had observed that people from European countries with greater language proficiency tended to age more slowly, this study measured the impact of speaking languages on individual brains. Scientists in Spain, Chile, Argentina and Dublin compared people living in the Basque region -- characterized by high levels of multilingualism -- who spoke Spanish, Basque, French and/or English. To measure neurological age, the scientists used magnetoencephalography to measure the brain activity of 728 people with varying ages and levels of linguistic ability. They then used AI to process the results to calculate a normal level of brain connectivity at any given age. A second unrelated group of 144 people were then scanned and compared, comprising equal numbers of people speaking one, two, three or four languages. Dr Lucia Amoruso, from the Basque Center on Cognition, Brain and Language in San Sebastian, said: "In simple terms, people who spoke more languages tended to have brains that looked younger than expected for their chronological age. The effect was not only related to the number of languages spoken. Higher language proficiency and earlier acquisition of a second language were also associated with more delayed brain ageing. This suggests that multilingual experience matters as a gradient: it is not simply about being bilingual or not, but about the depth and duration of language experience."


    Read more of this story at Slashdot.


  • US Cyber Agency Is Using Anthropic's Mythos To Audit Government Code
    CISA is reportedly using Anthropic's Mythos model to scan government code repositories for security vulnerabilities, with sources saying the audits have already found numerous bugs. Reuters reports: The scanning is being done by CISA's Attack Surface Evaluation team, according to one of the sources. The team is a group within CISA that conducts digital security assessments and hacking exercises across government. Two of the sources said the audits had already uncovered a large number of vulnerabilities but did not elaborate. Reuters could not establish exactly how much government code the team had gone through or the nature or severity of the bugs it discovered. [...] The National Security Agency, the U.S. government's powerful eavesdropping agency, has been using Mythos as far back as April despite the blacklist, Axios has reported. Late last month, the New York Times said that NSA analysts had been testing Mythos in classified settings and coming away impressed with its capabilities. But when Anthropic rolled out a public version of Mythos called Fable, which included what it described as cybersecurity safeguards, the White House suddenly demanded that it ban foreigners from running it. This triggered a global shutdown of the model that was lifted only last week.


    Read more of this story at Slashdot.


  • GitHub Thumbs Nose At Sony's Controversial End to Physical Media With Its Introduction of Repo CDs
    GitHub is offering a limited run of 1,000 CD-ROM copies of public repositories as a pro-physical-media jab at Sony's plan to stop producing PlayStation game discs in 2028. Tom's Hardware reports: The coding and collaboration platform, owned by Microsoft, states that "In light of recent developments in physical media, GitHub is proud to announce that you can now obtain your public repo on CD-ROM." Moreover, it appeals to the human side of computing, adding the emotive line "Keep it. Lend it to friends. Pass it on to your children." It isn't April 1st, so thankfully this is no joke. However, if you check out the above-linked GitHub Your Code, On a CD offer page, it quickly becomes clear this is a very limited in time/scope stunt. "Order a burned CD of your own public GitHub repo. Yes, a real physical disc you can hold in your hands, no download required," begins the spiel. But this is a very limited run of 1,000 discs, with applications required between July 2 and July 6 (inclusive). Limit one per person, with availability varying between country/region. "Your code is physically yours, forever. Until you lose it, let's be real," says GitHub. At best, these CDs will be framed and put on a wall, some becoming collector's items or eBay money spinners (discs like 0001 or 0888 would be good ones, if they are numbered). Also, many will be lost or eventually/accidentally discarded, as GitHub seems to know. So this 'protest' is arguably 1,000 doses of expensively shipped e-waste.


    Read more of this story at Slashdot.


  • Research Universities Are Admitting Fewer PhDs, a Bad Sign For Science
    An anonymous reader quotes a report from the New York Times: The number of students admitted to Ph.D. programs this fall dropped 15 percent from the previous year, according to data from over 50 top research universities, raising fears that the nation's capacity to produce new science could be diminished. The decline is driven, in part, by a chaotic and unpredictable federal funding environment under the Trump administration, as federal cuts are promised and then reversed, and budgets remain unclear. A reduction in doctoral students could mean fewer scholars at universities to teach and mentor undergraduates. Higher education leaders also worry that, if the declines continue, there will be fewer researchers to power a rapidly evolving scientific work force. The data showing the decrease comes from 55 universities, all of them members of the Association of American Universities, an invitation-only organization that includes 69 of the most prestigious research institutions in the United States. The data collection was conducted by another group, the Association of American Universities Data Exchange. Schools in A.A.U. confer half of the nation's research doctorates, according to the association. "We are at risk of losing a whole generation of new talent because of the reduction in the capacity to support those students," said Toby Smith, a senior vice president at the A.A.U. University leaders and research advocates cite many reasons for the declines in new doctoral students. Key federal agencies, such as the National Institutes of Health and the National Science Foundation, have been funding fewer research grants. The wealthiest institutions also face a new federal tax on their endowments. But the most cited reason in interviews was the unreliable nature of federal funding under the Trump administration. The administration proposed major cuts to federal research agencies last year, but Congress restored the funding. It is again proposing big cuts. While Congress may again reverse the administration's proposed reductions, the uncertainty makes it hard for schools to make multiyear commitments to doctoral students. The administration also abruptly ended thousands of research grants last year, arguing that they did not align with the government's priorities. The administration restored many of the grants after judges deemed the eliminations illegal and arbitrary, but research advocates say the whiplash was damaging.


    Read more of this story at Slashdot.


  • Small AI Models Gain Traction Around the World
    locater16 shares a report from IEEE Spectrum: One morning in 2019, Adebayo Alonge was in a Cape Town hotel room, preparing to demonstrate his startup's AI answer to a serious problem in African health care: counterfeit medication, which kills thousands of people across the continent every year. The RxScanner is a handheld spectrometer that scans a pill with infrared light, then sends the item's molecular profile to an AI model equipped with a pharmaceutical database. In seconds, the AI identifies the medication from its molecular profile -- or reports that it's phony. Pharmacies were using the system in more than a dozen countries, including Ghana, Kenya, Myanmar, and Alonge's native Nigeria. But that morning in South Africa, it didn't work. "I was shocked," Alonge says... So Alonge immediately asked his engineers to shrink the AI model down to a smaller, low-power, unconnected version that could run entirely on his Android phone. They produced it 2 hours later, and that saved the demo. More importantly, the work birthed a new version of his device, which can authenticate a pill in places without broadband, computers, or even reliable electricity. It also turned Alonge into an advocate for this kind of "small AI." "The article goes on to detail other immediately useful 'small' AI applications without any subscription or billion dollar data centers needed," writes locator16. For example, Bala Murugan and colleagues at Vellore Institute of Technology in India developed a drone-based system that photographs cashew plants and identifies disease-indicating splotches on the plants. The key advantage is that all processing happens on the drone itself, so farmers do not need a computer, broadband connection, or cloud server access. In a Uruguayan vineyard, researchers developed small-AI systems to identify ant infestations. The article doesn't go deep into the deployment details, but it presents this as another example of a narrow, localized model trained to recognize a specific agricultural threat. Small AI has also been used to detect the presence of malaria-carrying mosquitoes in multiple countries. This is especially useful in regions where public-health teams may lack reliable network access or expensive lab infrastructure, but still need fast, local detection. In parts of Brazil without access to more complex medical equipment, researchers have used small AI to run electrocardiograms from an Arduino device. The article also describes Marcelo Jose Rovai's work on a TinyML model that generates electrocardiograms in a patient simulator lab. Rovai also describes a newer experiment using an Arduino UNO Q with a Qualcomm chipset. The device runs a language model locally, collects sensor data, and analyzes it to detect tiny pools of water where mosquitoes might breed -- while using only about 3 watts of power.


    Read more of this story at Slashdot.


  • Supreme Court Allows Texas To Require Age Verification For Mobile Apps
    The Supreme Court allowed Texas to enforce a law requiring app stores to verify users' ages and obtain parental consent before minors can download apps. Tech industry groups argue the law broadly restricts young people's access to digital speech, but the court let a 5th Circuit order stand without explanation or noted dissents. CNN notes that the Supreme Court's decision "doesn't resolve the case but rather will allow Texas to enforce the law while the litigation continues to play out." From the report: "A minor child who downloads a software application from an app store agrees to contractual terms of service, including whether the child's location will be tracked, whether the child's privacy will be protected, whether information from the child's phone can be sold by the developer, and whether the child waives the right to sue," Texas told the Supreme Court in urging the court to allow its law to take effect. But the Computer & Communications Industry Association, a trade group whose members include Apple and Google, said the law would effectively bar young people from accessing a wide range of content, "be it a book by Ernest Hemingway or J.K. Rowling, a Taylor Swift album, or a subscription to National Geographic." Allowing the law to take effect, the group said, would have "profound consequences for the protection of digital speech." [...] In the new case, involving Texas' age verification for apps, a federal district court blocked the law's enforcement in December -- days before it was set to take effect. But a three-judge panel of the conservative 5th US Circuit Court of Appeals put that decision on hold in early June, allowing the state to enforce it. By declining to take up the emergency appeal from the computer and student groups, the Supreme Court has left the 5th Circuit's decision in place.


    Read more of this story at Slashdot.


  • South Korea's SK Hynix Launching $28 Billion US Listing To Ride Global AI Wave
    SK Hynix is launching a Nasdaq listing expected to raise about $28 billion, giving US investors easier access to one of the biggest beneficiaries of the AI memory-chip boom. Reuters reports: The company will sell 17.79 million new shares in the depository receipt listing on the Nasdaq. Ten ADRs will represent one common share and the stock will be sold in a price range that is due to be revealed on Monday, based on SK Hynix's Seoul trading price. SK Hynix's share price was down 4% at 2,327,000 won each on Monday, but the stock is up about 273% this year, as it rides surging global investor demand for AI stocks. Korea's KOSPI was down 2.2% on Monday. [...] SK Hynix has been among the world's largest beneficiaries of the AI boom as it outperformed its major rivals Samsung and Micron. "This is more than a liquidity event," said Dave Mazza, the chief executive officer of Roundhill Investments in New York, which manages an exchange-traded fund tracking DRAM manufacturers, which is one of the most popular ways for U.S. investors to trade SK Hynix's stock. "SK Hynix has been one of the most important companies in the world that most U.S. institutions could not easily own." "The listing removes an accessibility discount, not a quality discount." [...] SK Hynix said the proceeds from the listing of the American Depositary Receipts will be used to build chip factories in South Korea and buy chipmaking equipment including an extreme ultraviolet scanner made by Dutch equipment maker ASML. The final price of the New York listing is due to be set on Thursday, ahead of the stock starting trade on Friday, regulatory filings showed. The company's management will meet global investors on a roadshow this week. The deal is expected to be the second-biggest share sale after a record $85.7 billion initial public offering by SpaceX last month, surpassing Saudi Aramco's $25.6 billion IPO in 2019 and Alibaba's similar-sized offering in 2014.


    Read more of this story at Slashdot.


www.theregister.com - Articles



















































Polish Linux

  • Security: Why Linux Is Better Than Windows Or Mac OS
    Linux is a free and open source operating system that was released in 1991 developed and released by Linus Torvalds. Since its release it has reached a user base that is greatly widespread worldwide. Linux users swear by the reliability and freedom that this operating system offers, especially when compared to its counterparts, windows and [0]


  • Essential Software That Are Not Available On Linux OS
    An operating system is essentially the most important component in a computer. It manages the different hardware and software components of a computer in the most effective way. There are different types of operating system and everything comes with their own set of programs and software. You cannot expect a Linux program to have all [0]


  • Things You Never Knew About Your Operating System
    The advent of computers has brought about a revolution in our daily life. From computers that were so huge to fit in a room, we have come a very long way to desktops and even palmtops. These machines have become our virtual lockers, and a life without these network machines have become unimaginable. Sending mails, [0]


  • How To Fully Optimize Your Operating System
    Computers and systems are tricky and complicated. If you lack a thorough knowledge or even basic knowledge of computers, you will often find yourself in a bind. You must understand that something as complicated as a computer requires constant care and constant cleaning up of junk files. Unless you put in the time to configure [0]


  • The Top Problems With Major Operating Systems
    There is no such system which does not give you any problems. Even if the system and the operating system of your system is easy to understand, there will be some times when certain problems will arise. Most of these problems are easy to handle and easy to get rid of. But you must be [0]


  • 8 Benefits Of Linux OS
    Linux is a small and a fast-growing operating system. However, we can’t term it as software yet. As discussed in the article about what can a Linux OS do Linux is a kernel. Now, kernels are used for software and programs. These kernels are used by the computer and can be used with various third-party software [0]


  • Things Linux OS Can Do That Other OS Cant
    What Is Linux OS?  Linux, similar to U-bix is an operating system which can be used for various computers, hand held devices, embedded devices, etc. The reason why Linux operated system is preferred by many, is because it is easy to use and re-use. Linux based operating system is technically not an Operating System. Operating [0]


  • Packagekit Interview
    Packagekit aims to make the management of applications in the Linux and GNU systems. The main objective to remove the pains it takes to create a system. Along with this in an interview, Richard Hughes, the developer of Packagekit said that he aims to make the Linux systems just as powerful as the Windows or [0]


  • What’s New in Ubuntu?
    What Is Ubuntu? Ubuntu is open source software. It is useful for Linux based computers. The software is marketed by the Canonical Ltd., Ubuntu community. Ubuntu was first released in late October in 2004. The Ubuntu program uses Java, Python, C, C++ and C# programming languages. What Is New? The version 17.04 is now available here [0]


  • Ext3 Reiserfs Xfs In Windows With Regards To Colinux
    The problem with Windows is that there are various limitations to the computer and there is only so much you can do with it. You can access the Ext3 Reiserfs Xfs by using the coLinux tool. Download the tool from the  official site or from the  sourceforge site. Edit the connection to “TAP Win32 Adapter [0]


OSnews

  • Most slopcode projects are abandoned and deleted within months of release
    About a month ago, Flathub announced a ban on slopcoded applications. Evangelos GeopJr! Paterakis, developer of a number of popular Linux applications and ton of other things, did some research into just how many applications tagged with AI slop!, a tag Flathub reviewers used to keep track of slopcoded applications submitted to Flathub, actually survived the test of time. The results are exactly what youd expect. Of the 120 unique repos, 32 were maintained and 88 were abandoned. No seriously, a big portion of them was completely deleted, nowhere to be found, others stopped 6 months ago, right after submitting to Flathub. ↫ Evangelos GeopJr! Paterakis Thats absolutely soul-crushing. Why should Flathubs reviewers spend their precious, limited time talking to lazy slopcoders AI! agents to get their slopcoded applications into Flathub, when 70% of these applications are abandoned or outright deleted from existence within mere months of being submitted? Minimal effort for the slopcoders, maximum effort for the reviewers. Just dump a bunch of shitty code over the fence, let a chatbot handle the interactions with the reviewers, and pretend you made a valuable contribution. This is the contradiction slopcode enthusiasts really dont want to talk about. If these AI! tools are so great, where is all the amazing new software? Wheres the massive gains in software quality? Isnt the story that AI! tools do the menial work, giving programmers more time to focus on improving their software? Reality does not seem to match the story were being sold. Despite these slopcode tools being out and available for years now, theres no influx of great applications and other software, theres no rise in software quality, nothing. What we mostly seem to be getting are slopcoded projects nobody, not even their creators! care about, so they just get abandoned and deleted as quickly as they were dredged up from the bottom of the programming barrel. These arent applications created because someone wanted them to exist; these are applications created because some mid programmer got high on their AI! supply and fancied themselves better at programming than they really are  only to realise once the comedown hits theyve got crappy, barely working, entirely unmaintainable gibberish vaguely looking like code nobody can make head nor tails of. And then they abandon the project, ready for the next high  leaving everyone else to clean up their mess. What a miserable workflow.


  • Linux ported to the Atari Jaguar
    Only a few days ago we had Linux on the Mega Drive, and someone took that as a challenge, so now we have Linux on the Atari Jaguar. The Jaguar has a very different architecture than the Mega Drive, but does happen to use a processor from the same 68000-family. Interestingly enough, to this day, Linux has architecture code for the 68000-family of processors. 68040, 68030, 680100 and even the original base 68000 processor. All neatly structured under arch/m68k/. ↫ Joel Bueno And, well, that means Linux can indeed be made to work on the Jaguar, with some hacking and magic, of course.


  • Review: iodéOS offers a frictionless de-Googled Android experience
    Wherever in the world you go, the smartphone landscape is dominated by Android and iOS, and while this has always been problematic, recent events have made the dependency on two American tech giants for what is probably our most personal computing device even more problematic than it already was. We use our smartphones to keep our secrets, do our banking, interact with our governments, share our deepest thoughts with our friends and family, and a whole lot more. Having this invaluable tool the vast majority of us depend on tied entirely to Google and Apple is not just bad for the market, its also a downright threat to the national security of anyone not living in the US. Here in Europe, theres been an awakening lately, with governments, companies, and people alike finally realising that having our entire digital infrastructure controlled by foreign, adversarial interests is a terrible idea. Sadly, breaking free from our Android and iOS chains is not so easy. The most ideal solution would be a truly open source alternative smartphone operating system, but thats a hard sell for 99.9% of smartphone users who need the applications required to do their finances, talk to their friends, or interact with their governments. The cold and harsh truth is that with very few exceptions, these applications simply do not (yet) exist for smartphone operating systems that arent Android or iOS. The only viable alternative at this point in time is to take whatevers left of the Android Open Source Project, remove anything that ties it to Google and its services, fill in the gaps with alternative services and applications, and sell it as a Google-free or de-Googled Android platform. Theres several projects in this space, and with Europe drunkenly stumbling out of the technological hole it dug itself into, its no surprise that two of the more popular alternatives to Apple or Google-controlled smartphones come from Europe (and from the same country, no less). Today, were taking a look at one of these: iodéOS. Iodé is a company based in Toulouse, France, which focuses on offering a Google-free Android called iodéOS, either preinstalled on phones you can buy, or as a ROM you can install yourself on supported devices. As a company, iodé makes its money through selling devices with iodéOS preinstalled, through an optional premium subscription (that I didnt take a look at), and through donations, and all of their code is published as open source on their Gitlab instance hosted in France. Iodé loaned me a Fairphone 6 with iodéOS preinstalled, one of he many smartphones and tablets they sell through their online store for review. This isnt going to be an Android review; you already know what Android is like, and theres no need for me to rehash any of that. Instead, I want to focus on the things that make using de-Googled Android different from using Google Android. Dont be afraid of microG There are various ways to go about making a de-Googled Android variant, and iodéOS chose the LineageOS route, with microG installed on top. For those unaware, microG is a project which aims to replace the various proprietary parts of Google Play Services, required by many Android applications, with open source reimplementations. While it doesnt offer 100% compatibility, it works exceptionally well, and youll be hard-pressed to find applications just dont work at all with microG. IodéOS updates its microG installation through a dedicated F-Droid repository thats obviously enabled by default, so you dont have to do anything yourself. Using microG instead of Google Play Services doesnt mean you have to rely solely on whatevers available in F-Droid, since there are a variety of alternative Play Store frontends available. IodéOS ships with the Aurora Store, which is an open-source frontend to the Play Store that can be used with or without a Google account. If you use it with your Google account, youll gain access to whatever applications you already own, including paid ones, but you wont be able to buy applications inside Aurora. You can, however, buy an application on the Play Store website, after which it will show up in Aurora as well, assuming youre logged in with the same account. Aurora also comes with something something called FakeStore, which is sadly an important part of the puzzle; its a stub application that has the same package name as the real Play Store. Some applications check whether the Play Store is available before working properly, so this is sadly needed to ensure maximum compatibility. The only issue I sometimes ran into with Aurora is that it would load up its listings, but then any application I tapped on said it was unavailable. When this happened, reloading the Aurora application always fixed the issue. Annoying, but not gamebreaking. A few things did not work for me when using microG on iodéOS, and theyre exactly the things youd expect not to work. If you have a WearOS device, youre out of luck; WearOS devices simply do not work when using microG, but there is a bounty to add support for it. If you want to use a smartwatch with iodéOS, there are various options available, such as Garmin devices, which is what I used during my testing and it worked flawlessly. Another feature from regular! Android that simply wont work is RCS. Theres only one RCS client available on Android, Google Messages, and as you can imagine, Google is in no rush to allow devices without Google Play Services to register for and use RCS messaging. Tying to register with Google Messages will fail, and there are no other RCS clients available (save for a few China and India-specific clients). Theres a microG bounty for this, too, but no luck so far. Of course, there are countless messaging platforms that work just fine on iodéOS  regular SMS, WhatsApp, Facebook Messenger, Signal, and so on  and especially if youre European, its unlikely RCS support matters to you at all. I just dont


  • Improved DEC Alpha emulator runs Windows 2000 for Alpha and OpenVMS and Tru64 with X11
    Colour me positively surprised, as I had no idea Alpha emulation had progressed this much. As you might know, Im involved a bit in the OpenVMS community and the Alpha emulation side via AXPBox. AXPBox (github) is a fork of the es40 alpha emulator by Camiel Vanderhoeven (who is now Chief Architect at VSI, the company that makes OpenVMS, for x86 nowdays). There have been many forks of es40 in the past and recently a new one has popped up with some great new features. Like speedups via a JIT compiler, S3 graphics port from MAME and ARC support, resulting in the ability to run Windows 2000 for the DEC Alpha. ↫ Remy van Elst Not only can you run the unreleased Alpha version of Windows 2000 on this forked emulator, its also capable of running OpenVMS and Tru64 UNIX. In fact, both OpenVMS and Tru64 can run their full X11 CDE desktops on the emulator as well, which is incredibly cool and a huge milestone. As the name of the original emulator implies, its emulating an AlphaServer Es40 from the turn of the century, which should be fast enough for enthusiast use. The last AlphaStation ever made, the ES47, is still very high on my list of computers I desperately want but will never have  they are incredibly rare, and whenever they do come up for sale, incredibly expensive. If you have one, consider yourself lucky, and please, write about it! Tell the world!


  • LineageOS and Androids upcoming developer verification: what it is, and how it affects you
    LineageOS, the de-Googled Android ROM that serves as the backbone for pretty much the entire custom Android ROM community, has published an article about what the Android developer verification changes mean for them. I really like the factual tone of their article, especially this part: Critics such as F-Droid, EFF, and “Keep Android Open” point out that this also happens to route every install path through Google-controlled infrastructure, hands Google a kill switch over any app or developer worldwide, and arrives shortly after Google’s antitrust lawsuits. Both things can be true at once: real fraud is a problem and the restriction of developers is a convenient side effect of solving it this way  and we’re not in a position to pretend we know Google’s internal reasoning. We’re just telling you what they’ve said and what it changes; you can weigh the “why” yourself. ↫ Nolen Johnson on the LineageOS website For LineageOS, these new verification measures dont really mean much, as they dont affect the projects work or software. The developer verification infrastructure is a separate application that is part of Google Mobile Services, and LineageOS does not ship GMS nor does it ever intend to. As such, they dont have to do anything, as this wont be an issue unless LineageOS users choose to install a GApps package that happens to include the developer verification infrastructure. If Google were to move the developer verification infrastructure into Play Services in the future, LineageOS makes it clear theyll disable it globally, as they have done with a number of other annoying Play Services-provided over-the-air update implementations . There really isnt much more they can do; the rest is up to users and projects that use LineageOS as their base.


  • Composite video on the NES: whys it so wobbly?
    The Nintendo Entertainment System. Is it the platonic ideal of an 8-bit video game system? Well, only because it’s so prominent and successful– it’s actually kind of an oddball in its expandability and design. But there’s something else about it. The picture is a bit… wobbly. Well, over composite video anyway. Let’s dig in and learn a little big more about the nitty-gritty of composite video. ↫ Nicole Branagan As usual, the information density in this article by Branagan is kind of remarkable, especially when you consider it never overwhelms you. Such a great read.


  • ReactOS implements very first NT6 system call
    A fairly big moment for the ReactOS project: it has just received its very first system call from NT6. The system call that has been added is NtGetCurrentProcessorNumberEx, which is used for returning the processor number of the logical processor that a caller is running on. It’s unclear how long it will take ReactOS to become compatible with Windows Vista software, but it took Microsoft around half a decade to develop Vista after the release of XP and marked a major upgrade, even if it didn’t land well with users at the time. ↫ Paul Hill at Neowin Its a milestone for sure, but not one thats going to make a huge difference for ReactOS at this moment in time. Still, its a sign of things to come, even if the very nature of the ReactOS project means that whatever things are coming tend to take a while to arrive.


  • Microsoft settles centuries of religious debate by providing clearest definition of hell to date: Windows with a website-based shell running only Copilot
    For how often people invoke it, the concept of hell! in Christianity is remarkably vague and nebulous, as both the Old and New Testament barely go into detail about the concept. As such, Im glad Microsoft has now given us a clear vision of hell and what, exactly, it looks like, ending centuries of denominational disagreements. Microsoft is currently selling the idea of Windows and Copilot as two separate things: an OS and an assistant riding along on top of it. However, a leaked video shows Project Aion, an internal prototype where Copilot doesnt just sit inside Windows, it becomes Windows, swallowing the Start menu, the taskbar, and three decades of desktop conventions in the process. The footage is reportedly two years old, so Aion is most likely dead by now. But its the clearest look yet at how far Microsoft was willing to take its agentic AI ambitions. ↫ Alfonso Maruccia at Techspot Everything about this is dreadful. Obviously replacing the entire shell with AI! nonsense is the main crime against usability here, but on top of that, this new shell is all just websites, all the way down, so everything is slow and stuttery. Since this runs on something called Win3!, which appears to be a very minimal, stripped-down version of Windows intended to only run the Edge browser engine, you cant run Win32 applications. If you do try to run a Win32 application, it will load the application in a remote virtual machine running in the cloud, which I;m sure does wonder for performance, responsiveness, and latency. We can all thank the lord this project is two years old and most likely cancelled by now, but we have no way of knowing if Microsoft is still intending for this to be the future direction of Windows. Since people dont want to use AI! of their own volition, it only makes sense in the technology industrys sick, twisted mind to force people into using AI! with efforts like this. Consent has never been Silicon Valleys strength, after all. At the time of writing, Microsoft is 225 billion dollars in the red on AI!, so I wouldnt be surprised if attempts to replace the regular Explorer shell with something AI!-based is still very much on the table in Redmond.


  • Vulkan-netbsd brings Vulkan to NetBSD
    NetBSD is the only BSD without a Vulkan stack (Mesa and Lavapipe), but thats about to change. The effort to bring Vulkan to NetBSD is now in beta, with prebuilt binaries coming soon. Mesa configures, compiles, links, installs, and registers the Lavapipe software Vulkan driver on NetBSD 10.1 amd64, against LLVM 19.1.7. The driver (libvulkan_lvp.so, ~17 MB) installs into /usr/pkg/lib, and its ICD manifest (advertising Vulkan API 1.4) installs into /usr/pkg/share/vulkan/icd.d/, so a Vulkan loader on the system can discover it. ldd resolves every dependency cleanly. The entire process — environment setup, dependency builds, the Mesa build, and installation — is automated end to end and reproducible on a fresh install. ↫ vulkan-netbsd GitHub page Its important to note that the next step in the process is to port the Vulkan loader, which is required to actually run Vulkan applications. This entire effort is still ongoing and seems to be handled mostly by Dean Howell alone, so expect breakage and incomplete documentation as development progresses. Still, this is a hugely important effort, and seeing it this far along is great news.


  • EveryMac celebrates 30th birthday
    EveryMac turned 30. On July 2, 1996, EveryMac.com launched. Thirty years is a long time  and a great deal has changed since then  but what has not changed is that EveryMac.com has been there to provide you with detailed info on every Mac from the original 128k to the current line. Thank you very much for your support through the years. ↫ EveryMac news item I thought OSNews was pretty unique with its founding in 1997, so its great to see another enthusiasts website as old as ours. Amazing company to be in, too  EveryMac is an indispensable, tirelessly maintained, and stupidly accurate resource that I use countless times each year. Heres to another 30 years.


  • Android is almost dead
    The clock is ticking for Android as a (somewhat) open platform. If you are running Android 8 or higher, a virus has been installed on your device and is silently awaiting remote activation. Over the past few months, devices around the world have been infected with this novel strain, with as many as 4 billion Android handsets and tablets estimated to have already been contaminated, meaning that around half of all humanity may be at risk from this threat. Disguising itself as the innocuously-titled “Android Developer Verifier” (ADV) process, this trojan horse runs surreptitiously in the background as a system service with full root privileges, quietly awaiting an activation signal. The service cannot be blocked, disabled, or removed. Unlike a commonplace bit of malware, this extraordinary strain won’t be detected and neutralized by Play Protect (the malware scanning and remediation service that is installed on all Android Certified devices). In fact, Play Protect is itself the vector through which this virus is transmitted and installed. That is because it is Google themselves who is propagating ADV. And once activated, this malevolent process has exactly one goal: to block you from running software by developers who haven’t been approved centrally by Google. ↫ The F-Droid news website If nobody steps up, if no regulator takes on Google in this matter, we could very well be looking at the end of F-Droid and similar open source application repositories on Android. I use F-Droid, and in fact, one of the most important and most-used application on my Pixel 10 Pro comes from F-Droid: Fennec. This Firefox fork is not available through any Google-sanctioned means, and I could just wake up one day and have the browser on what is supposed to be my phone stop working. Age verification, tying crucial services to iOS and Google Android, killing the ability to install your own software on your phone, purposefully making people hopelessly addicted to and dependent on AI!, and so much more  were facing a multi-pronged attack designed to beat us into submission and give up on the idea of Free computing. I have to admit Ive lost all hope well be able to win this battle, as the combined interests of technology megacorporations and our own governments are just too powerful to fight. I feel like were living in the computing end times.


  • WinPE as a stateless harness for Windows driver testing and fuzzing
    What if you need to do very low-level testing involving the very guts of Windows NT, but dont need most of the userland that sits on top? In fact, what if that userland only slows you down and complicates the work youre trying to do? The solution is Windows PE (Windows Preinstallation Environment). It is an official, stripped-down environment distributed with every Windows ISO image. It runs entirely in RAM, requires as little as 512 MB of memory, and lacks support for DirectX, the PowerShell subsystem, or the standard graphical shell (Explorer). Booting by default with NT AUTHORITY\\SYSTEM privileges makes it an ideal test harness for both of these tasks. The following analysis focuses on the low-level mechanisms of WinPE, as well as BCD and QEMU modifications that allow transforming this system into an ultra-fast, idempotent testing environment. ↫ Piotr Bednarski Now, the kind of work Bednarski does isnt the most common of tasks, but Ive often wondered just how far you can get by bolting on whatever WinPE will allow you to. There were various unofficial third-party tools that built Windows live CDs based on WinPE, but I think most of those have died out by now. If you look hard enough, you can also find some other utilities people made for WinPE, including even some rudimentary web browsers. Regarding web browsers, modern efforts seem to run into issues. WinPE is not really meant for any advanced functionality, but I really do wonder how capable you can make it without turning it into regular Windows.


  • M/PC: a concatenative operating system for Varvara
    M/PC is a concatenative operating system for Varvara, inspired by Openfirmware, designed to manage files on system without a file browser. It uses the postfix notation, meaning that the function success their operands. ↫ M/PC website Im not going to pretend to really understand what any of this means.


  • OSNews statement on slopcoded operating systems!
    Recently, there has been a surge in slopcoded new/hobby operating systems!. Such slopcoded projects  which, due to the nature of AI! tools, effectively consist of stolen code  will not be featured on OSNews and submitting them is fruitless. Other websites may choose to employ lower standards, as is their prerogative, but OSNews will not. I obviously cannot guarantee nothing will ever slip through the cracks, but I will take utmost care to ensure OSNews remains free of these so-called sloperating systems!. Plagiarism, license-washing, and code theft have no place in the world of enthusiast and hobby operating systems.


  • European digital ID wallets are a gift to Google and Apple
    European governments are rolling out digital identity wallets, which are to be used by citizens to access services, and to verify their age online. As reported by Follow the Money and Android Authority, there is a serious problem with this: these wallets rely on safety services of Google and Apple. These are known as Google Play Integrity API, and Apple’s Managed Device Attestation. Such safety services (known as “remote attestation”) are used to ensure that wallet apps run on hardware that is not tampered with. In this article we explain why the EU-wallet case is part of a bigger problem: by embedding these safety services in public infrastructure, Europe risks making society dependent on private companies while serving their corporate interests. ↫ Danny Lämmerhirt Setting aside the age verification nonsense, the fact that some European government are tying their identification services to iOS and Google Android is absolutely bonkers, especially in this day and age. Theres endless talk about reducing European dependence on the American tech giants who seem all too eager to do roll over when the Trump regime so much as glances in their general direction, and yet, they seem to want to effectively force us citizens to use American tech products. Essential online tools, like banking, government services, communication services, digital drivers licenses, and more, should not require the use of iOS or Google Android.


  • Apple should end their prohibition on shapes in MacOS app icons!
    Theres a lot you can say about macOS, but one thing Apple used to be incredibly good at were making beautifully crafted, detailed icons. As with almost every other aspect of macOS, this deteriorated sharply over the years, with the recent macOS releases with Liquid Glass being an absolute low point. Not only have they become bland and featureless, Apple also started forcing every icons to have the exact same rounded-rectangle shape, making them even harder to distinguish from one another. Rogue Amoeba, a company with a long history of developing applications with beautiful iconography, published a blog post pleading Apple to go back to proper icon design. With last year’s release of MacOS 26 (Tahoe), Apple made a mess of app icons. In the first betas of MacOS 27 (Golden Gate), however, there are signs of a turnaround. We’re urging Apple to continue making improvements, by restoring the ability for MacOS app icons to have distinct shapes. ↫ Paul Kafasis at the Rogue Amoeba blog I really hope Apple will turn its icon ship around.


Linux Journal - The Original Magazine of the Linux Community

  • PorteuX 2.6 Released with Linux 6.19, TLP Support, and Smarter Hardware Optimization
    by George Whittaker
    The PorteuX project has officially released PorteuX 2.6, bringing a new round of updates to the lightweight Slackware-based Linux distribution. Designed to be fast, portable, modular, and immutable, PorteuX continues to appeal to users who want a complete desktop operating system that can run efficiently from a USB drive or other removable media. The latest release introduces a newer Linux kernel, improved power management, updated desktop environments, and numerous performance and usability improvements.

    Released just two months after PorteuX 2.5, version 2.6 focuses on refining the user experience while maintaining the distribution's minimalist philosophy.
    Powered by Linux Kernel 6.19
    At the heart of PorteuX 2.6 is the Linux 6.19 kernel series, bringing improved hardware compatibility, updated drivers, security fixes, and better support for modern processors and peripherals.

    The updated kernel helps ensure smoother operation on both newer desktop hardware and laptops while continuing PorteuX's emphasis on speed and low resource usage.
    Better Battery Life with TLP Support
    One of the headline features in PorteuX 2.6 is support for TLP, the popular command-line utility used to optimize laptop battery life.

    Available through the PorteuX AppStore, TLP automatically adjusts various power-saving settings, including CPU behavior and device power management, helping extend battery life without requiring constant manual tuning.

    For laptop users, this addition makes PorteuX an even more attractive lightweight operating system.
    Automatic CPU Microcode Loading
    The release also introduces automatic loading of Intel and AMD CPU microcode when booting in non-fresh modes.

    Microcode updates help address processor bugs, improve stability, and deliver security fixes directly from CPU manufacturers. Automating this process reduces the need for manual configuration while ensuring supported systems benefit from the latest firmware improvements.
    Updated Desktop Environments
    PorteuX continues to offer multiple desktop editions, each updated to recent upstream releases.

    Version 2.6 includes:
    GNOME 49.4 KDE Plasma 6.5.5 Xfce 4.20 Cinnamon 6.6 LXQt 2.3 MATE 1.28.2 COSMIC 1.0.8 LXDE 0.11.1
    This broad selection allows users to choose between modern feature-rich desktops and extremely lightweight environments depending on their hardware and workflow.
    Performance Improvements Throughout the System
    Although PorteuX has always emphasized performance, version 2.6 introduces additional optimizations behind the scenes.

    Developers report improvements including:
    Go to Full Article


  • CachyOS June 2026 ISO Released with Hyprland Noctalia, Faster Performance, and Smarter System Tools
    by George Whittaker
    The CachyOS team has released the June 2026 ISO, delivering another feature-packed update for its Arch Linux-based distribution. Known for its aggressive performance optimizations and gaming-focused approach, CachyOS continues refining both the user experience and the underlying system with improvements ranging from compiler tuning to installer enhancements and new desktop options.

    As the project's fourth major ISO refresh of the year, the June release emphasizes speed, usability, and modern hardware support while remaining fully compatible with Arch Linux's rolling-release ecosystem.
    A New Hyprland Noctalia Desktop Experience
    One of the headline additions is a new Hyprland Noctalia desktop option available directly from the installer.

    Noctalia provides a polished, preconfigured Hyprland environment with a modern appearance, allowing users to enjoy a highly customizable Wayland compositor without spending hours configuring dotfiles after installation. The installer even includes a preview so users can see the desktop before selecting it.

    For users interested in lightweight, keyboard-driven workflows, this new option makes Hyprland much more approachable.
    Performance Optimizations Continue
    Performance remains the defining characteristic of CachyOS, and the June 2026 release introduces several additional optimizations.

    Notable improvements include:
    Python packages now built using extended Profile-Guided Optimization (PGO) A new GCC branch prediction tuning patch designed to improve performance on modern Intel and AMD processors A fix for an OpenBLAS regression affecting high-core-count CPUs Additional package-level optimizations throughout the distribution
    These updates continue CachyOS's philosophy of extracting as much performance as possible from modern hardware.
    Improved Package Management and Security
    The June release also includes several important changes to package management.

    One notable enhancement is network isolation for Pacman scriptlets and hooks, preventing installation scripts from accessing the network by default. This improves security during package installation and reduces the risk of unexpected behavior.

    Additionally:
    proton-cachyos has been renamed to proton-cachyos-native The installer no longer includes the paru AUR helper Users are now encouraged to use Shelly, available with both graphical and command-line interfacesInstaller Improvements
    The installation experience has received considerable attention in this release.

    Updates include:
    Go to Full Article


  • Git 2.55 Released with Faster Performance, Smarter Hooks, and Expanded Rust Integration
    by George Whittaker
    The Git project has officially released Git 2.55, bringing a wide range of improvements focused on performance, developer productivity, and modernizing the world's most widely used version control system. The release introduces smarter repository management, faster operations for large codebases, expanded hook capabilities, and continues Git's gradual adoption of Rust for improved reliability and maintainability.

    Although Git 2.55 doesn't radically change how developers use Git day to day, it delivers meaningful enhancements that make common workflows faster and more flexible—particularly for teams managing large repositories.
    Rust Support Is Now Enabled by Default
    One of the biggest architectural changes in Git 2.55 is that Rust support is now enabled by default when building Git from source.

    Developers compiling Git will automatically use Rust components unless they explicitly disable them using the new NO_RUST build option. This is part of the project's long-term effort to improve memory safety and gradually replace selected components with Rust implementations where appropriate. Git 3.0 is expected to make Rust support mandatory.

    For most users installing Git through their Linux distribution, this change happens behind the scenes and requires no additional configuration.
    Repository Performance Gets a Boost
    Git 2.55 includes several optimizations aimed at improving performance when working with large repositories.

    Among the improvements are:
    Faster bitmap generation during repository maintenance More efficient multi-pack repository handling Better pseudo-merge bitmap processing Reduced time spent creating optimized pack files
    These enhancements can dramatically reduce maintenance times for repositories containing millions of objects while also improving clone, fetch, and object traversal performance.

    Developers working on large enterprise projects or open-source codebases should notice faster background maintenance and repository operations.
    Config-Based Hooks Continue to Evolve
    Git continues improving one of its most requested features: configuration-based hooks.

    Instead of storing hook scripts only inside the .git/hooks directory for each repository, developers can now define hooks directly through Git configuration files. This makes it easier to:
    Share hook configurations Manage multiple hooks Standardize development workflows Reduce repository-specific setup
    Git 2.55 also expands support for hook execution behavior and continues laying the groundwork for more advanced hook management in future releases.
    Go to Full Article


  • Fedora Governance Changes Take Effect as Project Refines Leadership, Policy, and Contributor Oversight
    by George Whittaker
    A series of Fedora governance updates are now taking effect, marking another step in the project's ongoing effort to modernize decision-making processes, improve transparency, and better support Fedora's growing contributor community. The changes come as the Fedora Council and other leadership bodies continue refining how one of the Linux world's largest community-driven projects is managed.

    While these updates may not be as visible as a new desktop environment or kernel release, they play a critical role in shaping Fedora's future direction, community initiatives, and long-term sustainability.
    How Fedora Governance Works
    Fedora's governance structure is built around several key organizations that guide different aspects of the project.

    These include:
    The Fedora Council, which oversees strategic direction FESCo (Fedora Engineering Steering Committee), responsible for technical and engineering decisions Mindshare, which focuses on community outreach and contributor engagement Various Special Interest Groups (SIGs) and working groups that manage specific initiatives and technologies
    Together, these groups help coordinate thousands of contributors spread across the globe.
    Greater Focus on Strategic Planning
    Recent Fedora Council discussions have emphasized long-term planning and governance modernization. One major area of focus has been defining clearer processes for evaluating and managing new initiatives through what Fedora leaders call an Innovation Lifecycle framework.

    The proposed framework aims to:
    Better evaluate experimental projects Establish clearer entry and review phases Define expectations for community initiatives Improve oversight as projects mature
    The goal is to create a more predictable path for new ideas while maintaining Fedora's culture of innovation.
    Refining Contributor Representation
    Another governance topic receiving significant attention involves contributor participation and voting eligibility.

    Fedora leadership has been examining questions such as:
    What defines an active contributor? How should voting rights be determined? How can elections remain fair while staying inclusive? How should dormant accounts be handled?
    These discussions stem from concerns that existing systems may not always accurately reflect current contributor activity.

    While no single solution has been finalized, governance bodies are actively working toward policies that balance openness with accountability.
    Go to Full Article


  • The Growth of Vulnerability Management: The Rise of Agentic AI Pentesting
    by Malana VanTyler
    Cybersecurity shifts fast. Manual penetration tests remain valuable, especially for nuanced attack paths and business-logic issues, but they are expensive, point-in-time, and difficult to run continuously. By the time a report is delivered, the environment may have already changed. Automated scanners improved coverage and frequency, but most still rely on known signatures, templated checks, and shallow validation. They can find obvious issues, but they rarely match the adaptive reasoning, chaining, and persistence of a skilled attacker.Platforms like XBOW help security teams move toward continuous validation by running AI-driven tests that mimic large-scale human attackers. This shift moves the focus from periodic assessment and reactive patching toward ongoing exposure management and earlier prevention.
    From Automation to Agency
    To appreciate the value of these modern platforms, it’s important to separate traditional automation from what is called “agentic” AI. Earlier AI pentesting tools mostly worked like advanced “if-then” systems, running preset scripts and looking for known patterns. While useful to automate some tasks pentesters perform, these tools lack the ability to pivot.

    If a standard tool hits a non-standard login portal, it generally stops. An agent platform, however, can identify and adapt to the obstacle, reason through potential bypasses, and attempt alternative tactics.

    This core differentiator is the “agent,” a specialized model capable of goal-oriented planning. These platforms employ real-time attack path analysis tools. They identify a low-severity vulnerability and assess whether it could be exploited to gain access

    to a high-value asset. This approach imitates how an advanced attacker moves laterally within a system. The result is a clearer and more realistic view of the organization’s real risk compared to just listing bugs in a spreadsheet without context.
    Comparing Methodologies: Strategy and Execution
    When comparing platforms in this area, the industry is shifting focus from just ticking off features to demonstrating how effectively those features can be used. Modern platforms, including XBOW, focus on high-fidelity testing that avoids disrupting production environments while still proving that a vulnerability is reachable.

    Three main architectural approaches have emerged as standouts:
    Go to Full Article


  • Linux Kernel 7.1 Officially Released with New NTFS Driver, Intel FRED, and Major Code Cleanup
    by George Whittaker
    The Linux kernel development team has officially released Linux Kernel 7.1, marking the first major update in the 7.x series. Announced by Linus Torvalds on June 14, 2026, the release introduces a mix of new features, hardware improvements, filesystem enhancements, and large-scale code cleanup efforts that continue modernizing the Linux platform.

    While Linux 7.1 is not a long-term support (LTS) release, it delivers several significant changes that will eventually make their way into many Linux distributions over the coming months.
    A Brand-New NTFS Driver Arrives
    One of the most significant additions in Linux 7.1 is a completely rewritten in-kernel NTFS filesystem driver.

    The new implementation has reportedly been under development for several years and replaces older code with a modern design built around Linux’s current storage infrastructure. The driver utilizes technologies such as iomap and folios, which improve efficiency and simplify future maintenance.

    Benefits include:
    Improved NTFS write performance Better handling of large files More modern filesystem architecture Easier future development and maintenance
    For users who regularly exchange data between Linux and Windows systems, this is one of the most important improvements in the release.
    Intel FRED Enabled by Default
    Linux 7.1 also enables Intel Flexible Return and Event Delivery (FRED) by default on supported hardware.

    FRED is a newer CPU mechanism designed to improve how processors handle interrupts and exceptions. By replacing older methods with a more streamlined approach, FRED aims to improve performance and reduce complexity in low-level CPU operations.

    The feature primarily benefits newer Intel platforms, including upcoming processor generations.
    Graphics Drivers Continue to Improve
    Graphics support remains a major focus of kernel development, and Linux 7.1 delivers additional improvements for both Intel and AMD hardware.

    Highlights include:
    Performance enhancements for Intel Arc GPUs Continued work on Intel Battlemage graphics Updates for AMD Radeon hardware Expanded GPU reliability monitoring infrastructure through DRM-RAS support
    These updates help improve gaming, desktop performance, and workstation workloads across modern Linux systems.
    Steam Deck OLED Audio Fixes Land Upstream
    Linux gamers receive a welcome improvement in this release as audio support fixes for the Steam Deck OLED have finally been merged into the mainline kernel.
    Go to Full Article


  • Canonical Launches ARM Laptop Certification Program to Boost Ubuntu’s Next Generation of Mobile Computing
    by George Whittaker
    Canonical is expanding its hardware certification efforts with a new focus on ARM-powered laptops, a move that reflects the growing momentum behind ARM architecture in the personal computing market. As ARM processors become increasingly common in laptops thanks to their impressive balance of performance, battery life, and efficiency, Canonical aims to ensure that Ubuntu users receive a seamless experience on this emerging class of hardware.

    The initiative represents another step in Ubuntu’s long-standing effort to provide reliable Linux support across a wide range of devices while strengthening relationships with hardware manufacturers.
    Why ARM Laptops Matter More Than Ever
    For years, x86 processors from Intel and AMD dominated the laptop market. However, the landscape has changed significantly as ARM-based systems have become more powerful and capable.

    Modern ARM laptops offer several advantages:
    Longer battery life Lower power consumption Reduced heat output Always-on connectivity capabilities Competitive performance for everyday workloads
    As manufacturers increasingly invest in ARM hardware, Linux distributions face growing pressure to ensure compatibility matches what users expect from traditional x86 systems. Canonical has already spent years supporting ARM across cloud, server, IoT, and embedded environments, making laptops a natural next step.
    What the Certification Program Does
    The new certification effort builds upon Canonical’s existing Ubuntu Certified Hardware program, which validates systems through extensive testing covering both hardware and operating system functionality. Certified devices undergo comprehensive verification to ensure Ubuntu operates correctly across critical components and daily workflows.

    Testing typically includes:
    Wireless networking Audio functionality Graphics performance Bluetooth support USB device compatibility Power management Suspend and resume behavior Firmware integration Security features such as TPM support
    The goal is to eliminate the uncertainty that Linux users sometimes face when purchasing new hardware.
    Creating a Better Ubuntu Experience on ARM
    Historically, Linux support on ARM laptops has varied significantly between devices. Some systems work exceptionally well, while others require manual configuration, custom kernels, or vendor-specific patches.
    Go to Full Article


  • Btrfs Snapshot Deletion Gets Faster as Developers Tackle One of the Filesystem’s Biggest Pain Points
    by George Whittaker
    The Btrfs filesystem continues to receive significant performance tuning, and one of the latest areas of focus is snapshot deletion performance. While Btrfs snapshots have long been praised for their speed, flexibility, and efficient use of storage, deleting large numbers of snapshots has historically been one of the filesystem’s most resource-intensive operations.

    Recent kernel development efforts are helping address that problem by improving metadata handling, reducing lock contention, and streamlining internal cleanup processes. The result is faster snapshot removal and less disruption on systems that rely heavily on snapshots for backups, rollbacks, and system recovery.
    Why Snapshot Deletion Has Been Challenging
    Btrfs is a copy-on-write (CoW) filesystem that stores data and metadata in a highly interconnected structure. This design enables many advanced features, including:
    Instant snapshots Subvolumes Checksumming Compression Efficient data sharing between snapshots
    However, the same architecture that makes snapshots so efficient to create can make them more complex to remove. When a snapshot is deleted, Btrfs must determine which blocks are still referenced by other snapshots and which can be safely reclaimed. On systems with many snapshots, this process can generate significant metadata activity.
    Recent Performance Improvements
    Developers have been working to reduce overhead associated with Btrfs metadata operations, which directly impacts snapshot cleanup performance.

    Recent kernel updates include:
    Reduced lock contention during extent tree operations More efficient extent buffer traversal Improved handling of internal filesystem structures Reduced contention during metadata searches General transaction and cleanup optimizations
    These changes help the filesystem spend less time waiting on internal locks and more time performing actual cleanup work.
    Less Impact During Cleanup Operations
    One common complaint among Btrfs users has been elevated I/O activity during large snapshot deletion jobs.

    On systems that maintain dozens, or even hundreds, of snapshots, cleanup operations could temporarily increase:
    Disk activity CPU usage I/O wait times Metadata processing workloads
    Recent improvements are designed to make these operations less disruptive by reducing bottlenecks inside the filesystem's metadata management code.

    For users running backup servers, NAS appliances, or snapshot-heavy desktop systems, these optimizations can improve overall responsiveness while cleanup tasks run in the background.
    Go to Full Article


  • How Digital Software Is Powering Innovation in Modern Product Design
    by Will Jones
    By enabling digitized production design, this digital software is freeing up businesses and individuals across numerous industries to work smarter, not harder.

    To design a new product or tool is often a lengthy, labor-intensive process. Even the most successful and streamlined physical design process is intensive and iterative by nature; it is the process of taking something that begins as little more than an idea and turning it into reality. Inherently, that is going to take a great deal of translation, as well as trial and error. When working with real-world, physical elements, this also makes for a costly endeavor, as each new trial effort may prove essential to the long-term success of the design, but still has adverse financial effects. Dassault Systèmes offers CAD software to help businesses stay on top of advancements in their industries.

    Before digital design software became widely adopted, engineers and designers often relied heavily on hand-drawn technical sketches and manual drafting methods during product development. Revising a design could require redrawing entire sections of a project, making the process both time-consuming and resource-intensive. Modern digital design systems have significantly changed these workflows by allowing teams to make rapid adjustments, automate calculations, and store detailed design information within a single platform. This shift has contributed to the broader adoption of digital tools across industries seeking more streamlined development processes.

    Fortunately, though, in this new world of ever-advancing technological tools, the design process doesn’t have to be fraught with issues and obstacles anymore, thanks to systems such as CAD software. This new software is now enabling businesses to design smarter, faster, and more accurately by digitizing product development processes and improving collaboration across engineering and manufacturing teams.
    Digital Design as the Foundation of Innovation
    Digital software allows engineers to create precise digital models that can then serve as the foundation for product development. Compare this to the physical alternative, which has long been a well-thought-out sketch of the product in question. Even the most comprehensive of sketches is only going to be dealing with two dimensions, and is likely to leave room for confusion or error based on the interpretation of the subjective rendering.
    Go to Full Article


  • GNOME Files Supercharges Search with Faster Results, Smarter Filters, and Better File Discovery
    by George Whittaker
    The GNOME project continues refining one of its most frequently used applications: GNOME Files (formerly known as Nautilus). Recent development efforts have focused heavily on improving the file manager’s search capabilities, making it easier to locate documents, media files, and folders across increasingly large storage volumes.

    For many Linux users, file search has become one of the most important daily workflows. As personal data collections grow and SSDs make local storage faster than ever, GNOME developers are investing in tools that help users find information more quickly and efficiently. GNOME Files already relies on indexing technologies such as Tracker (now GNOME LocalSearch) to deliver fast results, and recent improvements are building on that foundation.
    A Redesigned Search Experience
    One of the most noticeable improvements is a redesigned search interface that makes searching feel more integrated into the overall file management experience.

    Recent GNOME development previews introduced:
    A cleaner search popover Inline result previews Improved keyboard navigation Faster access to search filters Better visibility of search options within the file manager interface
    These refinements reduce the number of clicks required to narrow down results and help users locate files without leaving their current workflow.
    Smarter Filtering Options
    Search filters have become increasingly important as users store larger collections of documents, images, videos, and audio files.

    GNOME Files has been expanding its filtering capabilities, allowing users to narrow searches more effectively based on:
    File type Media category Search location Recent activity Indexed metadata
    Earlier updates expanded support for additional audio and video file formats, making it easier to locate multimedia content directly from the search interface. This is particularly useful for users managing large media libraries.
    Improved Search Performance
    Fast search results are just as important as accurate ones.

    GNOME Files continues leveraging the GNOME indexing framework to provide near-instant search results while minimizing system overhead. The file manager works closely with the LocalSearch indexing service to locate files quickly without repeatedly scanning entire drives.

    This approach provides several benefits:
    Faster file discovery Reduced CPU usage during searches Better scalability on large storage volumes More responsive user experience
    For desktop users who frequently work with thousands of files, these performance gains can significantly improve productivity.
    Go to Full Article


Page last modified on November 02, 2011, at 10:01 PM