Tech

  • No Microsoft account, no Windows 11

    Steve WoodsPrivacy, Security, Tech

    French tech news site Frandroid reports that there has been a very unobtrusive but significant change to the installation procedure for Windows 11, but one with major implications for users’ privacy and security.

    Since the launch of Windows 11, users of the home edition have been obliged to have a Microsoft account and an internet connection for the initial configuration of a machine if a fresh installation is involved. The company could soon extend this obligation to the operating system’s Professional edition.

    Windows 11 desktop
    Do I look like a Mac in this?
    Image courtesy of Wikimedia Commons.

    This week Microsoft has released build 22557 to members of the Windows Insider programme. This is a rather ambitious new version of Windows 11 packed with new “features“, including a change in policy regarding Windows 11 Pro.

    As Microsoft wrote on its blog announcing the release:

    Similar to Windows 11 Home edition, Windows 11 Pro edition now requires internet connectivity during the initial device setup (OOBE) only. If you choose to setup device for personal use, MSA will be required for setup as well. You can expect Microsoft Account to be required in subsequent WIP flights.

    As you have read, Microsoft has stated in black and white that people will need to have an internet connection and a Microsoft account, even from Windows 11 Pro to enable a machine’s personal use (as distinct from business or educational use).

    As a matter of fact, Microsoft is stating what the obligation will be included in all future versions of Windows 11 in the Insider programme. It can therefore be assumed that this new constraint only affects the initial configuration of machines with versions of Windows 11 from the Insider programme.

    We will have to await the next major update of Windows 11 which incorporates the new features of build 22557 to check if having a Microsoft account has really become mandatory for the operating system’s Pro edition.

    The use of an online account has long been required by Apple and Google on iOS and Android respectively, but less so for Windows, since historically there has not been any Microsoft account to connect, much to the chagrin of the software publisher. Users are therefore not accustomed to such a requirement, which Microsoft has been trying to promote since the launch of Windows 8

  • Google and Microsoft finance open source security campaign

    Steve WoodsLinux, Open Source, Security, Tech

    A new initiative by the Open Source Security Foundation (OpenSSF) should improve the security of open source applications, German news site heise reports. The campaign, called the Alpha-Omega Project, is the result of negotiations at the White House between representatives of technology companies, US authorities and non-profit organisations. The initial funding of $5 mn. is being financed jointly by Google and Microsoft.

    Image courtesy of opensource.com

    OpenSSF is organising the project in two parts – Alpha and Omega. In the Alpha section expert groups are analysing the security situation of the most-used open source applications to find and remedy vulnerabilities. This should train software operators and users in security awareness. In the Omega section a team of software developers is working on automated tests for over 10,000 distributed open source project to propose possible security measures to their user communities.

    Open source projects and libraries are widely used in software development. The Log4Shell vulnerability in the widely-distributed Log4j Java library recently showed how critical an attack can be. Even after a month and a half it still remains unclear whether companies have survived the worst. Users and companies should therefore investigate their own systems for vulnerable instances of the Log4j library and install current patches.

    More details of the Alpha-Omega Project can be found in the official announcement.

  • LibreOffice 7.3 to support Klingon

    Steve WoodsOpen Source, Open Standards, Tech

    The forthcoming point release of LibreOffice, the free and open source office suite, will feature support for two constructed languages – Klingon and InterslavicNeowin reports. TDF logo

    Klingon insigniaKlingon is of course well known to lovers of the US science fiction Star Trek media franchise created by Gene Roddenberry as the language of the alien race of the same name and created by US linguist Mark Okrand, actor James Doohan (who played chief engineer Montgomery “Scotty” Scott. Ed.) and scriptwriter and producer Jon Povill.

    The Klingon language is first mentioned in the original Star Trek series episode “The Trouble with Tribbles” (1967), but is not heard until 1979 in Star Trek: The Motion Picture.

    Interslavic flagInterslavic is a pan-Slavic auxiliary language whose purpose is to facilitate communication between people from different Slavic nations, as well as allowing those who do not know any Slavic language to communicate with Slavs by being understandable to most, if not all Slavic speakers without them having to learn the language themselves.

    When it comes to classification, Interslavic can be described as a semi-constructed language, being in essence a modern continuation of Old Church Slavonic, but it also draws on the various improvised language forms Slavs have been using for centuries to communicate with Slavs of other nationalities.

    These are not the first constructed languages for which there is support in LibreOffice. Esperanto is already catered for in the form of a LibreOffice Esperanto extension which provides a spellchecker and hyphenation.

    Commenting on the support for Klingon, The Document Foundation remarked:

    Even if Klingon and Interslavic support sounds like a novelty, it shows how versatile free and open source software is. As mentioned, LibreOffice is available in over 100 languages, and we’d like to expand that even further. The more languages the better, especially if we can help to boost IT skills in places which don’t otherwise have software in their native languages!

    The LibreOffice wiki provides a full list of languages supported by the office suite.

  • Indigestible cookies

    Steve WoodsPrivacy, Tech

    In France the Commission Nationale de l’Informatique et des Libertés (CNIL) has fined Google €150 million and Facebook €60 mn. for non-compliance with French data protection legislation, which also covers cookies.

    cookies - edible varietyAs a result of its investigations following the receipt of complaints from members of the public, the CNIL found that the websites facebook.com, google.fr and youtube.com do not make refusing cookies as easy as to accept them and so penalised them financially. The €150 mn. fine for Google is broken down into €90 mn. for Google LLC and €60 mn. for Google Ireland Ltd.

    Furthermore, the CNIL also ordered Google and Facebook to provide French-based internet users lwith a means of refusing cookies as simple as the existing means of accepting them, in order to guarantee their freedom of consent, within three months. If they fail to do so, the companies will have to pay a penalty of €100,000 euros per day of delay.

    The problem of privacy-conscious people being put to unnecessary effort to reject cookies is widespread. For instance, when visiting a Reach plc newspaper site (Reach owns the Mirror, Express and scores of regional news titles around the country. Ed.), users who wish to reject all cookies have to work through the options; this entails four clicks of the mouse, as opposed to one to accept all cookies. The best sites have a one-click option to accept or reject all cookies.

    As someone who has been using the internet since the days of dial-up modems, your ‘umble scribe has long believed rejecting cookies should be the default and those who want to accept them made to go through the same laborious process to which cookie refuseniks are currently subjected.

  • Digital Markets Act: Device Neutrality finally becomes a reality

    Steve WoodsOpen Source, Open Standards, Politics, Tech

    EU flagAfter many iterations and amendments, the European Parliament adopted the Digital Markets Act (DMA) by 642 votes in favour, 8 votes against and 46 abstentions, the Free Software Foundation Europe (FSFE) reports.

    The Act introduced the principle of Device Neutrality. At the same time, the Parliament missed the chance to introduce strict interoperability requirements based on Open Standards.

    The FSFE has urged EU legislators to safeguard Device Neutrality in the DMA. We regret the voting has not contemplated setting Open Standards as default to define interoperability. However, getting Device Neutrality in the legislation is the first step. The right for end users to use their own devices and operating systems is an important factor to guarantee the access of free software operating systems to dominant platforms. As a daily reality for many users, this option enlarges the audience for free software adoption.

    Lucas Lasota, the FSFE’s Deputy Legal Co-ordinator, remarked as follows:

    We strongly believe the digital markets will benefit by facilitating access to Free Software in devices. Device Neutrality translates in the DMA as stricter consent rules for pre-installed apps, safeguards against vendor lock-in and real-time data portability. Interoperability of services was also introduced, but not with the requirement to be based on Open Standards. This is a lost chance to leverage competition with accessible and non-discriminatory technical specifications. Open Standards are an important element for innovation by allowing market actors to innovate on top of technical specification standards and build their own services.

    The FSFE has been working for two decades empowering people to control the technology in their devices. It will closely follow the implementation of the Act and continue its activities and initiatives to safeguard the interests of end users.

  • EU Commission wants to release its software as open source

    Steve WoodsOpen Source, Politics, Tech

    The European Commission announced today that it has adopted new rules on Open Source Software that will enable its software solutions to be publicly accessible whenever there are potential benefits for citizens, companies or other public services.

    The Commission’s recent studyon the impact of Open Source Software and Hardware on technological independence, competitiveness and innovation in the EU economy revealed that on average, investment in open source results in four times higher returns. The Commission services will be able to publish the software source code they own in much shorter time and with less paperwork.

    One example of the benefits of releasing software as open source is eSignature, a set of free standards, tools and services that help both public and private sector organisations accelerate the creation and verification of electronic signatures that are legally valid in all EU Member States.

    A second example is LEOS, (Legislation Editing Open Software), the software used across the Commission to draft legal texts. Originally written for the Commission, LEOS is now being developed in close collaboration with Germany, Spain and Greece.

    Single repository

    The Commission will make its software available as open source in one single repository to enable access and reuse. Before its release, each software package will be checked to avoid security or confidentiality-related risks, data protection problems or infringement of third party intellectual property rights.

    The Commission already shares hundreds of software projects as open source, including software developed for the Connecting Europe Facility, Eurostat, the Interoperable Europe Programme (Interoperability solutions for public administrations, businesses and citizens programme, the former ISA² programme), and for the Joint Research Centre.

    Commenting on the announcement, the EU’s Commissioner for Budget and Administration, Johannes Hahn, said:

    Open source offers great advantages in a domain where the EU can have a leading role. The new rules will increase transparency and help the Commission, as well as citizens, companies and public services across Europe, benefit from open source software development. Pooling of efforts to improve the software and the co-creation of new features lowers costs for the society, as we also benefit from the improvements made by other developers. This can also enhance security as external and independent specialists check software for bugs and security flaws.

  • EUPL now a “legal licence” in France

    Steve WoodsOpen Source, Politics, Tech

    On 3rd December, French Décret no. 2021-1559 of 1st December 2021 was published in the Official Gazette, Joinup, the EU’s public sector news site reports.

    This decree makes the European Union Public Licence (EUPL) a “Legal Licence” for use by public sector organisations in France.

    Before the approval of this decree, French public sector organisations who wanted to use the EUPL had to justify it individually in a long administrative process. Since the EUPL is a reciprocal licence stating that derivatives of the covered software must likewise also be distributed under the EUPL, this represented an additional barrier for sharing and reusing software between European institutions, France and the rest of EU.

    French public sector organisations are major users and developers of free/open source software. It is estimated that some 1,000 have published about 9,000 free and open source projects.

    In addition to the EUPL, the decree mentioned above also adds the Eclipse Public Licence to the French “legal” list. The Eclipse Public Licence is a free and open source software licence most notably used for the Eclipse IDE and other projects by the Eclipse Foundation, an independent, Canada-based not-for-profit corporation that acts as a steward of the Eclipse open source software development community.

  • More comprehensive, transcendental abuse?

    Steve WoodsLanguage, Media, Politics, Privacy, Social Media, Tech

    New logo as Facebook morphs into MetaIn the small hours of Friday morning, news came in that Facebook Inc. is to change its name to Meta, allegedly better to “encompass” what it does as it expands from social media to other sectors such as virtual reality.

    Meta, from the Greek μετα-, meta-, meaning “after” or “beyond“, is a prefix meaning more comprehensive or transcending.

    Whether the rebrand will involve the more dubious of Facebook’s more comprehensive or transcending business practices being extended to those new sectors remains to be seen.

    Facebook was founded in February 2004 by Harvard student Mark Zuckerberg. Not long afterwards, the controversies and abuse of users started. As The Register recalled in 2010, the then 19 year-old Zuckerberg called his first few thousand users “dumb f*cks” in a private conversation with a friend.

    However, even that early sign of contempt did not prevent Zuckerberg’s social media infant growing into an obese behemoth of the social media sector, with a current user (i.e. product. Ed.) base of 2.85 billion people.

    Perhaps Zuckerberg is secretly delighted there are so many dumb people in the world. They’ve been paying his bills for more than one and a half decades, after all.

    After those early days, Facebook’s user base grew, as did the propensity for abuse, culminating in the Cambridge Analytica data scandal. Cambridge Analytica was established in 2013 as a subsidiary of the private intelligence company and self-described “global election management agency” SCL Group by 3 long-serving SCL executives. The company offices in London, New York City and Washington, DC. Cambridge Analytica was implicated in affecting the results of the 2016 US presidential campaign, where data it hoovered up from Facebook users was used to build psychographic profiles, determining users’ personality traits based on their Facebook activity. These profiles were then used for micro-targeting voters displaying customised advertisements on various online platforms. The key point of this activity was to identify those who might be enticed to vote for Trump or be discouraged to vote for their opponent. In addition, Cambridge Analytica was allegedly hired as a consultant company for Leave.EU and the UK Independence Party during 2016 as an effort to convince people to vote in favour of the UK leaving the European Union in David Cameron’s amateurish EU membership referendum. However, the UK Information Commissioner’s official investigation found that Cambridge Analytica was not involved “beyond some initial enquiries” and the regulator did not identify any “significant breaches” of data protection legislation or privacy or marketing regulations “which met the threshold for formal regulatory action“. Cambridge Analytica cased operations in 2018 following the revelations of its privacy-busting operations, although firms related to both Cambridge Analytica and its parent firm SCL still exist.

    Zuckerberg subsequently apologised for Facebook’s involvement with Cambridge Analytica, calling it an “issue“, a “mistake” and a “breach of trust“, as well as pledging not to let such abuse occur again.

    Nevertheless, the abuse of users didn’t stop and have continued right up to the present.

    The latest revelations come ex-employee Frances Haugen, who was employed by Facebook as a data scientist, leaked documents revealing that the company placed “profits over safety“. Since her revelations, Ms. Haugen has given evidence to a US Senate sub-committee and testified in person to a UK parliamentary committee scrutinising the online safety bill.

    Reporting on the name change, The Register noted beneath its headline that Zuckerberg’s social network has “Meta-stasized“. Leaving aside El Reg’s overt reference to the former secret police of the so-called German Democratic Republic, metastasis is defined as a change of position, state, or form. The primary use of metastasis today is in medicine where it defines the development of secondary malignant growths at a distance from a primary site of cancer.

    Finally, as a further dampener on the rebrand’s distraction value, a report in today’s Guardian reveals that Meta translates as dead in Hebrew.

    Have fun in Zuck’s metaverse, y’all! 😀

  • Ubuntu 21.10 released

    Steve WoodsLinux, Open Source, Tech

    Two days ago, Canonical announced the release of Ubuntu Linux 21.10, codenamed Impish Indri.

    Ubuntu 21.10 wallpaper

    Canonical’s CEO Mark Shuttleworth said of the release:

    As open source becomes the new default, we aim to bring Ubuntu to all the corners of the enterprise and all the places developers want to innovate. From the biggest public clouds to the tiniest devices, from DGX servers to Windows WSL workstations, open source is the springboard for new ideas and Ubuntu makes that springboard safe, secure and consistent.

    This latest Ubuntu release is a short-term one with nine months of support that precedes the next long-term support (LTS) version, Ubuntu 22.04.

    The new release’s default desktop interface is GNOME 40, whilst there have also been some updates to the distribution’s default desktop programs, which now include the LibreOffice 7.2 office productivity suite, the Thunderbird 91 e-mail client, and the Firefox 92 web browser.

    Ubuntu 21.10 is available for immediate download for 64-bit systems (32-bit support ceased some time ago. Ed.)

  • Introducing Ubuntu Frame

    Steve WoodsLinux, Open Source, Tech

    Earlier this month, Canonical, the company behind the popular Ubuntu Linux distribution, announced the release of Ubuntu Frame

    With Ubuntu Frame, developers no longer need to integrate and maintain partial solutions such as DRM, KMS, input protocols or security policies to power and secure their displays. This means less code to manage, fewer opportunities for bugs and vulnerabilities in untried code and more time for developing the display’s content.

    Ubuntu Frame screenshot
    Ubuntu Frame screenshot

    When developing Ubuntu Frame, the goal was to minimise the development and deployment time for building graphic solutions for edge devices by leveraging existing applications and hardening security techniques. Ubuntu Frame is therefore compatible with toolkits such as Flutter, Qt, GTK, Electron and SDL2. Furthermore, it also has a solution for applications based on HTML5 and Java, inter alia. It is also worth mentioning that Ubuntu Frame’s users benefit from easy configuration and deployment options thanks to snaps, which is being heralded asthe next-generation package format for Linux.

    Ubuntu Frame provides developers with all they need to deploy fully interactive applications: it comes with all the interfaces applications need to communicate securely with the host machine without developers needing to deal with the specific hardware. It also automatically enables all the functionality that end-users expect while interacting with digital displays, such as input from touchscreens, keyboard and mouse. Developers also don’t need to worry about window behaviours and dynamics since they are all configured.

    Commenting on the launch, Michał Sawicz, Smart Displays Engineering Manager at Canonical said the following:

    Ubuntu Frame’s reliability has been widely tested in the field. Its technology has been in development for over 7 years and in production for 5 years, using state-of-the-art techniques, and deployed in production to Linux desktop and mobile users. As such, Ubuntu Frame is one of the most mature graphical servers available today for embedded devices.
Posts navigation