Navigation

Language Selection

Search

Apple Wipes

Submitted by Roy Schestowitz on Friday 5th of October 2018 08:53:30 AM Filed under

Hardware
Mac

New Macbooks and Imacs will brick themselves if they think they're being repaired by an independent technician

Apple does not tell its customers that the computers it sells are designed to punish them for opting to get their property repaired by independent technicians; the details of the T2 came from a leaked service manual.
Apple's New Proprietary Software Locks Kill Independent Repair on New MacBook Pros

Apple has introduced software locks that will effectively prevent independent and third-party repair on 2018 MacBook Pro computers, according to internal Apple documents obtained by Motherboard. The new system will render the computer “inoperative” unless a proprietary Apple “system configuration” software is run after parts of the system are replaced.
Apple preventing third-party iMac Pro & 2018 MacBook Pro repairs, internal document says

Apple says this new guideline applies to MacBook Pro machines that have display assembly, logic board, top case, and Touch ID board repairs. For the iMac Pro, the System Configuration software must be used if the Logic Board or flash storage are replaced.
Bloomberg claims China spied on Apple, Amazon using server chips

Apple and Amazon have issued detailed denials about an investigation by the news agency Bloomberg which claims that chips implanted in servers made by Chinese PC manufacturer SuperMicro Computer - and which were also supplied to a company named Elemental which Amazon acquired - were used to spy on the companies, and also a number of government agencies.
There's No Good Fix If the Supply Chain Gets Hacked [sic]

A major report from Bloomberg on Thursday describes an infiltration of the hardware supply chain, allegedly orchestrated by the Chinese military, that reaches an unprecedented geopolitical scope and scale—and may be a manifestation of the tech industry's worst fears. If the details are correct, it could be a nearly impossible mess to clean up.

Login or register to post comments
Printer-friendly version
5403 reads
PDF version

More on Apple

Submitted by Roy Schestowitz on Friday 5th of October 2018 01:48:51 PM.

Chinese spies reportedly used microchips to infiltrate Apple and Amazon

The operation saw a branch of China's armed forces, known as the People's Liberation Army, forcing Chinese manufacturers to insert chips the size of a grain of rice into US-designed servers during the equipment manufacturing process, the report claims.
The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies

The attack by Chinese spies reached almost 30 U.S. companies, including Amazon and Apple, by compromising America’s technology supply chain, according to extensive interviews with government and corporate sources.

Apple Blocking Third-Party Repairs On New MacBook Pros

Submitted by Roy Schestowitz on Friday 5th of October 2018 02:52:11 PM.

Apple Blocking Third-Party Repairs On New MacBook Pros With Diagnostics Software

Apple is using new proprietary software diagnostic tools that make it harder to conduct third-party repairs on iMac Pro and 2018 MacBook Pro.

This software ensures that if a device undergoes key part repairs from an unauthorized service provider, it will result in an “inoperative system and an incomplete repair.”

Apple Admits It Got Cracked

Submitted by Roy Schestowitz on Saturday 6th of October 2018 01:46:57 PM.

Facebook And Apple Confirm Their Servers Were Hit By Chinese Malware

In a bombshell report earlier this week, Bloomberg revealed that tiny spy chips were planted on Apple and Amazon’s servers by Chinese spies. And yesterday, we saw official responses from the company strongly denying the occurrence of such an incident. The servers in question were made by Supermicro.

Now the latest report tells us that some of those servers were also infiltrated with malware. Both Apple and Facebook have confirmed this fact. However, let me clarify that this malware attack doesn’t mention any involvement of an alleged spy chip.

Facebook says that it found the compromised servers in 2015 and the malware was present on “a limited number of Supermicro hardware” that was used only “for testing purposes confined to our labs.”
The Big Hack: The Software Side of China’s Supply Chain Attack

Even as Amazon, Apple, and U.S. officials were investigating malicious microchips embedded in Supermicro server motherboards, Supermicro was the target of at least two other possible forms of attack, people familiar with multiple corporate probes say.

The first of the other two prongs involved a Supermicro online portal that customers used to get critical software updates, and that was breached by China-based attackers in 2015. The problem, which was never made public, was identified after at least two Supermicro customers downloaded firmware—software installed in hardware components—meant to update their motherboards’ network cards, key components that control communications between servers running in a data center. The code had been altered, allowing the attackers to secretly take over a server’s communications, according to samples passed around at the time among a small group of Supermicro customers. One of these customers was Facebook Inc.

More in Tux Machines

Server: HTTP Clients, IIS DDoS and 'DevOps' Hype From Red Hat

What are good command line HTTP clients?

The whole is greater than the sum of its parts is a very famous quote from Aristotle, a Greek philosopher and scientist. This quote is particularly pertinent to Linux. In my view, one of Linux’s biggest strengths is its synergy. The usefulness of Linux doesn’t derive only from the huge raft of open source (command line) utilities. Instead, it’s the synergy generated by using them together, sometimes in conjunction with larger applications. The Unix philosophy spawned a “software tools” movement which focused on developing concise, basic, clear, modular and extensible code that can be used for other projects. This philosophy remains an important element for many Linux projects. Good open source developers writing utilities seek to make sure the utility does its job as well as possible, and work well with other utilities. The goal is that users have a handful of tools, each of which seeks to excel at one thing. Some utilities work well independently. This article looks at 4 open source command line HTTP clients. These clients let you download files over the internet from the command line. But they can also be used for many more interesting purposes such as testing, debugging and interacting with HTTP servers and web applications. Working with HTTP from the command-line is a worthwhile skill for HTTP architects and API designers. If you need to play around with an API, HTTPie and curl will be invaluable.
Microsoft publishes security alert on IIS bug that causes 100% CPU usage spikes

The Microsoft Security Response Center published yesterday a security advisory about a denial of service (DOS) issue impacting IIS (Internet Information Services), Microsoft's web server technology.
5 things to master to be a DevOps engineer

There's an increasing global demand for DevOps professionals, IT pros who are skilled in software development and operations. In fact, the Linux Foundation's Open Source Jobs Report ranked DevOps as the most in-demand skill, and DevOps career opportunities are thriving worldwide. The main focus of DevOps is bridging the gap between development and operations teams by reducing painful handoffs and increasing collaboration. This is not accomplished by making developers work on operations tasks nor by making system administrators work on development tasks. Instead, both of these roles are replaced by a single role, DevOps, that works on tasks within a cooperative team. As Dave Zwieback wrote in DevOps Hiring, "organizations that have embraced DevOps need people who would naturally resist organization silos."

Purism's Privacy and Security-Focused Librem 5 Linux Phone to Arrive in Q3 2019

Initially planned to ship in early 2019, the revolutionary Librem 5 mobile phone was delayed for April 2019, but now it suffered just one more delay due to the CPU choices the development team had to make to deliver a stable and reliable device that won't heat up or discharge too quickly. Purism had to choose between the i.MX8M Quad or the i.MX8M Mini processors for their Librem 5 Linux-powered smartphone, but after many trials and errors they decided to go with the i.MX8M Quad CPU as manufacturer NXP recently released a new software stack solving all previous power consumption and heating issues.

Qt Creator 4.9 Beta released

We are happy to announce the release of Qt Creator 4.9 Beta! There are many improvements and fixes included in Qt Creator 4.9. I’ll just mention some highlights in this blog post. Please refer to our change log for a more thorough overview.

Hack Week - Browsersync integration for Online

Recently my LibreOffice work is mostly focused on the Online. It's nice to see how it is growing with new features and has better UI. But when I was working on improving toolbars (eg. folding menubar or reorganization of items) I noticed one annoying thing from the developer perspective. After every small change, I had to restart the server to provide updated content for the browser. It takes few seconds for switching windows, killing old server then running new one which requires some tests to be passed. Last week during the Hack Week funded by Collabora Productivity I was able to work on my own projects. It was a good opportunity for me to try to improve the process mentioned above. I've heard previously about browsersync so I decided to try it out. It is a tool which can automatically reload used .css and .js files in all browser sessions after change detection. To make it work browsersync can start proxy server watching files on the original server and sending events to the browser clients if needed.

Latest News

GhostBSD: A Solid Linux-Like Open Source Alternative

Overall, aside from the system tools and the installation process, I did not see much not to like in running this BSD operating system. I experienced some annoyance when things failed to work just right, but I felt no frustrations that led me to give up on trying to use GhostBSD or find solutions to mishaps. I could provide a litany of Linux distros that did not measure up that well. Some lingering problems for which I am still seeking workarounds are why my USB storage drives intermittently are not recognized and fail to mount. Another issue is why some of the preinstalled applications do not fully load. They either do not respond to launching at all, or crash before fully displaying anything beyond a white application window.

Android Leftovers

Games: Baba Is You, Snakebird Primer, Hell is Other Demons, Robocraft, Cartacombs, 9 Monkeys of Shaolin and ASTROKILL

Baba Is You, an award winning puzzle game is heading to Linux next month

Baba Is You, a puzzle game with over 200 levels that won multiple awards is coming to Linux next month and it does look pretty unique. Originally created for the Nordic Game Jam 2017 which it won, it also won the Excellence in Design and Best Student Game awards at the Independent Games Festival 2018. It was a finalist for other awards too, so you know it's going to be something good. They've fully confirmed Linux support in their announcements, so it's quite exciting.
Casual puzzle game 'Snakebird Primer' is out with Linux support

For those who like their sweet casual puzzle games, Snakebird Primer has released today with Linux support.
Hell is Other Demons looks like a mental bullet-hell platformer coming to Linux

Hell is Other Demons from Swedish developer Cuddle Monster Games and publisher Kongregate might not be out for a few months yet but it sure does look exciting. Only announced yesterday, this bullet-hell action platformer has a seriously good style going for it, plus it mixes in a fantastic sounding synthwave soundtrack to hype up the experience.
Robocraft, the fun free customisable robot battler has a huge agility physics overhaul

This is something Robocraft has needed for a while, as some builds felt a little unfair previously when seriously powered up and also ridiculously fast. Feeling is believing though, they said it themselves you really do have to play it to see just how different it is with this change. They also recently introduced a starting "CPU limit" (the overall power of your robot) to the garages where you store them of 750 which is pretty low. They say this is to help newer players start off small and each garage can be upgraded using Robits (which you earn from playing the game), so it gives the feeling of more progression too.
Cartacombs, an endless runner-shooter with you sat in a minecart is out

Cartacombs from YawningDad is a rather simple endless runner-shooter that's now out with Linux support.
The good looking beat 'em up 9 Monkeys of Shaolin still coming to Linux, releasing later this year

While 9 Monkeys of Shaolin did have a pretty big delay, Sobaka Studio have just recently announced a new release date (including Linux support) along with help from Koch Media. Originally, it was supposed to release last Fall and they didn't give a reason for the delay but their latest announcement mentions "9 Monkeys of Shaolin will be released in the third quarter of 2019".
Impressive space combat sim 'ASTROKILL' has its first major update in a year

ASTROKILL, the Unreal Engine powered and impressive space combat sim is alive again, with a major update now available for this Early Access game. With this fresh update out it brings in an upgraded Unreal Engine to 4.21.1, a completely new HUD with customisable colours, all asteroids and debris have been given a makeover to be more varied and realistic, mission loading time has been reduced, 4K display support, a new objectives system, new objectives in various missions, AI improvements and quite a lot more.

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Support Tux Machines

Help Support TM
Wall of Appreciation

Softpedia News

Gizmoz

LXer

Linux Journal

Linux Today

Ars

LinuxSecurity.com Advisories

Debian

It's FOSS

OMG! Ubuntu!

GamingOnLinux

Slashdot

DW Latest Releases

DistroWatch

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

FSF

Ubuntu Buzz

LinuxLinks

Content available under CC-BY-SA

Navigation

Language Selection

Search

Tux Machines Section/s

Authors Information

LWN

Active forum topics

Phoronix

OpenSource.com

Linux Gizmos

Insider

Linux.com

Kde Planet

Fedora Magazine