Ubuntu Criticized For Bug Blocking Installation of .Deb Packages
Read more of this story at Slashdot.
Read more of this story at Slashdot.
History might consider the most important aspect of Ubuntu 24.04 to be something that it doesn't have: vulnerabilities to the XZ backdoor that nearly took over the global Linux scene.
Betas, and the final release of Ubuntu 24.04, a long-term support (LTS) release of the venerable Linux distribution, were delayed, as backing firm Canonical worked in early April 2024 to rebuild every binary included in the release. xz Utils, an almost ubiquitous data-compression package on Unix-like systems, had been compromised through a long-term and elaborate supply-chain attack, discovered only because a Microsoft engineer noted some oddities with SSH performance on a Debian system. Ubuntu, along with just about every other regularly updating software platform, had a lot of work to do this month.
Canonical's Ubuntu 24.04 release video, noting 20 years of Ubuntu releases. I always liked the brown.
What is actually new in Ubuntu 24.04, or "Noble Numbat?" Quite a bit, especially if you're the type who sticks to LTS releases. The big new changes are a very slick new installer, using the same Subiquity back-end as the Server releases, and redesigned with a whole new front-end in Flutter. ZFS encryption is back as a default install option, along with hardware-backed (i.e., TPM) full-disk encryption, plus more guidance for people looking to dual-boot with Windows setups and BitLocker. Netplan 1.0 is the default network configuration tool now. And the default installation is "Minimal," as introduced in 23.10.
Read more of this story at Slashdot.
It wasnβt too long ago that new Ubuntu releases were major happenings in the Linux world, as it was the default Linux distribution for many, both old and newcomers, in the desktop Linux space. These days, Ubuntu release hit a little different, with Canonicalβs focus having shifted much more to the enterprise, and several aspects of the distribution being decidedly unpopular, like the snap package management system.
Still, Ubuntu is probably still one of the most popular, if not the most popular, distributions out there, so any new release, like todayβs Ubuntu 24.0 LTS, is still a big deal.
Ubuntu Desktop brings the Subiquity installer to an LTS for the first time. In addition to a refreshed user experience and a minimal install by default, the installer now includes experimental support for ZFS and TPM-based full disk encryption and the ability to import auto-install configurations. Post install, users will be greeted with the latest GNOME 46 alongside a new App Center and firmware-updater. Netplan is now the default for networking configuration and supports bidirectionality with NetworkManager.
β« Utkarsh Gupta on ubuntu-announce
Of course, all the various other Ubuntu editions have also seen new releases: Edubuntu, Kubuntu, Lubuntu, Ubuntu Budgie, Ubuntu Cinnamon, Ubuntu Kylin, Ubuntu MATE, Ubuntu Studio, Ubuntu Unity, and Xubuntu. Yes, thatβs a long list. They all mostly share the same improvements as Ubuntuβs main course, but paired with the latest versions of the respective desktop environments instead.
Except for Kubuntu. Unlike just about any other major distribution released over the last few months, such as Fedora 40 only a few days ago, Kubuntu does not ship with the new KDE Plasma 6, opting for Plasma 5.27.11 instead. There simply wasnβt enough time between the release of Plasma 6 and the Ubuntu feature freeze, so they made the β in my opinion β understandable call to stick to Plasma 5 for now, moving Plasma 6 to the next release later this year.
Read more of this story at Slashdot.
So with Ubuntu 24.04 LTS is the ability to continue with a standard EXT4 file-system install, an encrypted file-system using LVM, or using OpenZFS with/without encryption. Ubuntu 24.04 LTS also has the ability to enjoy hardware-backed full-disk encryption with TPM as another new experimental option. Or, of course, the Ubuntu desktop installer continues supporting manual (custom) partitioning as well.
β« Michael Larabel
I just use whatever Btrfs setup Fedora automatically recommends when I let it take over a disk β file systems for desktops seems a bit like a solved problem to me personally β but Iβm still curious what benefits, for instance, an OpenZFS setup could bring to a desktop user compared to Btrfs or a basic Ext4 setup. Why should a desktop user use OpenZFS?
The Snap Store, where containerized Snap apps are distributed for Ubuntuβs Linux distribution, has been attacked for months by fake crypto wallet uploads that seek to steal usersβ currencies. As a result, engineers at Ubuntuβs parent firm are now manually reviewing apps uploaded to the store before they are available.
The move follows weeks of reporting by Alan Pope, a former Canonical/Ubuntu staffer on the Snapcraft team, who is still very active in the ecosystem. In February, Pope blogged about how one bitcoin investor lost nine bitcoins (about $490,000 at the time) by using an βExodus Walletβ app from the Snap store. Exodus is a known cryptocurrency wallet, but this wallet was not from that entity. As detailed by one user wondering what happened on the Snapcraft forums, the wallet immediately transferred his entire balance to an unknown address after a 12-word recovery phrase was entered (which Exodus tells you on support pages never to do).
β« Kevin Purdy at Ars Tecnhica
Cryptocurrency, or as I like to call it, MLMs for men, are a scammerβs goldmine. Itβs a scam used to scam people. Add in a poorly maintained application store like Ubuntuβs Snap Store, and itβs dangerous mix of incompetence and scammers. I honestly thought Canonical already nominally checked the Snap Store β as one of its redeeming features, perhaps its only redeeming feature β but it turns out anyone could just upload whatever they wanted and have it appear in the store application on every Ubuntu installation. Excellent.
Today, Canonical announced the general availability of Legacy Support, an Ubuntu Pro add-on that expands security and support coverage for Ubuntu LTS releases to 12 years. The add-on will be available for Ubuntu 14.04 LTS onwards.Β
Long term supported Ubuntu releases get five years of standard security maintenance on the main Ubuntu repository. Ubuntu Pro expands that commitment to 10 years on both the main and universe repositories, providing enterprises and end users alike access to a vast secure open source software library. The subscription also comes with a phone and ticket support tier. Ubuntu Pro paying customers can purchase an extra two years of security maintenance and support with the new Legacy Support add-on.
β« Canonical blog
Assuming all of this respects the open source licenses of the countless software packages that make up Ubuntu, this seems like a reasonable way to offer quite a long support lifecycle for those that really need it. Such support doesnβt come free, and it I think itβs entirely reasonable to try and get compensated for the work required in maintaining that level of support for 10 or 12 years.
If you want this kind of longevity from your Linux installation without paying for it, youβll have to maintain it yourself. Seems reasonable to me.