fidzu : ubuntu

Kapitano is a ClamAV frontend for Linux that scans files for malware, ideal if you want to check Windows files safely on the Ubuntu desktop.

You're reading Kapitano is a New GTK ClamAV Frontend for Linux, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.

13 Jun 2025 1:44am GMT

Ubuntu 24.04 LTS now shows energy usage warnings when disabling auto-suspend to comply with new EU ecodesign regulations.

You're reading Ubuntu 24.04 LTS Adds Power Warnings for EU Compliance, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.

12 Jun 2025 6:05pm GMT

Ainda a braços com livros electrónicos e cachuchos espertos, o Miguel e o Diogo dão belas lições sobre como Reduzir, Reutilizar e Reciclar que envolvem passarinhos e ovos estrelados; dizem mal do Windows 11 e como dizer adeus ao Windows 10 da melhor maneira - e ainda têm tempo, entre reuniões muito LoCo, para fazerem rebentar a última bomba da Canonical - que está a dar prémios! - mas também envolve deixar X.org para trás na berma da estrada. Depois revimos as novidades sobre cimeiras variadas, datas novas para as agendas e o que podemos esperar das novas versões de Ubuntu Touch e Questing Cueca (é assim que se diz, não é…?).

Já sabem: oiçam, subscrevam e partilhem!

• BQ Cervantes Touch Light: https://youtu.be/OO33OnIZjmg
• Colmi R02 ring: https://www.colmi.info/products/colmi-r02-smart-ring
  • https://github.com/doublebyte1/calmi/tree/master?tab=readme-ov-file
  • https://github.com/tahnok/colmi_r02_client
• Colmi R09: https://neilzone.co.uk/2025/06/initial-thoughts-on-a-18-colmi-r09-smart-ring-and-gadgetbridge/
• Gadget Bridge: https://gadgetbridge.org/
• Adeus, ó 10, até à Vista: https://endof10.org/
• Adeus, Xorg: https://forums.developer.nvidia.com/t/wayland-support-for-the-575-release-series/333827
  • https://discourse.ubuntu.com/t/ubuntu-25-10-drops-support-for-gnome-on-xorg/62538
  • https://bugs.launchpad.net/ubuntu/+bugs?field.tag=nvidia-wayland
  • https://forums.developer.nvidia.com/t/wayland-support-for-the-575-release-series/333827
  • https://www.phoronix.com/news/Ubuntu-25.10-No-GNOME-X.Org
• Obrigado, devs: https://ubuntu.com/blog/canonical-thanks-dev-giving-back-to-open-source-developers
  • https://thanks.dev/home
  • https://thanks.dev/r/canonical
• Datas da Ubuntu Summit: https://www.omgubuntu.co.uk/2025/05/ubuntu-summit-25-10-event-date-changes
• Núcleo de Questing Quokka: https://discourse.ubuntu.com/t/announcing-6-17-kernel-for-ubuntu-25-10-questing-quokka/61484
  • https://discourse.ubuntu.com/t/leveling-up-ubuntu-for-developers-java-and-beyond/61544
  • https://www.omgubuntu.co.uk/2025/05/ubuntu-25-10-will-use-linux-6-17-kernel
• Conjunto de Dados Geográficos: https://www.dgterritorio.gov.pt/Conjuntos-de-Dados-Geograficos-CDG
  • https://github.com/geopython/pygeoapi/wiki/LiveDeployments
• Ubucon Europe 2025, Málaga, 20-21 de Junho (Open South Code): https://discourse.ubuntu.com/t/ubucon-europe-opensouthcode-2025/57060
• Festa do Software Livre 2025, Porto, 3 a 5 de Outubro: https://festa2025.softwarelivre.eu/pt/
• Ubuntu Summit 2025, Londres, 23-24 de Outubro: https://ubuntu.com/blog/ubuntu-summit-25-10-is-coming-to-your-circle-of-friends-from-london
• LoCo PT: https://loco.ubuntu.com/teams/ubuntu-pt/
• Mastodon: https://masto.pt/@pup
• Youtube: https://youtube.com/PodcastUbuntuPortugal

Atribuição e licenças

Este episódio foi produzido por Diogo Constantino, Miguel e Tiago Carrondo e editado pelo Senhor Podcast. O website é produzido por Tiago Carrondo e o código aberto está licenciado nos termos da Licença MIT. (https://creativecommons.org/licenses/by/4.0/). A música do genérico é: "Won't see it comin' (Feat Aequality & N'sorte d'autruche)", por Alpha Hydrae e está licenciada nos termos da CC0 1.0 Universal License. Os efeitos sonoros deste episódio possuem as seguintes licenças: Risos de piadas secas; patrons laughing.mp3 by pbrproductions - https://freesound.org/s/418831/ - License: Attribution 3.0; Trombone: wah wah sad trombone.wav by kirbydx - https://freesound.org/s/175409/ - License: Creative Commons 0; Quem ganhou? 01 WINNER.mp3 by jordanielmills - https://freesound.org/s/167535/ - License: Creative Commons 0; Isto é um Alerta Ubuntu: Breaking news intro music by humanoide9000 - https://freesound.org/s/760770/ - License: Attribution 4.0. Este episódio e a imagem utilizada estão licenciados nos termos da licença: Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0), cujo texto integral pode ser lido aqui. Estamos abertos a licenciar para permitir outros tipos de utilização, contactem-nos para validação e autorização. A arte de episódio foi criada por encomenda pela Shizamura - artista, ilustradora e autora de BD. Podem ficar a conhecer melhor a Shizamura na Ciberlândia e no seu sítio web.

12 Jun 2025 12:00am GMT

Apple has introduced a new open-source Swift framework named Containerization, designed to fundamentally reshape how Linux containers are run on macOS. In a detailed presentation, Apple revealed a new architecture that prioritizes security, privacy, and performance, moving away from traditional methods to offer a more integrated and efficient experience for developers.

The new framework aims to provide each container with the same level of robust isolation previously reserved for large, monolithic virtual machines, but with the speed and efficiency of a lightweight solution.

Here is the video:

The Old Way: A Single, Heavy Virtual Machine

• Resource Inefficiency: The large VM had resources like CPU and memory allocated to it upfront, regardless of how many containers were running.
• Security & Privacy Concerns: Sharing files from the Mac with a container was a two-step process; files were first shared with the entire VM, and then to the specific container, potentially exposing data more broadly than intended.
• Maintenance Overhead: The large VM contained a full Linux distribution with core utilities, dynamic libraries, and a libc implementation, increasing the attack surface and requiring constant updates.

A New Vision: Security, Privacy, and Performance

The Containerization framework was built with three core goals to address these challenges:

1. Security: Provide every single container with its own isolated virtual machine. This dramatically reduces the attack surface by eliminating shared kernels and system utilities between containers.
2. Privacy: Enable file and directory sharing on a strict, per-container basis. Only the container that requests access to a directory will receive it.
3. Performance: Achieve sub-second start times for containers while respecting the user's system resources. If no containers are running, no resources are allocated.

Under the Hood: How Containerization Works

Containerization is more than just an API; it's a complete rethinking of the container runtime on macOS.

Lightweight, Per-Container Virtual Machines

The most significant architectural shift is that each container runs inside its own dedicated, lightweight virtual machine. This approach provides profound benefits:

• Strong Isolation: Each container is sandboxed within its own VM, preventing processes in one container from viewing or interfering with the host or other containers.
• Dedicated Networking: Every container gets its own dedicated IP address, which improves network performance and eliminates the cumbersome need for port mapping.
• Efficient Filesystems: Containerization exposes the image's filesystem to the Linux VM as a block device formatted with EXT4. Apple has even developed a Swift package to manage the creation and population of these EXT4 filesystems directly from macOS.

vminitd: The Swift-Powered Heart of the Container

Once a VM starts, a minimal initial process called vminitd takes over. This is not a standard Linux init system; it's a custom-built solution with remarkable characteristics:

• Built in Swift: vminitd is written entirely in Swift and runs as the first process inside the VM.
• Extremely Minimal Environment: To maximize security, the filesystem vminitd runs in is barebones. It contains no core utilities (like ls, cp), no dynamic libraries, and no libc implementation.
• Statically Compiled: To run in such a constrained environment, vminitd is cross-compiled from a Mac into a single, static Linux executable. This is achieved using Swift's Static Linux SDK and musl, a libc implementation optimized for static linking.

vminitd is responsible for setting up the entire container environment, including assigning IP addresses, mounting the container's filesystem, and supervising all processes that run within the container.

Getting Started: The container Command-Line Tool

To showcase the power of the framework, Apple has also released an open-source command-line tool simply called container. This tool allows developers to immediately begin working with Linux containers in this new, secure environment.

• Pulling an image:

container image pull alpine:latest

• Running an interactive shell:

container run -ti alpine:latest sh

Within milliseconds, the user is dropped into a shell running inside a fully isolated Linux environment. Running the ps aux command from within the container reveals only the shell process and the ps process itself, a clear testament to the powerful process isolation at work.

An Open Invitation to the Community

Both the Containerization framework and the container tool are available on GitHub. Apple is inviting developers to explore the source code, integrate the framework into their own projects, and contribute to its future by submitting issues and pull requests.

This move signals a strong commitment from Apple to making macOS a first-class platform for modern, Linux container-based development, offering a solution that is uniquely secure, private, and performant.

Source:

• https://github.com/apple/container
• https://github.com/apple/containerization

The post Apple Unveils "Containerization" for macOS: A New Era for Linux Containers on macOS appeared first on Utappia.

11 Jun 2025 10:06pm GMT

Apple is having a busy WWDC, but beyond the gossip over its new glassy OS UI came a new tool which anyone using a Mac to work with Linux containers will be interested in hearing about. This week Apple released an initial build of its new open-source container tool for creating and running Linux containers on Mac. The CLI tool, named container, is written in Swift, Apple's go-to programming language, and optimised for Apple silicon and its next major OS update, macOS 26 Tahoe. Apple's technical documentation explains: "[This…] consumes and produces OCI-compliant container images, so you can pull and […]

You're reading Apple Release New Tools for Running Linux Containers on Mac, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.

11 Jun 2025 7:31pm GMT

KDE Mascot

Release notes: https://kde.org/announcements/gear/25.04.2/

Now available in the snap store!

Along with that, I have fixed some outstanding bugs:

Ark: now can open/save files in removable media

Kasts: Once again has sound

WIP: Updating Qt6 to 6.9 and frameworks to 6.14

Enjoy everyone!

Unlike our software, life is not free. Please consider a donation, thanks!

• GoFundMe Donate
• Patreon Donate
• GitHub Donate
• DonorBox Donate

11 Jun 2025 1:14pm GMT

Reference architectures speed up time to market for agentic AI projects To ease the path of enterprise AI adoption and accelerate the conversion of AI insights into business value, NVIDIA recently published the NVIDIA Enterprise AI Factory validated design, an ecosystem of solutions that integrates seamlessly with enterprise systems, data sources, and security infrastructure. The […]

11 Jun 2025 11:04am GMT

The combined solutions simplify infrastructure operations and accelerate time-to-value for AI, telecom, and enterprise computing workloads. Accelerate deployment and operations of BlueField DPUs with Canonical Kubernetes At GTC Paris today, Canonical announced support for the NVIDIA DOCA Platform Framework (DPF) with Canonical Kubernetes LTS. This milestone strengthens the strategic collaboration between the two companies and […]

11 Jun 2025 11:04am GMT

Everyone agrees security matters - yet when it comes to big data analytics with Apache Spark, it's not just another checkbox. Spark's open source Java architecture introduces special security concerns that, if neglected, can quietly reveal sensitive information and interrupt vital functions. Unlike standard software, Spark design permits user-provided code to execute with extensive control […]

10 Jun 2025 9:28am GMT