David Adams Archive
If you want to learn more about how to run existing Linux applications as unikernels, visit their website. If you know of someone who might be interested in being a sponsor, please let us know.
OSAlert reader Rui Caridade brought our attention to a YouTube channel with retrospectives about various computing devices from the past 40 years or so that would be interesting to our readers, such as RISCy Business – The Acorn RiscPC – ARM in a desktop, NeXTSTEP on a 486 Packard Bell, and The World’s First Laptop – Epson HX-20 / HC-20.
The idea that a bicycle might need an OS might seem silly, but 30 years ago may gearheads wouldn’t have anticipated that cars would become rolling supercomputers. Hammerhead crowdfunded its first product, the H1, and subsequently built Karoo, a “cycling computer” that supports navigation and training. But Morgan told me his ambitions are bigger than that.After all, he sees a future where electric bikes need smart range projections, where bike-share fleets need to be managed, where social training programs like Strava can pull data from the bike itself and where any bicycle should come with theft and crash alerts. Calling it an OS is probably a stretch. It seems to be an Android OS with cycling-specific constellation of apps, originally designed specifically for their own hardware but eventually intended to be licensed to other vendors.
David Balaban says, “There are plenty of operating systems aimed at achieving online anonymity. But how many of them are really good?” He highlights five candidates: Tails OS, Whonix, Kodachi, Qubes, and Subgraph. He concludes that Kodachi is the best OS to preserve anonymity. Have any OSAlert readers evaluated any of these OSes? Do you agree with his conclusion?
PureOS has laid the foundation for future applications to run on both the Librem 5 phone and Librem laptops, from the same PureOS release, in contrast, they say, to Google and Apple’s ecosystems which still have separate OSes for mobile and desktop. Now, Google and Apple seem to be intent on converging their mobile and desktop platforms, leading to fear and consternation from desktop OS power users, who assume that the move will dumb down desktop OSes. While this technical aspects of the PureOS team’s accomplishment are interesting and laudable, I’d suspect that the bigger challenge for any mainstream platform will actually be a user experience challenge, especially bridging familiar UI elements between mobile and desktop user environments.
Security researchers at the Network and Distributed Systems Security Symposium in San Diego are announcing the results of some fascinating research they’ve been working on. They “built a fake network card that is capable of interacting with the operating system in the same way as a real one” and discovered that Such ports offer very privileged, low-level, direct memory access (DMA), which gives peripherals much more privilege than regular USB devices. If no defences are used on the host, an attacker has unrestricted memory access, and can completely take control of a target computer: they can steal passwords, banking logins, encryption keys, browser sessions and private files, and they can also inject malicious software that can run anywhere in the system. Vendors have been gradually improving firmware and taking other steps to mitigate these vulnerabilities, but the same features that make Thunderbolt so useful also make them a much more serious attack vector than USB ever was. You may want to consider ways to disable your Thunderbolt drivers unless you can be sure that you can prevent physical access to your machine.
We’re very grateful to this week’s (and our inaugural) sponsor: OPS is a new free open source tool that allows anyone including non-developers to run existing Linux applications as unikernels. Long predicted to be the next generation of cloud infrastructure, unikernels have remained inaccessible to developers because of their low level nature. OPS fixes that. Please visit their website to learn more: https://ops.city
Responding to a forum post on upcoming ARM server offerings, Linus Torvalds makes a compelling case for why Linux and x86 completely overwhelmed commercial Unix and RISC: Guys, do you really not understand why x86 took over the server market? It wasn’t just all price. It was literally this “develop at home” issue. Thousands of small companies ended up having random small internal workloads where it was easy to just get a random whitebox PC and run some silly small thing on it yourself. Then as the workload expanded, it became a “real server”. And then once that thing expanded, suddenly it made a whole lot of sense to let somebody else manage the hardware and hosting, and the cloud took over.
When we re-launched the site at the beginning of the year, I mentioned that I’d considered shuttering OSAlert as a response to needing such a major overhaul, since conventional advertising was no longer sufficient for covering expenses. A few weeks ago, I decided to experiment with offering a sponsorship, wherein a patron pays a fee to be the exclusive sponsor of the site for a week. It was all just a pipe dream until someone agreed last week to be our first sponsor. So we’re cautiously optimistic that this may be a viable way to keep the site running and maybe even expand. It won’t work, though, unless we can fill our pipeline with sponsors. I doubt we’ll be able to do that just by putting up a shingle and hoping people contact us. So I wanted to reach out to you, beloved readers, to see if you could help. If you know someone, maybe your employer, who offers a product or service that might be interesting to OSAlert readers, see if they’ll be willing to sponsor the site. We’re open to ideas on how to structure the sponsorship program. If you were to sponsor the site, what would you want to get in exchange for your money? We’d love feedback on the terms of the sponsorship. Do you know of any ways that we might be able to publicize the availability of sponsorships? Would you be interested in acting as a salesperson and reaching out to firms to solicit sponsorships? Let me know. And finally, sponsorships will be desirable if OSAlert itself is popular and vibrant. You can do your part by reading the site, commenting, submitting news, and contacting us if you’re interested in writing a feature.
K2 is an academic project OS developed out of the Rice University Efficient Computing Group. Its stated purpose is: “Modern mobile System-on-chip(SoC) often embraces heterogeneous cores that are hosted in separate coherence domains, i.e. no hardware coherence among them. This architecture promises high energy efficiency, however complicates software development, thus preventing the energy efficiency from being harvested by software.” Learn more here.
EmuTOS is designed to run on traditional Atari hardware (ST, TT, Falcon, based on Motorola 68000 or ColdFire microprocessors) and their emulators. It features functionality similar to TOS, which powered the Atari ST and its successors between 1985 and 1994. EmuTOS can run on real hardware, either as ROM replacement or from floppy, or on any Atari emulator such as ARAnyM, Hatari, or Steem SSE. EmuTOS is Free Software, and can run legacy third-party software on emulators without requiring copyrighted Atari ROMs, thereby avoiding legal issues.
Windows 7, released in July of 2009, was a gigantic leap forward in the evolution of the desktop OS. Good enough, it turns out, that a huge number of people and organizations are still using it, despite it being nearly ten years since its release. Back in February, Statscounter proclaimed that according to its analytics, Windows 10 had finally overtaken 7 in marketshare. But these kinds of measurements are never exact. They’re based on counting users that connect to various constellations of sites and services, so there’s going to be some variation depending on who’s counting.
Regular readers will have noticed that we’ve been offline for several days. As you can see, during that time, we’ve made some major changes to the site, and though the design has changed substantially, we’ve made even more dramatic changes in the back-end. We are now running our 6th major iteration of OSAlert. It all was precipitated by messages from readers we’ve received over the past few weeks alerting us that they’ve been getting spam, phishing attempts, and some weak-sauce cyber-extortion emails at addresses that were unique to their OSAlert accounts. Read on for more.
One of the chief annoyances of Apple's closed ecosystem is the limited ability to move files to and from your device using iTunes. Utilities that open up file management have been available for ages, but generally cost money, so stingy people like me just make do with iTunes. To commemorate the iPhone 10 year anniversary, MacX is offering OSAlert readers a
free license to their MediaTrans tool (in exchange for your email address). It's good for moving files of various types, backup, and removing media DRM. If any OSAlert readers can recommend other options for working around Apple's restrictions and managing files on their iOS devices, I'd love to read about them in the comments.
AT&T has a
YouTube channel, where a few times a week they post old videos from the glory days. A few years ago, they posted a cool video from 1982 called
The UNIX System: Making Computers More Productive. It's worth a watch. There's lots of other gems on the channel. For example, how about an
interview with Arthur C Clarke from 1976?
Relive the glory of 80's 8-bit computing! This is a
full-featured emulator of a TRS-80 Model III microcomputer. It is free of charge and all source code is publicly available.
Facebook CEO Mark Zuckerberg is living at least a few years out ahead of anyone reading this post -- the founding executive told an audience in Rome (via Verge) today that he hopes to demonstrate his home’s artificial intelligence system, which controls things like air conditioning, lighting and more based on things like face and voice recognition.
The TechCrunch article is light on detail, but this project may be more interesting than it sounds at first blush. Zuckerberg isn't the first tech billionaire to sink a bunch of money into a fancy home automation project. Bill Gates famously did the same a couple of decades ago. High end homes all over the world have fancy and expensive home control systems, that provide their rich owners with frustration and hassle and absolutely confound houseguests. But these days, for a few hundred dollars, anyone can buy an Amazon Echo, any one of half a dozen automation hubs, and various switches, thermostats, and lightbulbs, and create a pretty nifty and convenient voice controlled home automation and entertainment system. Someone with the vision and the development budget that Mark Zuckerberg has at his disposal should be able, with readily available, inexpensive hardware, create something pretty amazing.
Submitted by Bryan Vermotte
2016-08-29
Games
Computing old timers remember a world where computer games were decidedly lo fi. Linux Links has a list of the 21 best open source
ASCII games, with screenshots and descriptions, for your nostalgic pleasure.
It's pretty much a given that the
primary announcement will be the iPhone 7, reportedly with no analog headphone jack, possibly no physical home button, and hopefully with 32 GB storage in the base configuration. According to the rumor mill, the primary technological advance for the new iPhone will be a new camera system. There's some speculation that a new Apple Watch will be announced, but in my opinion what the Apple watch needs most is better software (upcoming in the WatchOS 3 release). The Watch has been pretty satisfying as a gadget, but ultimately disappointing as a platform, and a new hardware version is unlikely to reverse that trend. Many Mac fans are hoping that a new Macbook Pro will be announced, but there doesn't seem to be any concrete evidence of that, other than the fact that it's been so long since the last real MPB redesign. The rumors are based, I suspect, on wishful thinking. However, if Apple releases an updated Macbook Pro with an OLED touchscreen and Intel Skylake, people would be lining up to buy them. Apple's custom is to make its primary OS announcements at WWDC and focus on new devices in the fall, but I'm sure we'll get a bit of an update on iOS 10 and possibly WatchOS3.
Researchers discovered that a Transmission Control Protocol (TCP) specification implemented in Linux creates a vulnerability that can be exploited to terminate connections and conduct data injection attacks.
The flaw, tracked as CVE-2016-5696, is related to a feature described in RFC 5961, which should make it more difficult to launch off-path TCP spoofing attacks. The specification was formulated in 2010, but it has not been fully implemented in Windows, Mac OS X, and FreeBSD-based operating systems. However, the feature has been implemented in the Linux kernel since version 3.6, released in 2012.
A team of researchers from the University of California, Riverside and the U.S. Army Research Laboratory identified an attack method that allows a blind, off-path attacker to intercept TCP-based connections between two hosts on the Internet.
Researchers noted that data cannot be injected into HTTPS communications, but the connection can still be terminated using this method. One attack scenario described by the experts involves targeting Tor by disrupting connections between certain relays so that users are forced to use attacker-controlled exit relays.
Submitted by