13 Jun 2025
OMG! Ubuntu
Kapitano is a New GTK ClamAV Frontend for Linux
Kapitano is a ClamAV frontend for Linux that scans files for malware, ideal if you want to check Windows files safely on the Ubuntu desktop.
You're reading Kapitano is a New GTK ClamAV Frontend for Linux, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
13 Jun 2025 1:44am GMT
12 Jun 2025
OMG! Ubuntu
Ubuntu 24.04 LTS Adds Power Warnings for EU Compliance
Ubuntu 24.04 LTS now shows energy usage warnings when disabling auto-suspend to comply with new EU ecodesign regulations.
You're reading Ubuntu 24.04 LTS Adds Power Warnings for EU Compliance, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
12 Jun 2025 6:05pm GMT
Planet Ubuntu
Podcast Ubuntu Portugal: E351 Beringela Nuclear
Ainda a braços com livros electrónicos e cachuchos espertos, o Miguel e o Diogo dão belas lições sobre como Reduzir, Reutilizar e Reciclar que envolvem passarinhos e ovos estrelados; dizem mal do Windows 11 e como dizer adeus ao Windows 10 da melhor maneira - e ainda têm tempo, entre reuniões muito LoCo, para fazerem rebentar a última bomba da Canonical - que está a dar prémios! - mas também envolve deixar X.org para trás na berma da estrada. Depois revimos as novidades sobre cimeiras variadas, datas novas para as agendas e o que podemos esperar das novas versões de Ubuntu Touch e Questing Cueca (é assim que se diz, não é…?).
Já sabem: oiçam, subscrevam e partilhem!
- BQ Cervantes Touch Light: https://youtu.be/OO33OnIZjmg
- Colmi R02 ring: https://www.colmi.info/products/colmi-r02-smart-ring
- Colmi R09: https://neilzone.co.uk/2025/06/initial-thoughts-on-a-18-colmi-r09-smart-ring-and-gadgetbridge/
- Gadget Bridge: https://gadgetbridge.org/
- Adeus, ó 10, até à Vista: https://endof10.org/
- Adeus, Xorg: https://forums.developer.nvidia.com/t/wayland-support-for-the-575-release-series/333827
- Obrigado, devs: https://ubuntu.com/blog/canonical-thanks-dev-giving-back-to-open-source-developers
- Datas da Ubuntu Summit: https://www.omgubuntu.co.uk/2025/05/ubuntu-summit-25-10-event-date-changes
- Núcleo de Questing Quokka: https://discourse.ubuntu.com/t/announcing-6-17-kernel-for-ubuntu-25-10-questing-quokka/61484
- Conjunto de Dados Geográficos: https://www.dgterritorio.gov.pt/Conjuntos-de-Dados-Geograficos-CDG
- Ubucon Europe 2025, Málaga, 20-21 de Junho (Open South Code): https://discourse.ubuntu.com/t/ubucon-europe-opensouthcode-2025/57060
- Festa do Software Livre 2025, Porto, 3 a 5 de Outubro: https://festa2025.softwarelivre.eu/pt/
- Ubuntu Summit 2025, Londres, 23-24 de Outubro: https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london
- LoCo PT: https://loco.ubuntu.com/teams/ubuntu-pt/
- Mastodon: https://masto.pt/@pup
- Youtube: https://youtube.com/PodcastUbuntuPortugal
Atribuição e licenças
Este episódio foi produzido por Diogo Constantino, Miguel e Tiago Carrondo e editado pelo Senhor Podcast. O website é produzido por Tiago Carrondo e o código aberto está licenciado nos termos da Licença MIT. (https://creativecommons.org/licenses/by/4.0/). A música do genérico é: "Won't see it comin' (Feat Aequality & N'sorte d'autruche)", por Alpha Hydrae e está licenciada nos termos da CC0 1.0 Universal License. Os efeitos sonoros deste episódio possuem as seguintes licenças: Risos de piadas secas; patrons laughing.mp3 by pbrproductions - https://freesound.org/s/418831/ - License: Attribution 3.0; Trombone: wah wah sad trombone.wav by kirbydx - https://freesound.org/s/175409/ - License: Creative Commons 0; Quem ganhou? 01 WINNER.mp3 by jordanielmills - https://freesound.org/s/167535/ - License: Creative Commons 0; Isto é um Alerta Ubuntu: Breaking news intro music by humanoide9000 - https://freesound.org/s/760770/ - License: Attribution 4.0. Este episódio e a imagem utilizada estão licenciados nos termos da licença: Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0), cujo texto integral pode ser lido aqui. Estamos abertos a licenciar para permitir outros tipos de utilização, contactem-nos para validação e autorização. A arte de episódio foi criada por encomenda pela Shizamura - artista, ilustradora e autora de BD. Podem ficar a conhecer melhor a Shizamura na Ciberlândia e no seu sítio web.
12 Jun 2025 12:00am GMT
11 Jun 2025
Planet Ubuntu
Salih Emin: Apple Unveils “Containerization” for macOS: A New Era for Linux Containers on macOS
Apple has introduced a new open-source Swift framework named Containerization, designed to fundamentally reshape how Linux containers are run on macOS. In a detailed presentation, Apple revealed a new architecture that prioritizes security, privacy, and performance, moving away from traditional methods to offer a more integrated and efficient experience for developers.
The new framework aims to provide each container with the same level of robust isolation previously reserved for large, monolithic virtual machines, but with the speed and efficiency of a lightweight solution.
Here is the video:
The Old Way: A Single, Heavy Virtual Machine
- Resource Inefficiency: The large VM had resources like CPU and memory allocated to it upfront, regardless of how many containers were running.
- Security & Privacy Concerns: Sharing files from the Mac with a container was a two-step process; files were first shared with the entire VM, and then to the specific container, potentially exposing data more broadly than intended.
- Maintenance Overhead: The large VM contained a full Linux distribution with core utilities, dynamic libraries, and a
libc
implementation, increasing the attack surface and requiring constant updates.
A New Vision: Security, Privacy, and Performance
The Containerization framework was built with three core goals to address these challenges:
- Security: Provide every single container with its own isolated virtual machine. This dramatically reduces the attack surface by eliminating shared kernels and system utilities between containers.
- Privacy: Enable file and directory sharing on a strict, per-container basis. Only the container that requests access to a directory will receive it.
- Performance: Achieve sub-second start times for containers while respecting the user's system resources. If no containers are running, no resources are allocated.
Under the Hood: How Containerization Works
Containerization is more than just an API; it's a complete rethinking of the container runtime on macOS.
Lightweight, Per-Container Virtual Machines
The most significant architectural shift is that each container runs inside its own dedicated, lightweight virtual machine. This approach provides profound benefits:
- Strong Isolation: Each container is sandboxed within its own VM, preventing processes in one container from viewing or interfering with the host or other containers.
- Dedicated Networking: Every container gets its own dedicated IP address, which improves network performance and eliminates the cumbersome need for port mapping.
- Efficient Filesystems: Containerization exposes the image's filesystem to the Linux VM as a block device formatted with
EXT4
. Apple has even developed a Swift package to manage the creation and population of theseEXT4
filesystems directly from macOS.
vminitd
: The Swift-Powered Heart of the Container
Once a VM starts, a minimal initial process called vminitd
takes over. This is not a standard Linux init
system; it's a custom-built solution with remarkable characteristics:
- Built in Swift:
vminitd
is written entirely in Swift and runs as the first process inside the VM. - Extremely Minimal Environment: To maximize security, the filesystem
vminitd
runs in is barebones. It contains no core utilities (likels
,cp
), no dynamic libraries, and nolibc
implementation. - Statically Compiled: To run in such a constrained environment,
vminitd
is cross-compiled from a Mac into a single, static Linux executable. This is achieved using Swift's Static Linux SDK andmusl
, alibc
implementation optimized for static linking.
vminitd
is responsible for setting up the entire container environment, including assigning IP addresses, mounting the container's filesystem, and supervising all processes that run within the container.
Getting Started: The container
Command-Line Tool
To showcase the power of the framework, Apple has also released an open-source command-line tool simply called container
. This tool allows developers to immediately begin working with Linux containers in this new, secure environment.
- Pulling an image:
container image pull alpine:latest
- Running an interactive shell:
container run -ti alpine:latest sh
Within milliseconds, the user is dropped into a shell running inside a fully isolated Linux environment. Running the ps aux
command from within the container reveals only the shell process and the ps
process itself, a clear testament to the powerful process isolation at work.

An Open Invitation to the Community
Both the Containerization framework and the container tool are available on GitHub. Apple is inviting developers to explore the source code, integrate the framework into their own projects, and contribute to its future by submitting issues and pull requests.
This move signals a strong commitment from Apple to making macOS a first-class platform for modern, Linux container-based development, offering a solution that is uniquely secure, private, and performant.
Source:
The post Apple Unveils "Containerization" for macOS: A New Era for Linux Containers on macOS appeared first on Utappia.
11 Jun 2025 10:06pm GMT
OMG! Ubuntu
Apple Release New Tools for Running Linux Containers on Mac
Apple is having a busy WWDC, but beyond the gossip over its new glassy OS UI came a new tool which anyone using a Mac to work with Linux containers will be interested in hearing about. This week Apple released an initial build of its new open-source container tool for creating and running Linux containers on Mac. The CLI tool, named container, is written in Swift, Apple's go-to programming language, and optimised for Apple silicon and its next major OS update, macOS 26 Tahoe. Apple's technical documentation explains: "[This…] consumes and produces OCI-compliant container images, so you can pull and […]
You're reading Apple Release New Tools for Running Linux Containers on Mac, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
11 Jun 2025 7:31pm GMT
Planet Ubuntu
Scarlett Gately Moore: KDE Application snaps 25.04.2 released!

Release notes: https://kde.org/announcements/gear/25.04.2/
Now available in the snap store!
Along with that, I have fixed some outstanding bugs:
Ark: now can open/save files in removable media
Kasts: Once again has sound
WIP: Updating Qt6 to 6.9 and frameworks to 6.14
Enjoy everyone!
Unlike our software, life is not free. Please consider a donation, thanks!
11 Jun 2025 1:14pm GMT
Ubuntu blog
Canonical delivers Kubernetes platform and open-source security with NVIDIA Enterprise AI Factory validated design
Reference architectures speed up time to market for agentic AI projects To ease the path of enterprise AI adoption and accelerate the conversion of AI insights into business value, NVIDIA recently published the NVIDIA Enterprise AI Factory validated design, an ecosystem of solutions that integrates seamlessly with enterprise systems, data sources, and security infrastructure. The […]
11 Jun 2025 11:04am GMT
Canonical Kubernetes meets NVIDIA DOCA Platform Framework (DPF): building the future of DPU-driven infrastructure
The combined solutions simplify infrastructure operations and accelerate time-to-value for AI, telecom, and enterprise computing workloads. Accelerate deployment and operations of BlueField DPUs with Canonical Kubernetes At GTC Paris today, Canonical announced support for the NVIDIA DOCA Platform Framework (DPF) with Canonical Kubernetes LTS. This milestone strengthens the strategic collaboration between the two companies and […]
11 Jun 2025 11:04am GMT
10 Jun 2025
Ubuntu blog
Apache Spark security: start with a solid foundation
Everyone agrees security matters - yet when it comes to big data analytics with Apache Spark, it's not just another checkbox. Spark's open source Java architecture introduces special security concerns that, if neglected, can quietly reveal sensitive information and interrupt vital functions. Unlike standard software, Spark design permits user-provided code to execute with extensive control […]
10 Jun 2025 9:28am GMT