Twitter
Home Blog Page 402

Building Open Source Security into DevOps

By
Infosecurity
-

DevOps is a philosophy of IT operations that binds the development of services and their delivery to the core principles of W. Edwards Deming’s points on Quality Management. When applied to software development and IT organizations, Deming’s principles seek to improve the overall quality of software systems as a whole.

This is done in part by decomposing the system into manageable components, which can be owned by teams. These teams have the freedom to quickly resolve any issues that might prevent the system from operating properly.

By creating a sense of pride and ownership in the delivered system, any issues discovered can be quickly resolved. This method increases the overall health of the system, which has led to the rise of Continuous Integration (CI) and Continuous Delivery (CD) as defining attributes of DevOps. 

Read more at Infosecurity

Hands-On: Installing Five Different Linux Distributions on my New HP Laptop

By
ZDNet
-

I’ve just picked up a new laptop, and I have to say at first glance, it looks like a real beauty. It’s an HP 15-bs166nz, which I got at one of the large electronic chains here in Switzerland for CHF 649.- (approximately £500 / €560 / $685). That’s supposedly half-price, if you believe their list prices. It’s a bit difficult to judge, really, because HP makes so many different models with similar numbers but very different configurations, but after digging around on this one for a while I decided it is a very good price for this configuration.

I have stayed away from HP laptops for several years now, because of how difficult it was to manage and configure their UEFI firmware to boot Linux. So that will be one of the major things I will be interested in looking at on this one.

Read more at ZDNet

Kali Linux Ethical Hacking OS Is Now Available in the Windows 10 Store for WSL

By
Softpedia
-

At the request of the community, Microsoft made it possible to download and install Kali Linux directly from the Windows 10 Store on its Windows Subsystem for Linux (WSL) feature, which needs to be enabled on your Windows 10 machine before attempting to run Kali Linux (see the instructions below).

“Were excited to announce that you can now download & install Kali Linux via the Windows Store,” said Tara Raj, Program Manager at Microsoft. “Our community expressed great interest in bringing Kali Linux to WSL in response to a blog post on Kali Linux on WSL. We are happy to officially introduce Kali Linux on WSL.”

Read more at Softpedia

License Scanning and Compliance for FOSS Projects: A Free Publication

By
Linux.com Editorial Staff
-

Modern open source projects rarely consist solely of all new code, written entirely from scratch. More often, they are built from many sources. And, each of these original sources may operate under a particular license – which may also differ from the license that the new project uses.

license scanning and complianceA new publication, called License Scanning and Compliance Programs for FOSS Projects, aims to clarify and simplify this process. This paper, written by Steve Winslow from The Linux Foundation, describes the benefits of license scanning and compliance for open source projects, together with recommendations for how to incorporate scanning and compliance into a new or existing project.

Read more at The Linux Foundation

The Decentralized Internet Is Here, With Some Glitches

By
Wired
-

Proponents as varied as privacy activists and marquee venture capitalists talk about the decentralized internet as a kind of digital Garden of Eden that can restore the freedom and good will of the internet’s early days. The argument goes that big tech companies have locked up our data and minds inside stockholder-serving platforms that crush competition and privacy. Ultra-private, socially conscious decentralized apps, sometimes dubbed DApps, will give us back control of our data, and let startups slay giants once more.

“The best entrepreneurs, developers, and investors have become wary of building on top of centralized platforms,” Chris Dixon, a partner with investor Andreessen Horowitz wrote last month, in a kind of manifesto for a more decentralized internet. Tim Berners-Lee, the inventor of the World Wide Web has similar concerns. Graphite Docs and some other early DApps are far from perfect, but show there’s something to the hype. A life less dependent on cloud giants is possible, if not yet easy.

Read more at Wired

The Engine of HPC and Machine Learning

By
The Next Platform
-

There is no question right now that if you have a big computing job in either high performance computing – the colloquial name for traditional massively parallel simulation and modeling applications – or in machine learning – the set of statistical analysis routines with feedback loops that can do identification and transformation tasks that used to be solely the realm of humans – then an Nvidia GPU accelerator is the engine of choice to run that work at the best efficiency.

It is usually difficult to make such clean proclamations in the IT industry, with so many different kinds of compute available. But Nvidia is in a unique position, and one that it has earned through more than a decade of intense engineering, where it really does not have effective competition in the compute areas where it plays.

Parallel routines written in C, C++, or Fortran were offloaded from CPUs to GPUs in the first place because the CPUs did not have sufficient memory bandwidth to handle these routines. 

Read more at The Next Platform

Eliminating Storage Failures in the Cloud

By
ZDNet
-

With the advent of disk mirroring over 35 years ago, data redundancy has been the basic strategy against data loss. That redundancy was extended in the replicated state machine (RSM) clusters popularized by cloud vendors in early aughts, and widely used today in scale-out systems of all types.

The idea behind RSM is that running on many servers, with the same intial state, and the same sequence of inputs, will produce the same outputs. That output will always be correct and available if a majority of the servers are functional. A consensus algorithm, such as Paxos, ensures that the state machine logs are kept in sync.

At Usenix FAST ’18 conference, Ramnatthan Altagappan et. al. presented the paper Protocol-Aware Recovery for Consensus-Based Storage that introduced a new approach to correctly recover from RSM storage faults. They call it corruption-tolerant replication, or CTRL.

Read more at ZDNet

This Week in Open Source: Containers Could Bring Linux Apps to Chrome, New Network Edge Project Via Linux Foundation

By
The Linux Foundation
-

This week in open source news, a new project from The Linux Foundation has been announced to create an open source software stack for network edge & much more! Read on for the top Linux and open source news of the week:

This move “could make Chrome OS a more powerful tool for developers and enterprises.”

Why Containers Could Finally Bring Linux Apps to Chrome OS– TechRepublic

The Linux Foundation has announced a new open source project “intended to create an open source software stack to support high-availability cloud services that are optimized for edge computing systems and applications.”

Linux Foundation Continues to Help Shape Telecoms Industry– ITWeb

This article outlines how you can get in on the active blockchain job market with training like The Linux Foundation’s FREE edX MOOC:

The Blockchain Market is Hot; Here’s How to Learn the Skills For It– ComputerWorld

Microsoft has “released an update that adds support for quantum development on macOS and Linux.”

Microsoft Brings its Quantum Dev Kit to MacOS, Linux; New Kind of Qubit This Year– ars Technica

“The company’s CTO of Data spoke with ZDNet about the growing importance of open source, given Microsoft now finds itself as one of the biggest contributors.”

Why Open Source is So Important to Microsoft– ZDNet

Hot Chips Face Off at MWC and Embedded World

By
Eric Brown
-

This week’s Mobile World Congress in Barcelona and Embedded World in Nuremberg are primarily designed to showcase smartphones and embedded systems, respectively. Yet, increasingly the shows are focused on the processors that drive them.

The only major chip announced in conjunction with this week’s conferences was Intel’s Stratix 10 TX FPGA, which is also the only chip covered here that doesn’t run Linux. Several other processors were announced earlier in the month, including AMD’s Ryzen Embedded V1000 and Epyc Embedded 3000. Meanwhile, new details were leaked about Intel’s 10nm Cannon Lake and Ice Lake chips, as well as some new 8th-Gen “Coffee Lake” models.    

We’ll start here with the AMD and Intel announcements before examining two previously announced ARM SoCs that loomed large at this week’s conferences. At MWC, the hot smartphone SoC was the Qualcomm Snapdragon 845, and at Embedded World there were several new products running NXP’s newly shipping i.MX8M. There was also plenty of speculation about the impact of Qualcomm’s impending acquisition of NXP, and whether the resulting valuation will make the merged entity too large for Broadcom to swallow.

AI chips pop into phones

This week’s conferences also saw some new developments in AI coprocessors. With the Snapdragon 845, Qualcomm has followed the lead of Huawei’s competing Kirin 970 smartphone SoC in integrating neural processing chips to accelerate AI operations. As a result, AI developers will soon be able to compare Huawei’s 970-based Mate 10 Pro phone with 845-based phones like the Samsung Galaxy S9.

In mid-February, Arm announced two new Project Trillium AI chip designs. Available now is Arm’s second-gen Object Detection (OD) Processor for optimizing visual processing and people/object detection. Due this summer is a Machine Learning (ML) Processor, which will accelerate AI applications including machine translation and face recognition. The Arm OD and ML, which use an entirely new computer architecture, could debut as coprocessors in mobile devices (ML) and other embedded systems (OD) by next year’s MWC.

Intel, meanwhile, announced an Intel AI: In Production program for its Movidius Neural Compute Stick based on its Linux-friendly Myriad 2 VPU technology. The program aims to ease the development of AI prototypes with the help of technologies such as an upcoming, mini-PCIe based “AI Core” board from Aaeon’s UP board community.

Sign up for ELC/OpenIoT Summit updates to get the latest information:

Intel Stratix 10 TX

This week, Intel’s Altera unit announced (and shipped) the Stratix 10 TX FPGA, featuring 58Gbps transceivers. The FPGA is designed for 4G and 5G base stations, network function virtualization, and other high-end networking equipment.

The Stratix 10 TX does not run Linux, but similar technology may appear in a future successor to the Linux-ready ARM/FPGA hybrid Stratix 10 SX. The 14nm fabricated SX and FPGA-only Stratix 10 GX and MX models were announced back in 2013, and then formally launched in Oct. 2016. Yet, the 1.5GHz, quad- A53 Stratix 10 SX didn’t ship until last October. The SX, which incorporates a Stratix V FPGA, competes with Xylinx’s similarly Linux-friendly, quad Cortex-A53 driven Xilinx Zynq UltraScale+ MPSoC ARM/FPGA hybrid.

The new Stratix 10 TX provides up to 144 transceiver lanes with data rates of up to 58Gbps using the new PAM4 (pulse amplitude modulation 4) and older 30G NRZ (non-return-to-zero) technologies. This dual-mode approach enables unprecedented aggregation capability for scaling to “100G, 200G and 400G delivery speeds,” claims Intel.

The FPGA taps an Intel “2.5D” packaging technology called EMIB (Embedded Multi-die Interconnect Bridge), which enables the integration of up to six “chiplets” in a single package. As a result, the Stratix 10 TX will be available in versions ranging from dual 600k logic element chiplets to six 2.8 million element chiplets.

Intel’s new “Coffee Lake” CPUs and Cannon Lake and Ice Lake leaks

Intel launched its first round of 8th-Gen Kaby Lake Refresh “Coffee Lake” chips back in September, and now several new models have broken cover.

This fourth generation of its 14nm fabricated Core chips — following Broadwell, Skylake, and Kaby Lake — offers relatively modest performance and power efficiency improvements. However, the U-series chips used in new Linux-based laptops from System76 and ZaReason provide slightly faster quad- instead of dual-core designs with the same price and 15W TDP as 7th-Gen models, delivering greater performance and power efficiency when running hyperthread-intensive applications. There are also some high-end models tuned to gaming, as well as the first hexa-core Core i5 and first quad-core Core i3 models.

On Feb. 28, Geekbench benchmarks were posted showing an unannounced hexa-core, 12-thread Core i7-8750H Coffee Lake chip clocked at 2.2GHz/4.09GHz. Earlier this week, a YouTube video was posted showing a purported 3DMark database document that revealed details about another Coffee Lake chip, as well as Intel’s upcoming 10nm Cannon Lake and Ice Lake CPUs.

The YouTube-leaked Coffee Lake-U Core i7-8559U chip has four cores and eight threads, and clocks to 2.7GHz, compared to a high of 1.9GHz for the fastest current Kaby Lake-U chip: the i7-8650U. The chip also offers the best graphics (Iris Plus Graphics 650) found on 8th-Gen chips to date. According to speculation from NotebookCheck, it will run at about 28W.

The video also showed a previously leaked, hexa-core Core i7-8670 8th-Gen part. Other Coffee Lake variants were leaked in mid-February, along with a Xeon-like Cascade Lake chip family expected to arrive in Q3.

The 10nm Cannon Lake and Ice Lake chips, meanwhile, are not only expected to offer major performance and efficiency gains but also to fix Intel’s Spectre and Meltdown vulnerabilities. (If so, that might put a crimp on Coffee Lake sales.)

The YouTube video showed a 2.4GHz Ice Lake-U CPU with four cores and eight threads and high-end Gen11 graphics, which are speculated to run at 15W. The video also showed a mobile/embedded oriented, dual-core, quad-threaded Cannon Lake Y chip clocked to 1.1GHz with basic Intel UHD graphics. V3 has speculated it will have an Intel Atom-like 4.5W TDP.

This appears to be the same dual-core Cannon Lake chip that Intel let slip in a microcode update in mid-February before quickly deleting the post. The document also listed a headless version of the chip without a GPU.

AMD Ryzen Embedded 1000 and Epyc Embedded 3000

Last week, AMD announced two embedded processors that borrow the 14nm Zen core from last year’s Ryzen desktop and Epyc 7000 server processors. The big news was the arrival of the Ryzen Embedded 1000, the successor to AMD’s R-Series “Merlin Falcon” — a high-end embedded SoC line that competed with lower end Intel Core chips. There was no word about an expected, Zen-based “Banded Kestrel” successor to the G-Series SoC, which competed with the lower-end Intel Atom.

Claimed to be up to twice as fast as the single-threaded R-Series, the single- or dual-threaded Ryzen Embedded V1000 is competitive with higher end Core CPUs than Merlin Falcon. It offers up to four Zen CPU cores for eight threads, with up to 3.75GHz burst. TDPs range from 12 to 54 Watts.

Perhaps even more impressive than the Zen-based CPU is the V1000’s Radeon Vega graphics (borrowed from the mainstream Ryzen), which offers up to 11 compute units. The Vega GPU supports DirectX 12 and OpenGL 4.4, as well as 10-bit HDR decoding, and it can generate four 4K displays simultaneously. Vendors including Advantech, Congatec, iBase, Esaote, Seco, Quixant, and more have announced boards or systems based on the SoC.

AMD also announced a headless Epyc Embedded 3000 processor aimed at high-end embedded edge systems and low-end storage and networking servers. Roughly comparable to Intel’s Xeon-D, this scaled down version of the Epyc 7000 offers four to 16 cores in single or multi-threading versions with 30W to 100W TDPs. The Epyc 3000 supports up to 64 PCIe slots, eight 10GbE ports, and 16 SATA ports.

Qualcomm Snapdragon 845

Announced in December, the Snapdragon 845 enjoyed a coming out party at MWC. Several phones driven by the SoC were unveiled or leaked, including Samsung’s Galaxy S9, Sony’s Xperia XZ2, and Xiaomi’s Mi Mix 2S.  In addition, Intrinsyc launched an Android 8.0 driven Open-Q 845 development kit.

Qualcomm’s Snapdragon 845 is claimed to offer up to 25 percent faster CPU performance compared to the similarly octa-core Snapdragon 835. Like the 835, the 845 features 10nm FinFET fabricated “Kryo” CPU cores. However, it uses a more efficient 10LPP process for improved performance and reduced power draw. The CPU is evenly split between Kryo cores that approximate Arm’s latest Cortex-A75 and lower-end Cortex-A55 architectures, which clock to 2.8GHz and 1.8GHz, respectively.

The Snapdragon 845 is the first SoC to implement Arm’s DynamIQ. This more flexible version of Arm’s Big.Little multi-core scheme should enable further performance gains.

The Snapdragon 845’s new Qualcomm Adreno 630 GPU is claimed to offer 30 percent faster graphics and 30 percent less power draw than the 835’s Adreno 540. The GPU also includes new “eXtended Reality” (XR) technology that can drive dual 2400×2400 @ 120Hz displays on VR headsets. Among many other improvements, the Snapdragon 845 supplies a new Hexagon 685 DSP with a Neural Processing Engine for accelerating AI operations.

NXP i.MX8M

NXP’s quad-core, Cortex-A53 i.MX8M successor to the ubiquitous quad -A9 i.MX6 SoC was announced back in Oct. 2016 and is now appearing in products. NXP’s intervening i.MX7 and lower-end i.MX UL are significant for lower-end IoT devices, but it will be the i.MX8M that will likely carry on the i.MX6 tradition of being the industry’s mainstream embedded Linux SoC.

The up to 1.5GHz, dual- or quad-core i.MX8M integrates a Vivante GC7000Lite GPU and VPU, enabling 4K HEVC/H265, H264, and VP9 video decoding with HDR. There’s also a 266MHz Cortex-M4 MCU and a security subsystem.

Several new computer-on-modules based on the i.MX8M were announced at Embedded World by Emcraft, Innocomm, and Seco. Also new is the armStone MX8M Pico-ITX SBC from F&S.

These boards join the previously announced, open source Wand-Pi-8M SBC from Technexion and its Wandboard.org community, which is due in the second quarter. Other earlier announcements include Compulab’s SBC-iMX8 Evaluation Kit and CL-SOM-iMX8 module, and Variscite’s recently shipping DART-MX8M module and sandwich-style VAR-DT8MCustomBoard SBC.

Registration is now open for the Embedded Linux Conference and OpenIoT Summit, to be held Mar. 12-14 at the Hilton Portland in Portland, OR. Linux.com readers can register now with discount code, LINUXRD5, for 5% off the attendee registration.

Namib Linux Makes Arch Linux a Dream for New Users

By
Jack Wallen
-

Let’s not mince words here. Arch Linux is a challenge to install. If it weren’t, we wouldn’t have so many distributions, such as Anarchy, which we covered previously, claiming to make Arch accessible for any user. Some of those distributions succeed and some fall flat. But few do as remarkable (albeit someone confusing) of a job as does Namib Linux. Not only does Namib Linux make installing and using Arch Linux as simple as can be, it also offers everything desktop Linux should have:

  • Pre-installed codecs to play multimedia files.

  • Automatic installation of hardware drivers.

  • Access to the latest versions of software.

  • Support for the easy installation and use of multiple kernels.

All of that, along with the usual Linux goodness that comes with standard desktop distribution (graphical desktop interface, pre-installed applications, etc.), helps make Namib Linux pretty impressive.

A little about Namib Linux

Namib Linux is a rolling release distribution created and maintained by Meerkat Software, which is based in New Zealand. One of the key aspects of Namib Linux is the idea that privacy, security, and control is of the utmost value. To that end, Namib Linux allows you to:

  • Update only when you want

  • Protect your data

  • Change nearly every aspect of the desktop

I’ve installed Namib Linux as a VirtualBox virtual machine and I can, without question, say the distribution lives up to its claims. Let’s get it installed and see what makes this user-friendly approach to Arch Linux special.

Installation

I’d love to spend a good amount of time discussing the installation of Namib Linux, but Meerkat Software has done such a great job of making the installation easy, there’s little use dwelling on the subject. Download the ISO image (there are four versions to choose from: Mate, GNOME, KDE, or Xfce), burn it to a disk, or USB drive (or just create a VirtualBox VM from the ISO) and boot up your machine (or virtual machine). I’ve tried both the Mate and GNOME versions of Namib Linux and can say they are both stellar options.

Namib Linux uses the Calamares Installer (Figure 1), which happens to be one the most user-friendly installers on the planet.

Figure 1: The Calamares Installer running from the live instance.

Once installed, you’ll find your Namib Linux desktop ready to serve. Reboot and log into your user account. The first thing you might check is to see if there are any updates. Open the software update tool for your desktop of choice (Figure 2) and run any necessary updates.

Figure 2: The GNOME version of Namib Linux, with a few updates available.

Because Namib Linux is a rolling release, you won’t have to install again, once a new release is out. Just keep it up to date and you’re good to go.

Software variations

I did notice that, between the Mate and GNOME editions of Namib, there are different main packages installed. For example, in the GNOME edition, LibreOffice is installed, whereas with the Mate edition, it is not. Oddly, the installed version of LibreOffice is out of date (at 5.4.5.1). Considering this is a rolling release, I am surprised that the Fresh version (6) of LibreOffice isn’t installed. If, however, you install LibreOffice from the default package manager, you will find the Fresh version (6.0.1.1 as of this writing) available. If you do this on the GNOME version, you’ll wind up with two different releases of LibreOffice.

Fortunately, each iteration of Namib Linux does include a graphical software installer (e.g., GNOME Software or Pamac). Thus, installing or removing software is as easy as opening the software installer, searching for the package to be installed (or removed), selecting it for installation (or removal), and providing your user password. This means you can open up the Add/Remove Software tool, and easily uninstall the LibreOffice 5 release. Oddly enough, GNOME Software wasn’t able to see the LibreOffice Still (5) version. Because of this, the only way to remove it (using a graphical tool) was by way of Pamac.

Conversely, I did notice that installing LibreOffice Fresh via GNOME Software resulted in the Add/Remove Software tool not being aware of this new installation. That’s right, both GNOME Software and Pamac will be available in the GNOME edition of Namib Linux, and they seem to have difficulting seeing what one another is doing. Even so, LibreOffice Fresh can be installed and launched from the GNOME Dash. NOTE: This issue didn’t appear in the Mate version of Namib Linux, as LibreOffice isn’t installed by default.

Regardless of your desktop of choice, Namib Linux does include a few extra bits and pieces (as compared to the likes of, say, Ubuntu Linux. You’ll find:

  • Avahi Server Browser

  • HP Device Manager

  • Parcellite (clipboard manager)

  • PulseAudio Volume Controller

  • V4L2 Test Bench

  • Polari IRC Chat

  • Builder

  • Nambi Notifications Settings

  • Namib Settings

It is that final entry that might be of interest to users. Within the Namib Settings tool, you can configure:

  • Locale Settings

  • Language Packages

  • User Accounts

  • Time and Date

  • Hardware

  • Keyboard

  • Kernel

That’s right, Namib Linux allows the user to easily install and remove kernels. If you open up the desktop menu and type namib, you’ll see the Namib Settings Manager. Open that and then double-click on the Kernel entry. In the resulting window (Figure 3), you will see a listing of available kernels.

Figure 3: The Namib Kernel Settings Window.

As you can see in the figure, I’ve already installed kernel 4.15.6a-1, so it is now available, alongside 4.15.5-1. Kernel 4.14.22-1 is also available for installation. Should I opt for one of the other kernels, I only need to click the Install button associated with the kernel I want to run. After entering the user password, the kernel will be downloaded and installed. When prompted, click Close and reboot your machine for the changes to take effect.

I did find one issue with this tool. After installing the 4.15.6-1-hardened kernel (using the Namib tool), I rebooted as described, only to find the 4.15.5-1 kernel running. It wasn’t until I issued the command sudo grub-mkconfig -o /boot/grub/grub.cfg, that the newer kernel booted. This leads me to believe the Namib Kernel Settings window is incomplete or somewhat misleading. According to the documentation, this is a one-click kernel switcher. However, if (after installing a new kernel) it then requires the user to issue the grub-mkconfig command, it is not truly a one-click solution.

Even with that one caveat, it does make for easy kernel switching.

Definitely worth a try

Even with these caveats, Namib Linux makes Arch Linux incredibly accessible for new users. If you’ve been looking for an excuse to get familiar with Arch Linux, you should definitely give Namib Linux a go. Once you’re familiar with the environment, you may want to give Arch Linux a try.

Learn more about Linux through the free “Introduction to Linux” course from The Linux Foundation and edX.

1...401402403...10,742Page 402 of 10,742