Debian: IMA/EVM Certificates and EasyOS Updates

• Russell Coker: IMA/EVM Certificates

  I’ve been experimenting with IMA/EVM. Here is the Sourceforge page for the upstream project [1]. The aim of that project is to check hashes and maybe public key signatures on files before performing read/exec type operations on them. It can be used as the next logical step from booting a signed kernel with TPM. I am a long way from getting that sort of thing going, just getting the kernel to boot and load keys is my current challenge and isn’t helped due to the lack of documentation on error messages. This blog post started as a way of documenting the error messages so future people who google errors can get a useful result. I am not trying to document everything, just help people get through some of the first problems. I am using Debian for my work, but some of this will apply to other distributions (particularly the kernel error messages). The Debian distribution has the ima-evm-utils but no other support for IMA/EVM. To get this going in Debian you need to compile your own kernel with IMA support and then boot it with kernel command-line options to enable IMA, in recent kernels that includes “lsm=integrity” as a mandatory requirement to prevent a kernel Oops after mounting the initrd (there is already a patch to fix this).

• Flsynclient compiled in OE for next Easy

  Psynclient is a good idea, it is a shell script that uses gtkdialog. But we have had trouble with it. We used to use 'flsynclient', which is a compiled binary that uses the FLTK GUI library. Back in the Pyro-series, I compiled it in OpenEmbedded, but failed in the Dunfell OE. FLTK is a C++ library, and a change in the GNU compiler broke the build in the OE cross-compile environment.

• Foomatic PPDs now in EasyOS

  ...his post has a link to another post, reporting "filter failure". I don't know about that, however a first step will be to put all the PPDs into EasyOS. I previously thought that I had to install 'foomatic-db-engine' and 'foomatic-db' to get the PPDs, however, Debian has a DEB with them already extracted, named 'foomatic-db-compressed-ppds' -- which does not require the previous two DEBs. There is a package 'foomatic-filters', which provides an executable 'foomatic-rip', however, 'cups-filters' provides that executable. So also, 'foomatic-filters' is not required.

Android Leftovers

• You can now play N-Gage games on your phone with this emulator

• Android Gaming Headlines: Mighty Doom, Genshin Impact 1.5, Call of Duty Mobile, and More - Droid Gamers

• 14 new (and 1 WTF) Android games from the last week: The best, worst, and everything in between (4/12/21 - 4/18/21)

• Best New Android Games This Week: Company of Heroes: Opposing Fronts, Chaser Tracer, Play Together, and More - Droid Gamers

• Best Android tablets to consider before committing to iPad Pro 2021 - SlashGear

• Mecool KT1 4K AV1 capable Android TV STB ships with DVB-T2 tuner - CNX Software

• Sony launches its first 32-inch BRAVIA Android TV in India | NewsBytes

• How to Use Android Phones as Webcams for Better Quality Video Calls | Tech Times

• [Updated] Want to disable Tab Groups in Chrome on Android? Here's how

LuxCoreRender 2.5 OptiX Performance Tested With 19 NVIDIA GPUs

Released last week was the LuxCoreRender 2.5 open-source physically based renderer. Significant with this v2.5 update is OptiX/RTX acceleration support in addition to its existing CUDA, OpenCL, and CPU render paths. Given that, here are some fresh benchmarks of LuxCoreRender 2.5 across an assortment of NVIDIA graphics cards. Version 2.5 is another exciting update to this exciting open-source PBR renderer that is competitive with the commercial renderers. In today's article is a look at the GPU-accelerated (OptiX) performance with an assortment of nineteen different NVIDIA GeForce graphics cards on hand for providing some reference results around the performance.

Software: GNOME Commander, LuxCoreRender, System Cleaning Tools, and ledger2beancount

• GNOME Commander 1.12.1 Is Released

  GNOME Commander is a graphical file manager in the two-pane style. It is like a graphical version of the GNU Midnight Commander. Boomers will remember this style of file managers from classic DOS software such as the Norton Commander. The latest version has six small bug-fixes and minor updates to the translations for five different languages. [...] GNOME Commander is very efficient if you want to select ten files from a folder with dozens and move them around - as long as you are willing to use the keyboard. It's not really very efficient or elegant to use with a mouse. The GNU Midnight Commander is a almost identical non-GUI alternative if you like this style of file managers.

• LuxCoreRender 2.5 OptiX Performance Tested With 19 NVIDIA GPUs - Phoronix

  Released last week was the LuxCoreRender 2.5 open-source physically based renderer. Significant with this v2.5 update is OptiX/RTX acceleration support in addition to its existing CUDA, OpenCL, and CPU render paths. Given that, here are some fresh benchmarks of LuxCoreRender 2.5 across an assortment of NVIDIA graphics cards.

• List Of System Cleaning Tools For Ubuntu

  Let’s have a quick look into the list of system cleaning tools for Ubuntu and Ubuntu based operating systems in 2021.

• Martin Michlmayr: ledger2beancount 2.6 released

  I released version 2.5 of ledger2beancount, a ledger to beancount converter.