Solaris is still a thing, even though it’s now developed by a company nobody likes and seems to have lost all of the momentum among enthusiasts, so much so that I doubt anyone will even really care about this news item. Oracle released Solaris 11.4 almost three years ago, and is still updating it with monthly updates. Solaris 11.4 SRU30 is the latest one, released on 16 February. The update consists mainly of updates from upstream packages, but there seems to be little in the way of new features or big improvements. For those, we have to most likely wait until Solaris 11.5 or 12.0, if Oracle ever makes it that far with the formerly open source operating system that they closed back up.
KDE Plasma’s theming system is actually quite complex. It has many ways to be customized. It’s normal ever for expert users to not fully get how it works. I’ll try to explain how it works to the best of my knowledge. I’m pretty sure most KDE users here are more than aware of all of this stuff, but it’s still a good and concise overview for newcomers to KDE.
One of the most important tasks of the distribution packager is to ensure that the software shipped to our users is free of security vulnerabilities. While finding and fixing the vulnerable code is usually considered upstream’s responsibility, the packager needs to ensure that all these fixes reach the end users ASAP. With the aid of central package management and dynamic linking, the Linux distributions have pretty much perfected the deployment of security fixes. Ideally, fixing a vulnerable dependency is as simple as patching a single shared library via the distribution’s automated update system. Of course, this works only if the package in question is actually following good security practices. Over the years, many Linux distributions (at the very least, Debian, Fedora and Gentoo) have been fighting these bad practices with some success. However, today the times have changed. Today, for every 10 packages fixed, a completely new ecosystem emerges with the bad security practices at its central point. Go, Rust and to some extent Python are just a few examples of programming languages that have integrated the bad security practices into the very fabric of their existence, and recreated the same old problems in entirely new ways. This post explains the issue packagers run into very well – and it sure does look like these newer platforms are not very good citizens. I know this isn’t related, but this gives me the same feelings and reservations as Flatpak, Snap, and similar tools.
The first Android 12 developer preview hit the streets Thursday, and we’ve played with it for a day. There’s not a lot to see in this release—at least not at first. Most of the interesting bits are hidden, and the developer community is slowly enabling them. Many changes are half-finished alpha tweaks that will look different in the final release; after all, Google says these releases are for “testing and feedback.” This first release of Android 12 is meant to get some APIs and other changes in front of people for feedback, but it’s also designed to not spill the beans too much on what the final build of Android 12 will look like. With that in mind, many of the features in an earlier Android 12 leak seem right on the money. This public release is a sanitized build with a lot of stuff turned off, but the more we flip on hidden flags and catch hints in the documentation, the more this build looks like a solid halfway point between Android 11 and those leaked Android 12 screenshots. Ars always has great overviews of upcoming Android releases, and this one is no exception.
It’s time for an update on the OSNews Patreon, and the projects I’m working on as part of it. Almost three weeks ago I wrote about the Sunfire V245 delivered to my door, ready to be turned into an entirely impractical and loud UltraSPARC workstation. Last we left off, I had just received the unit, and was waiting on a few additional parts to get going – most importantly, a USB serial cable – which were delivered shortly. Why, then, hasn’t there been another article or update, showing the big server running? It turned out the machine wouldn’t boot properly. Together with John, the person who donated the machine to me, I’ve been trying to diagnose the problem, and after two weeks of troubleshooting, we seem to have isolated the probable cause of the problems. We think two replacement parts will address the problem, and John will be sending those over as soon as possible. I’ve kept all the logs and information I noted down during the ongoing troubleshooting process, and rest assured, I will write a summary about our steps and processes, to give you a glimpse into diagnosing a hardy and annoying problem that seems to be a moving target, yet is probably caused by a very much fixed part of the machine. Stay tuned! Moving on, I have two other Patreon projects planned. First, I accidentally ordered the wrong graphics cards for the SunFire V245 – they turned out to be incompatible, instead being designed for Sun’s AMD Opteron-based Ultra workstations. Since I’m now stuck with two identical Sun-branded NVIDIA Quadro workstation GPUs, I figured I might as well try and find a Sun Ultra 40 and see just how useful that beast of a workstation is in 2021. Sadly, as with many pieces of more exotic hardware, they are hard to find in Europe, and affordable machines from the United States come with very hefty shipping costs. I’m hoping for some luck on the old world continent here. Second, I intend to build a machine using nothing but parts from AliExpress. As most of you are probably aware, there’s a lively market of new Chinese-branded single and dual-socket Intel X79 and X99 motherboards on AliExpress. Countless other people on the web and YouTube have built machines around these motherboards, sporting used Xeon processors and RAM. This has become a pretty popular and mostly reliable and trustworthy market on AliExpress, and I want to explore if it’s worth it to build such a machine for people like us here on OSNews. It’s fun, exotic, cheap, and possibly stupid, so why wouldn’t you want to see me try? Please note that these plans are all subject to change, of course, and because they involve purchasing equipment from places like eBay and AliExpress, I cannot give any timelines or make any promises. Thanks to all of our Patreons – 56 of them already! – for making these projects possible, and if you want to help, support OSNews and become an OSNews Patreon!
The focus of this update is to support a number of new features that are useful for applications and games, and which have also been considered potential integration pain points for the Wayland driver. These are copy/paste, drag-and-drop and support for changing the display mode. Getting Wine properly supported on Wayland is a hugely important step in the move to Wayland, because thanks to Wine/Proton, gaming on Linux is massively viable. Having to use XWayland for games is not something I’m looking forward to.
A new court filing has revealed that, as part of the ongoing legal battle between Apple and Epic Games, Apple subpoenaed Valve Software in November 2020, demanding it provide huge amounts of commercial data about Steam sales and operations going over multiple years. Apple is demanding Valve – who is not a party to this lawsuit in any way, shape, or form – provide Apple with detailed data and information about, initially, every single game sold on Steam, including “names, prices, configurations and dates of every product on Steam, as well as detailed accounts of exactly how much money Steam makes and how it is all divvied-up”. Apple later scaled this down to just the top 600 games on Steam. Valve is not having any of it, of course. Valve’s argument goes on to explain to the court that it is not a competitor in the mobile space (this is, after all, a dispute that began with Fortnite on iOS), and makes the point that “Valve is not Epic, and Fortnite is not available on Steam.” It further says that Apple is using Valve as a shortcut to a huge amount of third party data that rightfully belongs to those third parties. The conclusion of Valve’s argument calls for the court to throw Apple’s subpoena out. “Somehow, in a dispute over mobile apps, a maker of PC games that does not compete in the mobile market or sell ‘apps’ is being portrayed as a key figure. It’s not. The extensive and highly confidential information Apple demands about a subset of the PC games available on Steam does not show the size or parameters of the relevant market and would be massively burdensome to pull together. Apple’s demands for further production should be rejected.” This feels weird and wrong in so many ways, so much so that it almost feels as if Apple is trying to gain insight into a massive market – PC games – that it is not a part of – yet. The amount and detailed nature of the data Apple is requesting is so bizarre and over the top, that the only logical conclusion I can draw is that Apple wants this data for potential competitive purposes, and not for legal purposes at all.
Today, we’re releasing the first Developer Preview of Android 12, the next version of Android, for your testing and feedback. With each version, we’re working to make the OS smarter, easier to use, and better performing, with privacy and security at the core. In Android 12 we’re also working to give you new tools for building great experiences for users. Starting with things like compatible media transcoding, which helps your app to work with the latest video formats if you don’t already support them, and easier copy/paste of rich content into your apps, like images and videos. We’re also adding privacy protections and optimizing performance to keep your apps responsive. As is standard practice by now, this first Developer Preview focuses mostly on under-the-hood and developer features, leaving the user-focused features for later releases.
You may have noticed that it’s kind of hard to find any new graphics card as of late, since supplies are limited for a whole variety of reasons. For the launch of its upcoming RTX 3060 GPU, which might prove to be a relatively affordable and capable upgrade for many, NVIDIA is going to try and do something about the shortage – by crippling the card’s suitability for cryptominers. RTX 3060 software drivers are designed to detect specific attributes of the Ethereum cryptocurrency mining algorithm, and limit the hash rate, or cryptocurrency mining efficiency, by around 50 percent. To address the specific needs of Ethereum mining, we’re announcing the NVIDIA CMP, or, Cryptocurrency Mining Processor, product line for professional mining. CMP products — which don’t do graphics — are sold through authorized partners and optimized for the best mining performance and efficiency. They don’t meet the specifications required of a GeForce GPU and, thus, don’t impact the availability of GeForce GPUs to gamers. It’s a good first step, I guess, but I feel the market is so starved at the moment this will be a drop in the ocean.
Today, we are introducing the next feature update to Windows 10, version 21H1. As people continue to rely on Windows more than ever to work, learn and have fun, we understand the importance of providing the best possible update experience to help people and organizations stay protected and productive. It is a responsibility we do not take lightly and why for the first time an H1 (first half of the calendar year) feature update release will be delivered in an optimized way using servicing technology, while continuing our semi-annual feature update cadence. In today’s blog I will cover details on how we plan to service the release, its scope, and next steps. Since I’ve lost track of the Windows release process and everything feels random and messy, I’m just going to say nothing at all.
If Microsoft had its way, Office 2021 probably wouldn’t be news at all—the Redmond giant would almost certainly prefer that everyone simply subscribe to Microsoft 365, pay a small monthly or annual fee, and get new features and fixes as they’re rolled out. For many if not most Office users, the subscription-based service is the most convenient way to get Office, even when they want to use it as locally installed software rather than doing their work in the browser and in the cloud. For the rest of us—and for those who don’t want to put up with the Byzantine procedures necessary to install Microsoft 365 apps on Remote Desktop Servers—there’s Office 2019 now, and there will be Office 2021 later this year. There will also be a new Office LTSC (Long Term Service Channel), which trades a 10 percent price hike for a guarantee of longer support periods… longer than the consumer version of Office 2021, that is. A new version of Microsoft Office used to be big news in the late ’90s and early 2000s. Now, with Office 365, LibreOffice, Google Docs, and several more than capable older standalone versions of Office, it feels like most people just don’t care anymore.
The KDE team has released Plasma 5.21, and this is one hell of a release. They’ve paid a lot of attention to presentation for this release, with visual improvements in both first and third party applications, including a new main menu (the old menu, as well as the basic cascading menu, are of course still available if you want them). On the application front, Plasma 5.21 introduces the System Monitor, a brand new resource and task manager that gives you all the information you’d ever need on your running system – and in true KDE fashion, it includes the ability to create your own personalised pages with just the information you need. Another big focus was Wayland: We have extensively refactored the compositing code in KWin and the changes should reduce latency throughout all compositing operations. We have also added a control in the compositing settings so you can choose whether you prefer lower latency or smoother animations. In addition, we have also added support for mixed-refresh-rate display setups on Wayland, e.g. you can have one screen refreshing at 144Hz and another at 60Hz, which is ideal for improving work-stations with multiple monitors. Preliminary support for multiple GPUs was also added on Wayland. There’s much more in this release, and I’m excited to try it out.
Go 1.16 has been released. The new embed package provides access to files embedded at compile time using the new //go:embed directive. Now it is easy to bundle supporting data files into your Go programs, making developing with Go even smoother. You can get started using the embed package documentation. Carl Johnson has also written a nice tutorial, “How to use Go embed”. Go 1.16 also adds macOS ARM64 support (also known as Apple silicon). Since Apple’s announcement of their new arm64 architecture, we have been working closely with them to ensure Go is fully supported; see our blog post “Go on ARM and Beyond” for more. More details can be found in the release notes.
Sailfish OS has moved into its fourth generation with the release of Sailfish OS 4.0.1 Koli. On a high-level Sailfish 4 includes several security and functionality updates, the long-awaited browser update, redesigned daily usage flow of key applications, as well as a rebooted developer experience. In particular we’re proud to boast full-scale OS-level Mobile Device Management (MDM) to enable easy and manageable end-to-end trusted corporate and governmental sector deployments. There are also a bunch of other new additions, including Android 9 app support, app sandboxing, and QR code scanning, along with improved notifications, events view, contact management and more.
VSI has made available OpenVMS V9.0-G for x86. This is the first x86 release of the year, and seventh overall, and it’s another good one with more functionality, VMware support, and a number of improvements. VSI also added five additional EAK testers (approaching 50 in all) and there may be a few more in the coming days. The porting process is progressing nicely.
Fortnite creator Epic Games has taken its fight against Apple to European Union antitrust regulators, escalating its dispute with the iPhone maker over its App Store payment system and control over app downloads. At this point I’m surprised it took them this long.
I normally deal with Linux machines. Linux is what I know and it’s what I’ve been using since I was in college. A friend of mine has been coaxing me into trying out FreeBSD, and I decided to try it out and see what it’s like. Here’s some details about my experience and what I’ve learned. Exactly what it says on the tin – and may I just say that the design and colour scheme of the website in question is extremely pleasant to the eyes.
Unikraft is a comprehensive toolchain and library operating system which builds highly specialized unikernels, software bundles that consist of a target application along with just the operating system primitives and libraries features it needs to run. Unikraft breaks the status quo of building unikernels manually, providing an automated toolchain that builds tailored unikernels that meet your (and your application’s) needs. We haven’t been paying a lot of attention to the concept of unikernels on OSNews, and I’m not sure why – possibly because they’re outside of the comfort one of a lot of people, including myself.
Last week, we mentioned that the extremely popular open source video player VLC is getting a brand-new interface in its upcoming 4.0 release, expected to debut later this year. VLC 4.0 isn’t ready for prime time use yet—but because the program is open source, adventurous users can grab nightly builds of it to take a peek at what’s coming. The screenshots we’re about to show come from the nightly build released last Friday—20210212-0431. VLC is an incredibly popular application, so any major user interface overhaul like this is sure to lead to a lot of bikeshedding.
Remember that story from two years ago, about how China had supposedly infiltrated the supply chain of Supermicro? The story was denied by American intelligence agencies and the CEOs of Apple and Amazon, but today, Bloomberg posted a follow-up piece with more sources, both anonymous and named, that the story was, in fact, real, and probably a lot bigger, too. The article lists several attacks that have taken place, all using hardware from Supermicro. Each of these distinct attacks had two things in common: China and Super Micro Computer Inc., a computer hardware maker in San Jose, California. They shared one other trait; U.S. spymasters discovered the manipulations but kept them largely secret as tthey tried to counter each one and learn more about China’s capabilities. Bloomberg is clearly sticking by and expanding its story, so this means it’s their and their sources’ word against that of giant corporations and American intelligence agencies, and we all know giant corporations and American intelligence agencies never lie. Right?
Submitted by 
Submitted by