Android

Virtual Machine Brings X86 Linux Apps To ARMv7 Devices 61

DeviceGuru writes Eltechs announced a virtual machine that runs 32-bit x86 Linux applications on ARMv7 hardware. The ExaGear VM implements a virtual x86 Linux container on ARMv7 computers and is claimed to be 4.5 times faster than QEMU, according to Eltechs. The VM is based on binary translation technology and requires ARMv7, which means it should run on mini-PCs and SBCs based on Cortex-A8, A7, A9, and A15 processors — but sadly, it won't run on the ARM11 (ARMv6) SoC found on the Raspberry Pi. It also does not support applications that require kernel modules. It currently requires Ubuntu (v12.04 or higher), but will soon support another, unnamed Linux distro, according to Eltechs, which is now accepting half price pre-orders without payment obligation.
Debian

Elementary OS "Freya" Beta Released 209

jjoelc (1589361) writes One year after their last release "Luna", Elementary OS (a Linux distribution with a very heavy emphasis on design and usability which draws a lot of comparisons to Mac OS X) Has released the public beta of their latest version "Freya." Using core components from Ubuntu 14.04, "Freya" sports many improvements including the usual newer kernel, better hardware support and newer libraries.Other updates include a GSignon-based online accounts system, improved searches, Grub-free uEFI booting, GTK+ 3.12, an updated theme, and much more. This being a beta, the usual warnings apply, but I would also point out that the Elementary OS Team also has over $5,000 worth of bugs still available on Bountysource which can be a great way to contribute to the project and make a little dough while you are at it.
Open Source

Ask Slashdot: What To Do About the Sorry State of FOSS Documentation? 430

First time accepted submitter TWX writes I've been out of computers as a serious home-hobby for many years and in returning I'm aghast at the state of documentation for Open Source projects. The software itself has changed significantly in the last decade, but the documentation has failed to keep pace; most of what I'm finding applies to versions long since passed or were the exact same documents from when I dropped-out of hobbyist computing years ago. Take Lightdm on Ubuntu 14.04 for example- its entire configuration file structure has been revamped, but none of the documentation for more specialized or advanced uses of Lightdm in previous versions of Ubuntu has been updated for this latest release. It's actually harder now to configure some features than it was a decade ago. TLDP is close to a decade out-of-date, fragmentation between distributions has grown to the point that answers from one distro won't readily apply to another, and web forums for even specific projects are full of questions without answers, or those that head off into completely unrelated discussion, or with snarky, "it's in the documentation, stupid!" responses. Where do you go for your FOSS documentation and self-help?
Classic Games (Games)

GOG.com Announces Linux Support 81

For years, Good Old Games has made a business out of selling classic PC game titles completely free of DRM. Today they announced that their platform now supports Linux. They said, We've put much time and effort into this project and now we've found ourselves with over 50 titles, classic and new, prepared for distribution, site infrastructure ready, support team trained and standing by ... We're still aiming to have at least 100 Linux games in the coming months, but we've decided not to delay the launch just for the sake of having a nice-looking number to show off to the press. ... Note that we've got many classic titles coming officially to Linux for the very first time, thanks to the custom builds prepared by our dedicated team of penguin tamers. ... For both native Linux versions, as well as special builds prepared by our team, GOG.com will provide distro-independent tar.gz archives and support convenient DEB installers for the two most popular Linux distributions: Ubuntu and Mint, in their current and future LTS editions.
Ubuntu

MicroxWin Creates Linux Distribution That Runs Debian/Ubuntu & Android Apps 42

An anonymous reader writes VolksPC who developed MicroXwin as a lightweight X Window Server has come up with their own Linux distribution. Setting apart VolksPC's distribution from others is that it's based on both Debian and Android and has the capability to run Debian/Ubuntu/Android apps together in a native ARM experience. The implementation doesn't depend on VNC or other similar solutions of the past that have tried to join desktop apps with mobile Android apps. This distribution is also reportedly compatible with all Android applications. The distribution is expected to begin shipping on an ARM mini-PC stick.
HP

Video HP Claims Their Moonshot System is a 'New Style of IT' (Video) 68

Didn't we already have something kind of like this called a Blade server? But this is better! An HP Web page devoted to Moonshot says, 'Compared to traditional servers, up to: 89% less energy; 80% less space; 77% less cost; and 97% less complex.' If this is all true, the world of servers is now undergoing a radical change. || A quote from another Moonshot page: "The HP Moonshot 1500 Chassis has 45 hot-pluggable servers installed and fits into 4.3U. The density comes in part from the low-energy, efficient processors. The innovative chassis design supports 45 servers, 2 network switches, and supporting components.' These are software-defined servers. HP claims they are the first ones ever, a claim that may depend on how you define "software-defined." And what software defines them? In this case, at Texas Linux Fest, it seems to be Ubuntu Linux. (Alternate Video Link)
Programming

KDE Releases Frameworks 5 87

KDE Community (3396057) writes The KDE Community is proud to announce the release of KDE Frameworks 5.0. Frameworks 5 is the next generation of KDE libraries, modularized and optimized for easy integration in Qt applications. The Frameworks offer a wide variety of commonly needed functionality in mature, peer reviewed and well tested libraries with friendly licensing terms. There are over 50 different Frameworks as part of this release providing solutions including hardware integration, file format support, additional widgets, plotting functions, spell checking and more. Many of the Frameworks are cross platform and have minimal or no extra dependencies making them easy to build and add to any Qt application. Version five of the desktop shell, Plasma, will be released soon, and packages of Plasma-next and KDE Frameworks 5 will trickle into Ubuntu Utopic over the next few days. There's a Live CD of Frameworks 5 / Plasma-next, last updated July 4th.
Opera

Opera Releases a New Version For Linux 99

motang (1266566) writes "Opera released Opera 24 for Linux. Currently it is in testing (developer) mode, and only for 64-bit Ubuntu, but hey it's a start since everyone thought Linux support was abandoned. In my test it is pretty rough around the edges, only has ambiance theme as it has been hard coded, and all the window controls are on the right and not on the left like what Unity has. But it is a start."
AMD

NVIDIA Is Better For Closed-Source Linux GPU Drivers, AMD Wins For Open-Source 185

An anonymous reader writes "Phoronix last week tested 65 graphics cards on open source drivers under Linux and the best result was generally with the open source AMD Radeon drivers. This week they put out a 35-graphics-card comparison using the proprietary AMD/NVIDIA drivers (with the other 30 cards being too old for the latest main drivers) under Ubuntu 14.04. The winner for proprietary GPU driver support on Linux was NVIDIA, which shouldn't come as much of a surprise given that Valve and other Linux game developers are frequently recommending NVIDIA graphics for their game titles while AMD Catalyst support doesn't usually come to games until later. The Radeon OpenGL performance with Catalyst had some problems, but at least its performance per Watt was respectable. Open-source fans are encouraged to use AMD hardware on Linux while those just wanting the best performance and overall experience should see NVIDIA with their binary driver."
Graphics

Testing 65 Different GPUs On Linux With Open Source Drivers 134

An anonymous reader writes "How good are open source graphics drivers in 2014 given all the Linux gaming and desktop attention? Phoronix has tested 65 different GPUs using the latest open source drivers covering Intel HD Graphics, NVIDIA GeForce, AMD Radeon, and AMD FirePro hardware. Of the 65 GPUs tested, only 50 of them had good enough open source driver support for running OpenGL games and benchmarks. Across the NVIDIA and AMD hardware were several pages of caveats with different driver issues encountered on Linux 3.15 and Mesa 10.3 loaded on Ubuntu 14.04. Intel graphics on Linux were reliable but slow while AMD's open-source Linux support was recommended over the NVIDIA support that doesn't currently allow for suitable graphics card re-clocking. Similar tests are now being done with the proprietary Linux drivers."
Open Source

Linux Mint 17 'Qiana' Released 132

New submitter Tailhook writes: "Linux Mint 17 'Qiana', a long term support edition of Linux Mint, has been released. Mint 17 is available in both MATE and Cinnamon editions. Mint 17 is derived from Ubuntu 14.04 (Trusty Tahr) and will receive security updates until April, 2019. The Cinnamon edition provides Cinnamon 2.2, with a much improved update manager, driver manager, HiDPI display support and many usability refinements. This release of Mint establishes a baseline on which the next several releases will be based: 'Until 2016 the development team won't start working on a new base and will be fully focused on this one; future versions of Linux Mint will use the same package base as Linux Mint 17, making it trivial for people to upgrade.'"
Security

Heartbleed Bug Exploited Over Extensible Authentication Protocol 44

wiredmikey (1824622) writes "While most organizations have patched the Heartbleed bug in their OpenSSL installations, a security expert has uncovered new vectors for exploiting the vulnerability, which can impact enterprise wireless networks, Android devices, and other connected devices. Dubbed 'Cupid,' the new attack method was recently presented by Portuguese security researcher Luis Grangeia, who debunked theories that Heartbleed could only be exploited over TCP connections, and after the TLS handshake. Unlike the initial Heartbleed attack, which took place on TLS connections over TCP, the Cupid attack happens on TLS connections over the Extensible Authentication Protocol (EAP), an authentication framework typically used in wireless networks and peer-to-peer connections.

The researcher has confirmed that default installations of wpa_supplicant, hostapd, and freeradius (RADIUS server implementation) can be exploited on Ubuntu if a vulnerable version of OpenSSL is utilized. Mobile devices running Android 4.1.0 and 4.1.1 also use wpa_supplicant to connect to wireless networks, so they're also affected. Everything that uses OpenSSL for EAP TLS is susceptible to Cupid attacks. While he hasn't been able to confirm it, the expert believes iPhones, iPads, OS X, other RADIUS servers besides freeradius, VoIP phones, printers, and various commercial managed wireless solutions could be affected."
Cellphones

Canonical (Nearly) Halts Development of Ubuntu For Android 55

rjmarvin (3001897) writes "In a since-removed bug report on Launchpad, Ubuntu's issue tracker, Canonical's Matthew Paul Thomas stated that Ubuntu for Android is no longer in active development. In a statement, Canonical stated that while the project is not completely dead, Canonical is currently focusing on pushing Ubuntu for Phones. The company is open to working with partners on Ubuntu for Android, but will not proceed with further U4A development unless they can form a partnership with an OEM partner to launch it. The Ubuntu for Android project was first announced in early 2012."
AMD

Mini Gaming PCs — Promising, But Not Ready 83

An anonymous reader writes "Ars has reviewed an AMD-powered mini gaming rig made by Gigabyte. The box itself is small and solid, and it runs a pretty beefy video card for its size. The manufacturer even claims Linux support, though the device ships with Windows 8.1. Unfortunately, reality lags a bit behind their plans — Ubuntu boots OK, but driver support is a mess. SteamOS won't run at all. The box is also limited by a mediocre CPU, which is itself limited by heat and power constraints. The review says the machine was 'intriguing and frustrating in equal measure' because 'its ambition is rarely matched by its execution.' It concludes: 'With some time and some different components, a little desktop that can deliver a great gaming experience will surely follow.'"
Ubuntu

Ubuntu Linux 14.04 LTS Trusty Tahr Released 179

An anonymous reader writes with this announcement: "Ubuntu Linux version 14.04 LTS (code named "Trusty Tahr") has been released and available for download. This updated version includes the Linux kernel v3.13.0-24.46, Python 3.4, Xen 4.4, Libreoffice 4.2.3, MySQL 5.6/MariaDB 5.5, Apache 2.4, PHP 5.5, improvements to AppArmor allow more fine-grained control over application, and more. The latest release of Ubuntu Server is heavily focused on supporting cloud and scale-out computing platforms such as OpenStack, Docker, and more. As part of the wider Ubuntu 14.04 release efforts the Ubuntu Touch team is proud to make the latest and greatest touch experience available to our enthusiast users and developers. You can install Ubuntu on Nexus 4 Phone (mako), Nexus 7 (2013) Tablet (flo), and Nexus 10 Tablet (manta) by following these instructions. On a hardware front, ARM multiplatform support has been added, enabling you to build a single ARM kernel image that can boot across multiple hardware platforms. Additionally, the ARM64 and Power architectures are now fully supported. See detailed release notes for more information. A quick upgrade to a newer version of Ubuntu is possible over the network."
Security

Heartbleed Disclosure Timeline Revealed 62

bennyboy64 (1437419) writes "Ever since the Heartbleed flaw in OpenSSL was made public there have been various questions about who knew what and when. The Sydney Morning Herald has done some analysis of public mailing lists and talked to those involved with disclosing the bug to get the bottom of it. The newspaper finds that Google discovered Heartbleed on or before March 21 and notified OpenSSL on April 1. Other key dates include Finnish security testing firm Codenomicon discovering the flaw independently of Google at 23:30 PDT, April 3. SuSE, Debian, FreeBSD and AltLinux all got a heads up from Red Hat about the flaw in the early hours of April 7 — a few hours before it was made public. Ubuntu, Gentoo and Chromium attempted to get a heads up by responding to an email with few details about it but didn't, as the guy at Red Hat sending the disclosure messages out in India went to bed. By the time he woke up, Codenomicon had reported the bug to OpenSSL."
Ubuntu

Video A Conversation with Ubuntu's Jono Bacon (Video) 53

You've probably heard Jono Bacon speak at a Linux or Open Source conference. Or maybe you've heard one of his podcasts or read something he's written in his job as Ubuntu's community manager or even, perhaps, read The Art of Community, which is Jono's well-regarded book about building online communities. Jono also wrote and performed the heavy metal version of Richard M. Stallman's infamous composition, The Free Software Song. An excerpt from the Jono version kicks off our interview, and the complete piece (about two minutes long) closes the video. Please note that this video is a casual talk with Jono Bacon, the person, rather than a talk with the "official" Ubuntu Jono Bacon. So please, pull up a chair, lean back, and join us. (Alternate Video Link)
Security

OpenSSL Bug Allows Attackers To Read Memory In 64k Chunks 303

Bismillah (993337) writes "A potentially very serious bug in OpenSSL 1.0.1 and 1.0.2 beta has been discovered that can leak just about any information, from keys to content. Better yet, it appears to have been introduced in 2011, and known since March 2012." Quoting the security advisory: "A missing bounds check in the handling of the TLS heartbeat extension can be used to reveal up to 64k of memory to a connected client or server." The attack may be repeated and it appears trivial to acquire the host's private key. If you were running a vulnerable release, it is even suggested that you go as far as revoking all of your keys. Distributions using OpenSSL 0.9.8 are not vulnerable (Debian Squeeze vintage). Debian Wheezy, Ubuntu 12.04.4, Centos 6.5, Fedora 18, SuSE 12.2, OpenBSD 5.4, FreeBSD 8.4, and NetBSD 5.0.2 and all following releases are vulnerable. OpenSSL released 1.0.1g today addressing the vulnerability. Debian's fix is in incoming and should hit mirrors soon, Fedora is having some trouble applying their patches, but a workaround patch to the package .spec (disabling heartbeats) is available for immediate application.
Debian

Not Just Apple: GnuTLS Bug Means Security Flaw For Major Linux Distros 144

According to an article at Ars Technica, a major security bug faces Linux users, akin to the one recently found in Apple's iOS (and which Apple has since fixed). Says the article:"The bug is the result of commands in a section of the GnuTLS code that verify the authenticity of TLS certificates, which are often known simply as X509 certificates. The coding error, which may have been present in the code since 2005, causes critical verification checks to be terminated, drawing ironic parallels to the extremely critical 'goto fail' flaw that for months put users of Apple's iOS and OS X operating systems at risk of surreptitious eavesdropping attacks. Apple developers have since patched the bug." And while Apple can readily fix a bug in its own software, at least for users who keep up on patches, "Linux" refers to a broad range of systems and vendors, rather than a single company, and the affected systems include some of the biggest names in the Linux world, like Red Hat, Debian, and Ubuntu.

Slashdot Top Deals