Feed osnews OSnews

Favorite IconOSnews

Link https://www.osnews.com/
Feed http://www.osnews.com/files/recent.xml
Updated 2024-11-22 04:47
California passes strongest right-to-repair bill yet, requiring 7 years of parts
California, the home to many of tech's biggest companies and the nation's most populous state, is pushing ahead with a right-to-repair bill for consumer electronics and appliances. After unanimous votes in the state Assembly and Senate, the bill passed yesterday is expected to move through a concurrence vote and be signed by Governor Gavin Newsom. Excellent news from California, and I'd like to congratulate everyone involved in the effort getting this passed. Much like consumer protection laws from the EU, such laws from California also have a tendency to benefit consumers far beyond the borders of the original jurisdiction.
ReactOS gets support for UEFI booting
After several months of (public) work, ReactOS can now use UEFI boot. But that's the major changes planned for this PR. As of the state of this PR UEFI boot will operate as long as you have a serial port you should be able to test it. Some more boot fixes will come down the road but this covers 85% of devices we've ran into. In fact, they've even made it possible for ReactOS to boot on the Steam Deck, which is surely a neat trick. I'm sure once this has been polished up a bit more - if that's even necessary - it will make its way to the next ReactOS release.
KDE Gear 23.08.1 improves Dolphin, Gwenview, Kdenlive, and other KDE apps
KDE Gear 23.08.1 comes only three weeks after KDE Gear 23.08 and fixes various issues in several KDE apps, including the Dolphin file manager which now exports the copy location path with native separators on copy operations, and the Gwenview image viewer whose navigation works better with side mouse buttons. The Kdenlive video editor received quite some attention in this release with fixes for a possible crash in the audiolevel widget, broken audio channel setting when opening an existing project file, incorrect saving of default audio channels for a project, a crash on subclip transcoding, and extracting of audio multi-stream clips. There's way more bug fixes and improvements than these. As always, KDE Gear 23.08.1 will make its way to your distribution soon enough, and of course, if you're crazy, you can compile it yourself as well.
Haiku monthly activity report, August 2023
The latest Haiku activity report is here, covering the month of August, and it's a massive laundry list of fixes and improvements, but I couldn't find any major big ticket features or fixes. August also happens to bring the first two final Google Summer of Code reports - porting .NET to Haiku, and improving various parts of Icon-O-Matic, a vector drawing program designed specifically for working with Haiku's vector icon format. Also of note is that the main Haiku CO is down at the moment, but should be back up soon.
86Box v4.0 released
This is the August 2023 update to 86Box, bringing many improvements, bugfixes (especially for non-Windows users) and some new hardware. Mouse and keyboard support has been completely reworked, and should perform much, much better on all platforms, while also fixing a slew of bugs. Support for the ATI Mach8/32 was added, which is a first for the world of emulation, and VDE networking has been implemented as well (but not on Windows yet).
Any sufficiently advanced uninstaller is indistinguishable from malware
There was a spike in Explorer crashes that resulted in the instruction pointer out in the middle of nowhere. The start of a Raymond Chen investigation.
Xfce’s Wayland roadmap updated
The Xfce Wayland road-map on the project's Wiki has been updated a few times over the past two weeks, namely around the desktop panel plug-ins and applications support for Wayland. There still isn't a firm timeline or release where they expect to have a complete Xfce Wayland transition complete, but ultimately are aiming to have a native Wayland experience that doesn't depend at all on XWayland and will be using wlroots as part of its compositor. Many Xfce panel plug-ins are working under Wayland as are a number of Xfce's own applications. Do note, though, that there's no certainty at all yet that Xfce will transition to Wayland completely. As the roadmap clearly states: It is not clear yet which Xfce release will target a complete Xfce Wayland transition (or if such a transition will happen at all). So, the future of Xfce on Wayland is not yet set in stone - but with X.org having effectively been abandoned, I doubt Xfce will have much say in the matter.
The roots of an obscure Bourne shell error message
I love these kinds of investigations.
Microsoft replaces Chat with “Microsoft Teams – Free”
I know I keep harping on the declining quality and enshittification of Windows, but Microsoft just makes it so easy. In the changelog for the latest Windows 11 Insider Preview Builds is this gem: Beginning to roll out with this build, Chat is nowMicrosoft Teams - Free. Microsoft Teams - Free is pinned by default to the taskbar and can be unpinned like other apps on the taskbar. So you buy a new Windows machine or reinstall Windows, and the taskbar will have the beautiful and not at all thirsty name Microsoft Teams - Free". I know a good ad agency for Microsoft.
The death of Unity
But now I can say, unequivocally, if you're starting a new game project, do not use Unity. If you started a project 4 months ago, it's worth switching to something else. Unity is quite simply not a company to be trusted. What has happened? Across the last few years, as John Riccitiello has taken over the company, the engine has made a steady decline into bizarre business models surrounding an engine with unmaintained features and erratic stability. Unity is imploding in on itself, and it's very sad to see.
ZFS for dummies
As mentioned on previous posts, I have spent the past few weeks dealing with a ZFS crash on my FreeNAS install. Because of that, not only was I forced to learn how to troubleshoot ZFS, but I also had to learn how to setup new volumes and come up with new backup strategies (between a few other things). This was a great opportunity for me to learn more about ZFS (because I new nada' to start with). And I'm happy to share some of the knowledge that I gathered with you on this post. Please keep in mind that I don't consider myself an expert on ZFS (not even close), but I will try to make things simple and easy to understand for someone, who like me, is just getting started with ZFS. An excellent starting point for diving into ZFS.
Intel introduces Thunderbolt 5
Thunderbolt 5 will deliver 80 gigabits per second (Gbps) of bi-directional bandwidth, and with Bandwidth Boost it will provide up to 120 Gbps for the best display experience. These improvements will provide up to three times more bandwidth than the best existing connectivity solution, providing outstanding display and data connections. Thunderbolt 5 will meet the high bandwidth needs of content creators and gamers. Built on industry standards - including USB4 V2 - Thunderbolt 5 will be broadly compatible with previous versions of Thunderbolt and USB. That's some serious speed for a cable.
QtWayland 6.6 brings robustness through compositor handoffs
Every release has a killer feature. Qt 6.6 features the opposite - staying alive. This blog post describes work to make Qt clients more robust and seemlessly migrate between compositors, providing resistance against compositor crashes and more. Qt 6.6 is bringing something to the Linux desktop we haven't had yet: transparent recovery from display server crashes. The solution for this? Instead of exiting when the compositor closes, simply...don't! If we could connect to a new compositor we just need to send the right amount of information to bring it in sync and notify the application code of any changes to bring this in sync. For Qt applications all this information is handled in the backend, in the Wayland Qt Platform Abstraction (QPA). Qt already has to handle screens and input devices being removed, clipboards being revoked and drag and drops cancelled. Supporting a whole reset isn't introducing any new work, we just have to trigger all of these actions at once, then reconnect to the newly restored compositor and restore our contents. Applications already have to support all of these events too as well as handle callbacks to redraw buffers. There's no changes needed at an application code level, it's all done as transparently as possible. The benefits here are legion: you can run two different compositors on two different monitors. You can switch compositors at runtime. You can add new features without logging out and back in. Checkpoint restore in userspace, and more. All this made possible by Wayland - X.org cannot do any of these things.
End of servicing plan for third-party printer drivers on Windows
With the release of Windows 10 21H2, Windows offers inbox support for Mopria compliant printer devices over network and USB interfaces via the Microsoft IPP Class Driver. This removes the need for print device manufacturers to provide their own installers, drivers, utilities, and so on. Device experience customization is now available via the Print Support Apps that are distributed and automatically installed via the Windows Store. This framework improves reliability and performance by moving customization from the Win32 framework to the UWP software development framework. Finally, print device manufacturers no longer have to rebuild their software since this solution is supported across all Windows versions and editions. With these advancements in the Windows print platform, we are announcing the end of servicing of the legacy v3 and v4 Windows printer drivers. As this is an impactful change, end of servicing will be staged over multiple years. Printer drivers used to be an absolute hell on Windows. Whereas on Linux you just plug the printer in and Linux will find and use the printer without much issue, on Windows, you had to trawl vendor websites using obscure device names and minor version variations just to get the right driver installed - usually accompanied by a whole boatload or crapware. Things got better as Windows eventually started downloading printer drivers and accompanying OEM management software by itself, and it seems this is the next step in the process by moving the functionality from these often crappy printer management applications into Print Support Apps.
Mac ROM-inator II restock and partnerships
In the last few years, several other vendors have begun selling Mac ROM SIMMs too. Friendly competition is great, but it creates a potential dilemma for me if someone buys another vendor's ROM SIMM and reprograms it with BMOW's base ROM in order to get the on-the-fly ROM disk decompression and other features. It could turn into a situation where my base ROM software is subsidizing another competing product. To compound the problem, I didn't have any clear usage policy or license" for the base ROM to say whether this type of use was OK. Furthermore my FC8 compression algorithm is free open-source, but the BMOW base ROM which incorporates it is not. This all created a large gray area. I hope to clarify this now by making the BMOW base ROM image explicitly free for personal use with anybody's own Mac ROM SIMM, no matter what vendor they purchased it from. This is the simplest and best way of resolving the ambiguity for the benefit of the classic Mac community. I only ask that you don't resdistribute the base ROM image elsewhere - come back to the BMOW Mac ROM-inator II details page if you need to download the image. Excellent move.
Microsoft has not stopped forcing Edge on Windows 11 users
Microsoft published a blog post on the Windows Insider Blog in late August with a vague statement saying that Windows system components were to begin respecting the default web browser setting. Windows 10 and 11 regularly bypass this setting and force-open links in Microsoft Edge instead. In my extensive testing, I haven't found any changes in the new Windows Insider version. The issue here, I think, is in the wording Microsoft used. Here's the announcement: In the European Economic Area (EEA), Windows system components use the default browser to open links. I think the issue lies in the term Windows system components". The author of the post, Vivaldi employee Daniel Aleksandersen, states he tested links inside the new Copilot, Start menu, Search on the taskbar and desktop, Windows Spotlight, first-party apps (Outlook, Teams, News, Weather, and more), and Widgets on the taskbar (formerly called News and Weather)." However, I don't think Microsoft was talking about any of those things. When I read that original announcements from Microsoft, I assumed Windows system components" referred to links inside things like the Settings application, or various control panels. I have a feeling system components" does not include applications, search, or things like the search functionality. Idiotic and unclear, I know, but Microsoft is known for arcane language and terminology that doesn't make any sense to normal people outside the company. Of course, this is just my guess, so we'll see how this plays out.
HDMI ISA graphics card for vintage PCs by improving the Graphics Gremlin
2 years ago, I learned of an open-source project called Graphics Gremlin (GG) by Eric Schlaepfer who runs the website Tubetime.us. It is an 8-bit ISA graphics card that supports display standards like Color Graphics Adapter (CGA) and Monochrome Display Adapter (MDA). CGA and MDA are display standards used by older IBM(-compatible) PCs in the 1980s. The frequencies and connectors used by CGA and MDA are no longer supported by modern monitors hence it is difficult for older PCs of the 1980s era to have modern displays connected to them without external adapters. GG addresses this problem by using techniques like scan doubling (for CGA) and increasing the vertical refresh rate (for MDA) then outputing to a relatively newer but still old VGA port. As neat as this project is, it does have a few limitations that the author tried to address: it doesn't have modern outputs, which is becoming problematic with monitor makers no longer adding VGA ports, and it can't display on two outputs at once. This article details his solutions.
Breathing life back into a Minitel 1B with the Minimit
Regular readers will know that I have a lot of love for the French Minitel system and own a couple. In the past I've written about using a Minitel 1B as a terminal and replacing the EPROM in a Minitel 2 to run custom firmware. Today I'm going to blog about a project called Minimit. The Minimit is a small, Minitel-shaped box that attaches to the Minitel's DIN port and brings the Minitel experience back to life. The box contains an ESP32 which talks to the DIN port outputting Minitel-compatible text and graphics. And the graphics and letters appear slowly just as they would have in the 1980s. Minitel is such a fascinating topic and technology - Teletext, but more versatile. I'm so glad people are keeping it alive like this.
KSMBD declared stable – no longer “experimental” – in Linux 6.6
Back in 2021 Samsung engineers posted KSMBD as an in-kernel SMB3 server alternative to the likes of the user-space Samba server. KSMBD merged into Linux 5.15 as an experimental SMB server while after two years of fixes and other improvements has now dropped its experimental" marking. The KSMBD in-kernel SMB3 server is now formally declared stable with Linux 6.6 in removing its experimental tag. Neat.
I used a Game Boy Camera for FaceTime video calls in iPadOS 17 and it was glorious
A major change introduced by iPadOS 17 that is going to make video creators and gamers happy is support for UVC (USB Video Class) devices, which means an iPad can now recognize external webcams, cameras, video acquisition cards, and other devices connected over USB-C. I started testing iPadOS 17 thinking this would be a boring addition I'd never use; as it turns out, it's where I had the most fun tinkering with different pieces of hardware this summer. Most of all, however, I did not anticipate I'd end up doing FaceTime calls with a Game Boy Camera as my iPad Pro's webcam. This is amazing.
Meet the guy preserving the new history of PC games, one Linux port at a time
The person doing that maintenance, as well as making sure that about 70 of the best known indie games from the same era keep running, is Ethan Lee. He's not as well known as Fez's developer Phil Fish, who was also the subject of the documentary Indie Game: The Movie, but this week Lee started publicly marketing the service he's been quietly providing for over 11 years: maintenance of older games. Usually, when video game publishers talk about revisiting older games they talk about remasters," lavish reproductions that not only make them playable, but update their graphics or make them more modern in some way. Lee chose the word maintenance" intentionally to describe what he does. Doing the lord's work.
How big tech got so damn big
Enter the trustbusters, led by Senator John Sherman, author of the 1890 Sherman Act, America's first antitrust law. In arguing for his bill, Sherman said to the Senate: If we will not endure a King as a political power we should not endure a King over the production, transportation, and sale of the necessaries of life. If we would not submit to an emperor we should not submit to an autocrat of trade with power to prevent competition and to fix the price of any commodity." In other words, when a company gained too much power, it became the same kind of kingly authority that the colonists overthrew in 1776. Government by the people, of the people, and for the people" was incompatible with concentrated corporate power from companies so large that they were able to determine how people lived their lives, made their incomes, and structured their cities and towns. Break up big tech. Apple, Google, Amazon, Microsoft, Facebook - they need to be chopped up into smaller parts that need to compete with one another. The amount of life this will breathe into the economy, as well as the burst of innovation that it will cause, will do more for people's lives than a trillion nonsense trickle-down policies that favour the rich and powerful.
Even more merch: new colours, new shirt, and new longsleeve
We've got new merch! The first round of merch turned out to be more popular than I thought, so it's time to shake things up a bit and get some fresh new stuff in the official OSNews merch store. Before we start, if you want the limited edition quote T-shirt or quote mug, you have to be quick - I'll be removing them from the store somewhere in the coming days, and they'll never come back. This is your last chance to show the world how awesome Eugenia is. The first new product is by popular demand - a mug with just the OSNews logo, no quote. There's really nothing to add here - it's a mug, it holds liquid. Go nuts. Second, I've added a few new colour options to the basic logo T-shirt: night sky navy, revolution red, and white sand. They look pretty great. And I saved the best for last: a brand new T-shirt and sweatshirt, with the ASCII OSNews logo I use for our Gemini capsule. Of course, it comes in the only valid colour combination: phosphor green on black. The Gemini T-shirt goes for the same price as the other T-shirts - $29.99 - and is also made of the same organic cotton as the others. The longsleeve Gemini Sweatshirt goes for $39.99, to maintain that roughly $8 of every product sold that goes to OSNews, and is made from an 80/20 ringspun cotton/polyester blend. If I may say so myself - I think these two terminal shirts look stunning, and I'm quite proud of how they turned out. And thanks to everyone who has already bought merch since we launched the store - it means the world to me!
Intel announces Arm investment, talks up RISC-V
SoftBank has been gearing up anchor investments in Arm Holdings among its clients and partners for months now (ahead of theupcoming IPO) and apparently Intel is among them. In a call for the Goldman Sachs Communacopia & Technology Conference, the head of the company's foundry business unit confirmed that the chip giant has made an investment in Arm because its technology is strategically important for both Intel Foundry Services and Altera FPGA unit. This doesn't seem to be an indicator Intel is interested in making ARM chips - it seems to have more to do with Intel becoming a fab for other companies' ARM chips.
SoftGPU: SW and HW accelerated driver for Windows 9x virtual machines
Do you need software and hardware accelerated graphics drivers for Windows 9x running inside a virtual machine? Well, here's SoftGPU, which will give you just that in Bochs, VirtualBox, Qemu, or VMware, for Windows 95, 98, or ME. The Github page provides detailed instructions on setting up the optimal virtual machines, and information about what, exactly, each virtual machine and diver supports and doesn't support. On top of that, there's links to a number of YouTube videos showing the driver in action. Excellent work, and this will allow you to get the most out of your Windows 9x virtual machines.
The rxv64 operating system
What, you thought we were done with the operating systems written in Rust? Oh sweet summer child. rxv64 is a pedagogical operating system written in Rust that targets multiprocessor x86_64 machines. It is a reimplementation of the xv6 operating system from MIT. As a pedagogical system, it supports very little hardware other than the text-mode CGA device, serial port, PS/2 keyboard controller, and PCIe AHCI SATA storage devices. xv6, in turn, is a reimplementation of Sixth Edition UNIX in C for x86 and RISC-V, widely used in teaching operating systems courses at various universities.
NuXT 2.0 motherboard: a new 8088 motherboard for your DIY PC clone
In the recent past I have discussed the Book 8088 and the Hand 386, which are newly made vintage computing systems. I concluded that those products, although not uninteresting were rather flawed. The Book 8088 was by far the more disappointing of the two devices. I have also been made aware of a project which tries to fulfill a similar niche, the NuXT motherboard. The NuXT is an 8088-based motherboard you can buy brand new and can really fill that IBM PC-clone hole in your vintage collection. While I do not own one of these, I have read and seen enough about it to give my thoughts on whether this product would be right for you. The NuXT 2.0 looks like an incredible motherboard for fans of the original IBM PC and its clones - especially with the prices of working original machines going through the roof as supply dwindles and demand skyrockets.
How big is a kilobyte?
As best I can tell, there is no broad consensus on how large a kilobyte is. Some say that a kilobyte is 1000 bytes while others say it's 1024 bytes. Others are ambiguous. This also means that the industry does not agree on the size of megabytes, gigabytes, terabytes, and so on. Not entirely new information to most of us, I would presume, but in my head canon a kilobyte is 1024 bytes, even though that technically doesn't make any sense from a metric perspective. To make matters worse, as soon as we get into the gigabytes and terabytes, I tend to back to thinking in terms of thousands again since it just makes more sense. The kibibytes and cohorts are a way to properly distance the base 2 system from the base 10 one, but I've never heard anyone in day-to-day speech make that distinctions outside of really nerdy circles.
Google gets its way, bakes a user-tracking ad platform directly into Chrome
Don't let Chrome's big redesign distract you from the fact that Chrome's invasive new ad platform, ridiculously branded the Privacy Sandbox," is also getting a widespread rollout in Chrome today. If you haven't been following this, this feature will track the web pages you visit and generate a list of advertising topics that it will share with web pages whenever they ask, and it's built directly into the Chrome browser. It's been in the news previously as FLoC" and then the Topics API," and despite widespread opposition from just about every non-advertiser in the world, Google owns Chrome and is one of the world's biggest advertising companies, so this is being railroaded into the production builds. Google seemingly knows this won't be popular. Unlike the glitzy front-page Google blog post that the redesign got, the big ad platform launch announcement is tucked away on the privacysandbox.com page. The blog post says the ad platform is hitting general availability" today, meaning it has rolled out to most Chrome users. This has been a long time coming, with the APIs rolling out about a month ago and a million incremental steps in the beta and dev builds, but now the deed is finally done. Don't use Chrome or any of its derivatives. If you care about privacy and the open web, use Firefox or one of its even more privacy-conscious alternatives, such as LibreWolf. Chrome has always been deeply problematic, but with this ridiculous Privacy Sandbox", the browser has effectively become a tool to show you ads first, and a browse second. Mark my words - the total gutting of adblocking in Chrome is up next.
The Servo project is joining Linux Foundation Europe
Created by Mozilla Research in 2012, the Servo project was the first major Rust codebase other than the compiler itself, and has since been a hallmark for experimental web engine design. Major components of Servo have been incorporated into the Firefox web browser, and several of its parsers and other lower-level libraries have become foundational to the Rust ecosystem. As a promising, modern, and open web engine for building applications and immersive experiences using web technologies, stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020. In 2023, Servo experienced renewed activity led by Igalia, a Linux Foundation Europe member that now has a team of engineers working on the project. Today we are pleased to announce that the Servo project has officially joined Linux Foundation Europe. I'm very curious to see where Servo goes in the future.
Plasma 6 to be released in February 2024
A month has passed since the last Plasma 6 status update, so it's time for another one! First, what you've all been waiting for: a release date! We've decided that Plasma 6 will be released in early February of 2024. We don't have a specific day targeted yet, but it'll be in that timeframe. I'm feeling quite confident that the release will be in excellent shape by then! It's already in good shape right now. 5 months should provide enough of a runway for a solid final release. Following the development of Plasma 6 has been an interesting ride, and it seems it's in a good state - and these five months will make it even better.
UK has not backed down in tech encryption row, minister says
Over the past few days, there have been a lot of reports in the media that the UK government was backing down from its requirement that every end-to-end encrypted messenger application inside the country had to give the government backdoor access to these messenger applications. However, after reading the actual words from the UK's junior minister Stephen Parkinson, it seemed like all she did was give a pinky promise!" not to enforce this requirement. The law itself did not change, is not changing, and will not change, and the requirement is still in there. Today, the UK's technology minister Michelle Donelan made that even clearer than it already was. Donelan, however, denied on Thursday that the bill had been watered down in the final stages before it becomes law. We haven't changed the bill at all," she told Times Radio. If there was a situation where the mitigations that the social media providers are taking are not enough, and if after further work with the regulator they still can't demonstrate that they can meet the requirements within the bill, then the conversation about technology around encryption takes place," she said. This raises an interesting question - why was everyone so keen on pushing the narrative yesterday that the technology sector" had won, and that the UK government had backed down? Well, Facebook and Apple have kind of talked themselves into a corner in response to the UK's requirement for backdoor access to WhatsApp and iMessage. The two companies threatened they would pull these services out of the UK if the government didn't remove this requirement. When it became clear that the UK government wasn't going to back down, Facebook and Apple were going to lose a lot of face if they didn't actually pull WhatsApp and iMessage out of the UK in response. They needed something to get them out of this. This vague pinky promise is all they needed. Now they can shit all over their supposed morals and values once again, completely abandon their grandstanding and promises about protecting end-to-end encryption in messaging, and continue to operate in the UK as if nothing has changed, despite them legally being obligated to break end-to-end encryption if the UK government asks them to - which they can now do whenever it pleases them. And entirely unsurprisingly, the general tech media, ever looking to please the corporations they are supposed to do the journalism stuff about, fell for it, hook, line, and sinker. The narrative that the UK backed down and Facebook and Google won is out there now, and that's all the tech sector needed.
TPM-backed full disk encryption is coming to Ubuntu
Based on Ubuntu Core's FDE design, we have been working on bringing TPM-backed full disk encryption to classic Ubuntu Desktop systems as well, starting with Ubuntu 23.10 (Mantic Minotaur) - where it will be available as an experimental feature. This means that passphrases will no longer be needed on supported platforms, and that the secret used to decrypt the encrypted data will be protected by a TPM and recovered automatically only by early boot software that is authorised to access the data. Besides its usability improvements, TPM-backed FDE also protects its users from evil maid" attacks that can take advantage of the lack of a way to authenticate the boot software, namely initrd, to end users. I'm not well-versed enough on this topic to make any meaningful comments, other than as long as it's a choice presented to users, it seems like a good thing.
Microsoft announces new Copilot Copyright Commitment for customers
To address this customer concern, Microsoft is announcing our new Copilot Copyright Commitment. As customers ask whether they can use Microsoft's Copilot services and the output they generate without worrying about copyright claims, we are providing a straightforward answer: yes, you can, and if you are challenged on copyright grounds, we will assume responsibility for the potential legal risks involved. This new commitment extends our existing intellectual property indemnity support to commercial Copilot services and builds on our previous AI Customer Commitments. Specifically, if a third party sues a commercial customer for copyright infringement for using Microsoft's Copilots or the output they generate, we will defend the customer and pay the amount of any adverse judgments or settlements that result from the lawsuit, as long as the customer used the guardrails and content filters we have built into our products. Copilot is the biggest copyright infringement case in human history, but at the same time, it will be very difficult for the thousands and thousands of individual projects and developers on Github to fight Microsoft in court of this infringement. Microsoft knows nobody powerful enough to challenge them is going to sue them over this, so they can easily offer this indemnification.
ELKS 0.7.0 released
ELKS is a project providing a Linux-like OS for systems based on the Intel IA16 architecture (16-bit processors: 8086, 8088, 80188, 80186, 80286, NEC V20, V30 and compatibles). Such systems are ancient computers (IBM-PC XT / AT and clones) as well as more recent SBCs, SoCs, and FPGAs. ELKS supports networking and installation to HDD using both MINIX and FAT file systems. Version 0.7.0 was recently released, and it includes support for several new systems, among which is the Book 8088, a recently released 8088 laptop from China that's been making the rounds on YouTube. Of course, it also comes with a bunch of new commands and applications, like mail from MINIX, the visual file manager fm, and more, and the usual load of bug fixes.
Xcom: a cross-platform graphics user interface
Xcom is a crossplatform GUI system: a multi-windowed, multi-tasking environment. Xcom allows you to browse, copy, view and manage your files, start and stop programs, watch and listen basic media content and music. Unlike other windowing systems and protocols, it integrates the basic functionality as a monolithic, cohesive program. Xcom can run on top of various kernel, currently the DOS version is available publicly. Xcom is tiny in size, fast, doesn't requires installation process. Xcom is hundreds of times faster and smaller than competitive systems - it requires only about 5 MBytes of disk space, and starts up within a few seconds. Xcom has a familiar appearance of classic operating system user interfaces. Xcom is a handy tool to keep it on your retro computer, it can work magnitudes faster than any other modern desktop environment, meanwhile the features are up-to date. Xcom has all the basic tools for browsing pictures, listening to music files, reading and writing text documents and drawing simple graphics. This is an interesting approach to developing a full... User interface? Operating environment? It currently is only available for DOS, but other systems should follow. It does have a few intrinsic limitations - since it's entirely contained in one program, you can't develop for this or create new applications, since it's not a toolkit and doesn't have a compiler or anything like that. It's also not open source, and while that doesn't mean it's not good or not interesting, it does limit the interest this will gather in the wider community. Regardless, it looks great, and it's clear a lot of work and love went into it.
Android 14 blocks all modification of system certificates, even as root
We've come a long way since then, steadily retreating from openness & user control of devices, and shifting towards a far more locked-down vendor-controlled world. The next step of Android's evolution is Android 14 (API v34, codename Upside-Down Cake) and it takes more steps down that path. In this new release, the restrictions around certificate authority (CA) certificates become significantly tighter, and appear to make it impossible to modify the set of trusted certificates at all, even on fully rooted devices. If you're an Android developer, tester, reverse engineer, or anybody else interested in directly controlling who your device trusts, this is going to create some new challenges. The walls are slowly but surely closing in on Android.
Microsoft’s results of major technical investigations for Storm-0558 key acquisition
On July 11, 2023, Microsoft published a blog post which details how the China-Based threat actor, Storm-0558, used an acquired Microsoft account (MSA) consumer key to forge tokens to access OWA and Outlook.com. Upon identifying that the threat actor had acquired the consumer key, Microsoft performed a comprehensive technical investigation into the acquisition of the Microsoft account consumer signing key, including how it was used to access enterprise email. Our technical investigation has concluded. As part of our commitment to transparency and trust, we are releasing our investigation findings. Our investigation found that a consumer signing system crash in April of 2021 resulted in a snapshot of the crashed process (crash dump"). The crash dumps, which redact sensitive information, should not include the signing key. In this case, a race condition allowed the key to be present in the crash dump (this issue has been corrected). The key material's presence in the crash dump was not detected by our systems (this issue has been corrected). We found that this crash dump, believed at the time not to contain key material, was subsequently moved from the isolated production network into our debugging environment on the internet connected corporate network. This is consistent with our standard debugging processes. Our credential scanning methods did not detect its presence (this issue has been corrected). After April 2021, when the key was leaked to the corporate environment in the crash dump, the Storm-0558 actor was able to successfully compromise a Microsoft engineer's corporate account. This account had access to the debugging environment containing the crash dump which incorrectly contained the key. Due to log retention policies, we don't have logs with specific evidence of this exfiltration by this actor, but this was the most probable mechanism by which the actor acquired the key. That is one hell of a unique string of unfortunate events.
Cars are the worst product category we have ever reviewed for privacy
Car makers have been bragging about their cars being computers on wheels" for years to promote their advanced features. However, the conversation about what driving a computer means for its occupants' privacy hasn't really caught up. While we worried that our doorbells and watches that connect to the internet might be spying on us, car brands quietly entered the data business by turning their vehicles into powerful data-gobbling machines. Machines that, because of their all those brag-worthy bells and whistles, have an unmatched power to watch, listen, and collect information about what you do and where you go in your car. All 25 car brands we researched earned our *Privacy Not Included warning label - making cars the official worst category of products for privacy that we have ever reviewed. Much to the surprise of nobody.
Source: Google Pixel 8 will get more OS updates with longer lifespan than Samsung
While the Pixel 6 ushered in three years of major Android OS version updates and an additional two for security patches, that's still nowhere near the longevity of the iPhone. Google hopes to change that on the Pixel 8 and 8 Pro with noticeably more OS updates. Looking at the mobile Android landscape, three years of OS updates - which was also the case on Qualcomm-powered Pixel phones from 2017-2021 - is less than Samsung's promise of four, which started last year with the Galaxy S21, S22, Flip 3, and Fold 3 and continued through devices released this year, including some of the company's more affordable releases. From what we're hearing, Pixel 8's update promise should surpass Samsung's current policy on flagships and meaningfully match the iPhone. Of course, the devil is in the details, especially in those later years. For example, the Galaxy line has, in the past, adopted a quarterly approach towards the end. Even a bump to just five years of OS updates for Pixel would be enough and let the Google phone be at the top of the ecosystem, with anything beyond that squarely going after the iPhone's record. The situation has definitely been improving - finally - but I'd still like this to be platform-wide, and not just individual manufacturers making promises. To reduce e-waste, make devices more secure and ensure longer lifespans, I'd like to see 10 years of full software support. The tech industry has a long history of garbage support and low quality - especially when it comes to software - that we would not tolerate from any other industry. It's time the tech industry grew up and joined other industries that offer far longer and more comprehensive support.
China bans iPhone use for government officials at work
China ordered officials at central government agencies not to use Apple's iPhones and other foreign-branded devices for work or bring them into the office, people familiar with the matter said. In recent weeks, staff were given the instructions by their superiors in workplace chat groups or meetings, the people said. The directive is the latest step in Beijing's campaign to cut reliance on foreign technology and enhance cybersecurity, and comes amid a campaign to limit flows of sensitive information outside of China's borders. The move by Beijing could have a chilling effect for foreign brands in China, including Apple. Apple dominates the high-end smartphone market in the country and counts China as one of its biggest markets, relying on it for about 19% of its overall revenue. iPhones are, for all intents and purposes, a Chinese product. It seems odd they are afraid of a device that's entirely built by Chinese people in Chinese factories owned by Chinese companies run by the Chinese government. An iPhone is about as American as a MAGA hat with a Made in China label, so why ban its use by Chinese government officials? The answer is obvious: because the west is banning the use of Huawei and other devices - even though those are made by the same Chinese people in the same Chinese factories owned by the same Chinese companies run by the same Chinese government as iPhones are. This is a tug of war between two superpowers, and western companies heavily reliant on China, such as Apple, is going to be facing some serious consequences.
Digital Markets Act: Commission designates six gatekeepers
The European Commission has today designated, for the first time, six gatekeepers - Alphabet, Amazon, Apple, ByteDance, Meta, Microsoft - under theDigital Markets Act(DMA). In total, 22 core platform services provided by gatekeepers have been designated. The six gatekeepers will now have six months to ensure full compliance with the DMA obligations for each of their designated core platform services. Following their designation, gatekeepers now have six months to comply with the full list of do's and don'ts under the DMA, offering more choice and more freedom to end users and business users of the gatekeepers' services. However, some of the obligations will start applying as of designation, for example, the obligation to inform the Commission of any intended concentration. It is for the designated companies to ensure and demonstrate effective compliance. To this end, they have 6 months to submit a detailed compliance report in which they outline how they comply with each of the obligations of the DMA. The EC also notes that due to submissions from Apple and Microsoft arguing that iMessage and Bing, Edge, and Microsoft Advertising respectively, do not qualify to be subject to the DMA, the EC has opened four market investigations into these four services to further assess the situation. On top of that, for Gmail, Outlook.com and the Samsung Internet Browser, the EC has concluded that their owners have successfully argued they should not fall under the DMA. This is one of the biggest pieces of legislation to hit powerful corporations in a long time - especially in tech, which basically has been a wild west free-for-all regulation-wise - and it's going to have some massive consequences for all of us.
Gizmodo fires Spanish staff amid switch to AI translator
From Ars Technica: As both a translator and a tech writer, this article touches upon a lot of aspects of my professional life. As a translator with a master's degree in translation and over 13 years of experience, I can confidently say these AI-translated articles won't be anywhere near the quality of a professional translation, let alone that of original content written in Spanish. Computers are actually not that great at language, and every time I play around with machine translation tools - they tend to be integrated into the various translation software suites I use - it's barely passable as coherent text. There are things you can do to increase the success rate of machine translation. It's crucial to write the source text in a very formulaic manner, using short sentences with basic sentence structure any primary schooler can easily follow. Avoid complicated clauses, literary devices, sayings and wordplay, and words that can carry multiple meanings. To further increase the success rate, make sure your writers reuse the same formulaic sentences in different articles, so the machine translation software can learn from earlier corrections. By the time you instilled all this and more into your writing staff, not only will they quit because writing in such a way is not engaging at all, it will also tank your SEO - something the kind of people who would fire translators to rely exclusively on machine translation would care about - into the ground. It wouldn't feel natural, and nobody will enjoy reading it but computers. ...it's going to end up as AIs writing for other AIs.
Aero: a UNIX-like operating system in Rust
Speaking of operating systems written in Rust - a popular activity as of late - one of the SoC contributors to Redox is also writing their own operating system in rust, called Aero. Aero is a new modern, experimental, unix-like operating system written in Rust. Aero follows the monolithic kernel design and it is inspired by the Linux Kernel. Aero supports modern PC features such as Long Mode, 5-level paging, and SMP (multicore), to name a few. Open source, of course, licensed under the GPL, version 3.
Redox Summer of Code 2023 Wrapup
This year's Redox Summer of Code program has seen us add some exciting capabilities to Redox. Our three interns each came up with their own project proposals, and delivered major new functionality. In addition to our paid internships, our volunteer contributors also made major strides this summer. This year's projects include VirtIO drivers, the project to use Linux drivers on Redox that we talked about earlier, and on-demand paging and other memory management improvements. There's also a long list of other improvements outside of SoC.
Amiga systems programming in 2023
I've always loved building tools and platforms, and have long been fascinated with the world of operating systems. Apart from reading through the source code (where that's legally available, of course...) I think there's no better way to explore and understand a system - and the mindset that produced it - than to develop for it. What follows is a brain-dump of what I've learned about developing for the AmigaOS, both on classic 68k-powered hardware to modern PowerPC systems like the X5000. I'll cover development environments, modern workflows like CI builds on containerised infrastructure, distribution of packages and even a look back in time before C existed, thanks to AmigaDOS's odd heritage. If you want to develop for Amiga OS - and you should, because the more people develop for alternative and classic platforms, even if only as an occassional side project, the better - this is a great place to start.
Apple and Microsoft fight Brussels over ‘gatekeeper’ label for iMessage and Bing
Apple and Microsoft have argued with Brussels that some of their services are insufficiently popular to be designated as gatekeepers" under new landmark EU legislation designed to curb the power of Big Tech. Brussels' battle with the two US companies over Apple's iMessage chat app and Microsoft's Bing search engine comes ahead of Wednesday's publication of the first list of services to be regulated by the Digital Markets Act. Microsoft's argument seems to make sense. Microsoft was unlikely to dispute the designation of its Windows operating system, which dominates the PC industry, as a gatekeeper, these people said. But it has argued that Bing has a market share of just 3 per cent and further legal scrutiny would put it at a greater disadvantage. I guess the validity of Microsoft's argument hinges on if that 3% equates to the number of users requirements set by the European Union, but I guess we'll find out tomorrow. Apple's argument, though, seems more precarious. Separately, Apple argued that iMessage did not meet the threshold of user numbers at which the rules applied and therefore should not comply with obligations that include opening the service to rival apps such as Meta's WhatsApp, said the two people. Analysts have estimated that iMessage, which is built into every iPhone, iPad and Mac, has as many as 1bn users globally, but Apple has not disclosed any figures for several years. The decision is likely to hinge on how Apple and the EU define the market in which iMessage operates. One billion users worldwide is most definitely going to mean it exceeds the minimums set by the DSA. Apple, you're going to have to open up iMessage, and allow competitors and newcomers to interoperate with it. Using messaging services as lock-in is outdated, anti-consumer, and harmful to competition. And if you don't like it - as they say on the Isle of Man, a boat leaves in the morning.
Former Huawei executive claims that HarmonyOS for PC will release next year
In 2019, the US Department of Commerce put Huawei on an Entity List", which banned it from dealing with any US company. The move led Google to revoke Huawei's Android license, among other repercussions. Then, Huawei developed its own OS, HarmonyOS, for phones, tablets. Wang Chenglu, former Huawei executive and now CEO of Shenzhen Kaihong Digital Industry Development, recently revealed on Weibo (Chinese social media) that HarmonyOS will be coming to PCs. When someone had asked if a PC version of Hongmeng will be released next year, Chenglu responded with a Yes" to indicate that a HarmonyOS PC variant is planned for 2024. It is worth noting that HarmonyOS is called Hongmeng in China, and OpenHarmony for PC is available to some testers. HarmonyOS is an interesting beast in that it's much more than just a modified Android", as its Wikipedia page details. Even if it never gains a foothold in the west, its potential in China is massive, and big enough to become a serious contender regardless of what we here in the west think of it. I love the gusto of bringing it to the PC, too, and aside from reservations I have about using an operating system developed by one of the many extensions of the Chinese government, I'm actually quite interested in using one of the HarmonyOS smartphones.
SiFive’s P870 takes RISC-V further
ARM had a slow start on its way to move beyond microcontrollers and enter the high performance market. ARM Ltd made the Cortex A9, their first out-of-order core, in 2007. Throughout the 2010s, they gradually made bigger, higher power, and higher performance cores. Pushing performance boundaries isn't easy, but today, ARM's cores can be a viable alternative to Intel and AMD's offerings in the server market. RISC-V started much later, but has seen faster growth. Berkerly's BOOM core had grown into a sizeable out-of-order design by 2016. Now, SiFive's P870 looks a lot like ARM's Cortex X series in terms of reordering capacity, core width, and execution units. It might not be a match for ARM's best, since the load/store queues look a bit small and vector execution throughput is a bit weak. But from looking at P870, SiFive's ambitions are clear. They want a chunk of ARM's pie. RISC-V is getting better and better at a rapid pace. The software side of the story still has a long way to go, but that, too, is getting better. Exciting.
Is macOS’s new XProtect behavioural security preparing to golive?
A third XProtect was discovered in Ventura, this time observing potentially malicious behaviour such as attempts to access private data for browsers and messaging apps. This XProtect Behaviour Service (XBS) has used a set of Bastion rules embedded in the strings in syspolicyd to record behaviours in a new database, but so far has been an observer and hasn't blocked such behaviours. Security researchers have already been able to discover its records of novel malicious code, and Chris Long has documented how to access its database, but so far syspolicyd has only watched and recorded. Recent descriptions of Bastion rules have identified four, last updated in syspolicyd in macOS 13.5 on 24 July 2023. Those changed on 8 August, when Apple released its first update to the Bastion rules, and again a month later on 1 September, when they changed again. There's now a fifth Bastion rule, and XBS appears to be getting ready to fly for the first time. If you had told me in 2005 or so, when I was a fervent Mac user, that one day, macOS would come with an extensive set of antivirus and antimalware tools that ran silently in the background, checking everything you do on your computer - I'd have thought you were crazy. But here we are.
...20212223242526272829...