Monthly Archive:: January 2018

I used an Apple IIe computer throughout high school and into my second year in college, before I bought a Mac SE. That following summer I sold the Apple IIe and everything that came with it - the monitor, floppy drives, and dot-matrix printer - and pocketed the cash. What I was left with were two boxes containing two dozen 5.25-inch floppy disks.

I could've thrown the disks away - I had already transferred all the files I cared about to the Mac. But for some reason I saved them instead. And the two dozen floppy disks stayed in two battered boxes for the next 27 years.

Apple designed the iOS platform with security at its core. When we set out to create the best possible mobile platform, we drew from decades of experience to build an entirely new architecture. We thought about the security hazards of the desktop environment, and established a new approach to security in the design of iOS. We developed and incorporated innovative features that tighten mobile security and protect the entire system by default. As a result, iOS is a major leap forward in security for mobile devices.

This document provides details about how security technology and features are implemented within the iOS platform. It will also help organizations combine iOS platform security technology and features with their own policies and procedures to meet their specific security needs.

Gamers of a certain age probably remember that Nintendo worked with Maxis to port a version of the seminal SimCity to the brand-new SNES in 1991. What most gamers probably don't realize is that an NES version of the game was developed at the same time and cancelled just before its planned release.

That version of the game was considered lost for decades until two prototype cartridges surfaced in the collecting community last year. One of those prototypes has now been obtained and preserved by the Video Game History Foundation's (VGHF's) Frank Cifaldi, who demonstrated the emulated ROM publicly for the first time at MAGFest last weekend.

The firm is called Guizhou-Cloud Big Data (GCBD). It's based in Guizhou Province and supervised by a board ran by government-owned businesses. In emails to mainland Chinese customers, Apple says that the move enables "us to continue improving the speed and reliability of iCloud and to comply with Chinese regulations."

But there's also the chance that closer ties with the Chinese government might mean more regulation, which Apple has a record of abiding closely to in the past. Last July, Apple deleted VPN apps from the App Store that had helped netizens evade Chinese censorship, "because it includes content that is illegal in China." Those who aren't happy with the move at least have the option of closing their iCloud accounts.

The Gemini is a clamshell Android device with an 18:9 ultrawide 1080p screen and a compact but more-or-less full physical keyboard. It runs on a 10-core MediaTek Helio X27 processor and has 4GB of RAM, a 4,220mAh battery, and two USB-C ports. It’s 15.1mm thick when closed and weighs 308g. There are both Wi-Fi-only and LTE-capable models. The software is pretty much stock Android with a useful customized dock that can be brought up anywhere, and you can also dual-boot into Linux for more customization.

Last week the technology industry and many of our customers learned of new vulnerabilities in the hardware chips that power phones, PCs and servers. We (and others in the industry) had learned of this vulnerability under nondisclosure agreement several months ago and immediately began developing engineering mitigations and updating our cloud infrastructure. In this blog, I'll describe the discovered vulnerabilities as clearly as I can, discuss what customers can do to help keep themselves safe, and share what we've learned so far about performance impacts.

What is the oldest x86 processor that is still supported by a modern Linux kernel in present time?

I asked the above quiz question during the Geekcamp tech conference in Nov 2017 during my emcee role. The theoretical answer as you can glean from the title of this post is the 486 which was first released in 1989. I determined that fact from this article where support for the 386 was dropped in Dec 2012.

To get you interested, here is the result of my effort.

IBM's vacuum tube computers of the 1950s were built from pluggable modules, each holding eight tubes and the associated components. I recently came across one of these modules so I studied its circuitry. This particular module implements five contact debouncing circuits, used to clean up input from a key or relay. When you press a key, the metal contacts tend to bounce a bit before closing, so you end up with multiple open/closed signals, rather than a nice, clean signal. The signal needs to be "debounced" to remove the extra transitions before being processed by a computer.

I'm travelling around the world and sometimes I don't have very good Internet. If all I have is a 3kbps connection tethered from my phone then it's good to SSH into my server and browse the web through elinks. That way my server downloads the web pages and uses the limited bandwidth of my SSH connection to display the result. But it lacks JS support and all that other modern HTML5 goodness. Texttop is simply a way to have the power of a remote server running a desktop, but interfaced through the simplicity of a terminal and very low bandwidth.

Why not VNC? Well VNC is certainly one solution but it doesn't quite have the same ability to deal with extremely bad Internet. Texttop uses MoSH to further reduce the bandwidth and stability requirements of the connection. Mosh offers features like automatic reconnection of dropped connections and diff-only screen updates. Also, other than SSH or MoSH, Texttop doesn't require a client like VNC. But of course another big reason for Texttop is that it's just very cool geekery.

We've been archiving a bunch of old Xerox Alto disk packs from the 1970s. A few of them turned out to be password-protected, so I needed to figure out how to get around the password protection. I've developed a way to disable password protection, as well as a program to find the password instantly.

The Project Zero researcher, Jann Horn, demonstrated that malicious actors could take advantage of speculative execution to read system memory that should have been inaccessible. For example, an unauthorized party may read sensitive information in the system’s memory such as passwords, encryption keys, or sensitive information open in applications. Testing also showed that an attack running on one virtual machine was able to access the physical memory of the host machine, and through that, gain read-access to the memory of a different virtual machine on the same host.

These vulnerabilities affect many CPUs, including those from AMD, ARM, and Intel, as well as the devices and operating systems running them.

Recent reports that these exploits are caused by a "bug" or a "flaw" and are unique to Intel products are incorrect. Based on the analysis to date, many types of computing devices - with many different vendors' processors and operating systems - are susceptible to these exploits.

Intel is committed to product and customer security and is working closely with many other technology companies, including AMD, ARM Holdings and several operating system vendors, to develop an industry-wide approach to resolve this issue promptly and constructively. Intel has begun providing software and firmware updates to mitigate these exploits. Contrary to some reports, any performance impacts are workload-dependent, and, for the average computer user, should not be significant and will be mitigated over time.

A fundamental design flaw in Intel's processor chips has forced a significant redesign of the Linux and Windows kernels to defang the chip-level security bug.

Programmers are scrambling to overhaul the open-source Linux kernel's virtual memory system. Meanwhile, Microsoft is expected to publicly introduce the necessary changes to its Windows operating system in an upcoming Patch Tuesday: these changes were seeded to beta testers running fast-ring Windows Insider builds in November and December.

Crucially, these updates to both Linux and Windows will incur a performance hit on Intel products. The effects are still being benchmarked, however we're looking at a ballpark figure of five to 30 per cent slow down, depending on the task and the processor model. More recent Intel chips have features - such as PCID - to reduce the performance hit.

In October of 2017 I found a really nice accelerator card on Ebay for my stock Amiga 1000 - the Blizzard Turbo Memory Board. My original thought was I would install it into my 1000 and lose the side-car RAM expansions to regain some valuable desk space. Plus - 8MB? That’s gobs for the work I personally do on my Amigas. It was originally designed for the Amiga 500 or 2000 and additionally gave a modest speed boost of 14 Mhz. From my personal experience, 7 Mhz is plenty for the vast majority of Amiga games and software. However in some rare cases 14, 25 or even 40 Mhz can greatly improve the user experience with some math-intensive games and software. This little board seemed the perfect fit for my 1000’s needs.

I then got to talking to the seller on Ebay who was based in Australia. After a short amount of time I came to learn that he had in his possession an ultra-rare Phoenix board, too. Within a few days, money was exchanged and the Phoenix began its long journey from Australia to Seattle, Washington.