Normal view

There are new articles available, click to refresh the page.
Today — 24 November 2024FOSS

Compulab’s UCM-iMX95 with NXP i.MX 95 Processor, Real-Time Cortex-M7, and eIQ Neutron NPU

24 November 2024 at 03:25
The UCM-iMX95, a compact System-on-Module by Compulab, is built around the NXP i.MX 95 processor, leveraging ARM Cortex-A55 cores clocked at up to 2.0 GHz. Optimized for industrial applications, it delivers robust performance in graphics, image processing, and artificial intelligence workloads. This ultra-compact System-on-Module, measuring just 28 x 40 mm, integrates up to six Cortex-A55 […]

Milk-V Launches MILK-V Megrez PC, Starting at $199.00

24 November 2024 at 01:29
The Milk-V Megrez, first announced in August this year, is recognized as one of the first RISC-V hardware hypervisors available in the market. It features a compact Mini-ITX form factor, support for up to 32 GB of LPDDR5 memory, multiple storage interfaces, and dual LAN Ethernet ports. The Milk-V Megrez incorporates the ESWIN EIC7700X system-on-chip. […]
Yesterday — 23 November 2024FOSS

Microsoft Continues "Demikernel" Development LibOS For Kernel-Bypass I/O

23 November 2024 at 21:35
A Microsoft Research project that was quietly announced a few years ago to some fanfare but not hearing much about since has been Demikernel as their library OS architecture for kernel-bypass I/O. A Phoronix reader brought up Demikernel this week and while it hasn't been talked about much in recent years it does remain under active development with the most recent commits as of hours ago...

invisCAM A Compact 2MP Camera for Low Light and Low Power Applications

23 November 2024 at 11:54
This month, Arducam introduced the invisCAM, a compact imaging solution that integrates advanced functionality and precise engineering within a small form factor. The camera is designed to address the challenges of achieving high-quality imaging, functional versatility, and cost efficiency in a portable USB device. The invisCAM features a Sony STARVIS 2MP image sensor with a […]

Coin-sized ESP32-H2-WROOM-07 RISC-V Module with BLE, Thread, and Zigbee Support for $2.13

23 November 2024 at 11:14
The ESP32-H2-WROOM-07 is a compact module featuring a RISC-V single-core 32-bit microprocessor and support for Bluetooth Low Energy. It can be configured with up to 4 MB of flash memory and is designed for applications such as smart home systems, industrial automation, and consumer electronics. Measuring just 8.5 × 12.7 × 2.6 mm, the ESP32-H2-WROOM-07 […]

Waveshare RoArm-M2 ESP32 robotic arms offer four degrees of freedom, various servo options

23 November 2024 at 10:23
RoArm M2 Series Robotic Arm

Waveshare has recently launched the RoArm-M2-S and RoArm-M2-Pro ESP32 robotic arms with four degrees of freedom, or 4-DOF for short. The main difference is that the RoArm-M2-S is equipped with standard servos, while the RoArm-M2-Pro features all-metal ST3235 bus servos, adding more durability and performance. Designed for educational and robotics applications, the 4-DOF RoArm-M2 is sturdy yet lightweight, built using carbon fiber and aluminum alloy. It can handle payloads up to 0.5kg and has a workspace diameter of 1 meter. The arm offers high precision with a 12-bit magnetic encoder and dual-drive technology for improved torque and stability. On top of that, it features a 12-bit magnetic encoder and dual-drive technology for improved torque and stability. Other features include a 360° omnidirectional base and support for both wireless (WiFi, ESP-NOW) and wired (USB) control. These features make this device suitable for various applications including industrial automation, education, research, and DIY robotics projects. Waveshare [...]

The post Waveshare RoArm-M2 ESP32 robotic arms offer four degrees of freedom, various servo options appeared first on CNX Software - Embedded Systems News.

FreeBSD 14.2-RC1 Available

23 November 2024 at 07:00
The first RC build for the FreeBSD 14.2 release cycle is now available. ISO images for the amd64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv7, aarch64, and riscv64 architectures are FreeBSD mirror sites.

This Week in Matrix 2024-11-22

By: Thib
22 November 2024 at 07:00

Matrix Live

Today's Matrix Live: https://youtube.com/watch?v=O_bChwDHE3U

Dept of Status of Matrix 🌡️

Thib (m.org) announces

We want to know everything about the bugs you squashed, the features you developed, and the docs you wrote. And even better, not only do we want to know about it, we want you to tell the Matrix community about it during our FOSDEM Fringe event, or even to tell the world about it in our FOSDEM Devroom!

Our Call for Proposals is still open for the DevRoom until December 1, so don't miss your chance to advertise your project!

But we're not limiting our presence to a DevRoom, we will also organize a fringe event before FOSDEM and have a booth during the wole event. Want to grab a limited edition T-shirt? Now's your chance to sign-up and help us staff the booth. All details are in our blog post.

Dept of Spec 📜

TravisR reports

Here's your weekly spec update! The heart of Matrix is the specification - and this is modified by Matrix Spec Change (MSC) proposals. Learn more about how the process works at https://spec.matrix.org/proposals.

MSC Status

New MSCs:

MSCs in Final Comment Period:

  • No MSCs are in FCP.

Accepted MSCs:

  • No MSCs were accepted this week.

Closed MSCs:

  • No MSCs were closed/rejected this week.

Spec Updates

The SCT continues to work towards the next spec release, expected in mid-December with Account Suspension, backwards compatibility for captions, and likely some further work towards Matrix 2.0 in the form of crypto MSCs.

Folks are encouraged to raise their MSCs for review in the SCT Office as soon as they feel it's ready for broad review. This helps ensure there are minimal process delays, and feedback can be incorporated into the feature design early. This is especially important for Matrix 2.0 MSCs, which the SCT hopes to be able to release in the new year.

In other news, the SCT had its last workshop this week to set expectations for how the team works. Next steps here are to compile conclusions into a document, check everything over, then find a place to ship that document for everyone to read. This effort has been important to help ensure the SCT is most effective at what it does, and identifying areas where the Foundation more broadly may be able to help. Watch this space for updates.

Dept of Servers 🏢

Synapse (website)

Synapse is a Matrix homeserver implementation developed by Element

Olivier 'reivilibre' says

Hello! Synapse 1.120.0rc1 was cut this week, with Synapse 1.120.0 intended to be released next week. A noteworthy change in this version of Synapse is that authenticated media will now be enforced by default. For people running homeservers that want to gracefully support older clients and older federated homeservers (which still make unauthenticated requests for media), you might still want to turn this enforcement off; see the upgrade notes for details.

With that said, for homeservers in the open federation, it's worth noting that matrix.org has been running like this since September, so by now it's very likely that most clients and homeservers already support authenticated media and there'd be no need to turn it off. This option will likely vanish in the future, but we're not yet sure when. Track this issue if you're interested.

Dept of Clients 📱

Tammy

Benedict says

Tammy 1.0.4 has been released with a bunch of improvements. We added a nice wizard for account setup after initial login. We also introduced sharing media into Tammy on Android. Web does support emojis and file upload/download now and therefore is on its way out of the Beta. Of course, we have also fixed a few bugs.

kazv (website)

kazv is a convergent matrix client and instant messaging app.

tusooa🏔️ says

kazv 0.6.0 is released. It depends on libkazv v0.8.0 which has fixed a security vulnerability. It also comes with many new features such as better support for stickers, reactions, and media file handling.

Element X Android (website)

Android Matrix messenger application using the Matrix Rust SDK and Jetpack Compose.

benoit reports

  • Element X Android v0.7.4 is on the PlayStore (beta channel). Please see the changelog here: https://github.com/element-hq/element-x-android/releases/tag/v0.7.4. Will be pushed to prod on Monday.
  • Working on media caption at the moment: users will be also able to write a caption for files and audio files. They will be rendered in the timeline. Also it will be possible to add a caption after the media has been sent. Removing a caption or editing a caption will be possible too
  • Making progress on room knocks AKA ask to join. There is still work to do on the SDK and the application is getting the latest polish.
  • We are also fixing bugs and recent regressions among our 170k+ SLOC.
  • Last but not least, the send button has been refreshed and is now very glossy!

Extera

OfficialDakari announces

Today, new development version of Extera is out - 1.0-DEV-D5XQW.

Here is what changed since last TWIM post:

  • New versioning scheme. We rolled back to 1.0 and started marking development versions with date in 36-richered number system. A first stable release is soon.
  • Changed reaction colors. Not very heavy change, but improves usability a lot.
  • Removed backdrop blurs in dialogs. They were unnecessary and didn't fit in the UI.
  • Added more animations. Opening emojiboard now has an animation for it.
  • Remade polls. Polls were Extera's first feature, which I added when I didn't know React as good as now. Fixed displaying vote counts, ending polls etc.
  • Added sending polls. Back in summer, when polls were only added, you could only receive & vote in polls. Now Extera can also send polls.
  • Also, we made a few changes to our website and opened it's source code.

The latest version is already live at app.extera.xyz. Source code is always available here.

Dept of Widgets 🧩

Matrix Widget Toolkit (website)

Michael Weimann (n.io) says

Matrix Widget Toolkit is a framework for creating Matrix widgets.

We have released new versions of our matrix-widget-toolkit packages.

Highlights

🎨 Better Element Web design integration: Element Web is currently the most commonly used hosting client for widgets. At the moment, Element Web is moving the designs towards the Element Compound design system. In this toolkit release, the primary (green) and error (red) colours and the avatar colours have been matched with the Compound design system.

🚀 To the future: The popular lodash library seems to be unmaintained. Also nowadays many functions are built in to the ECMAScript standard or Browser APIs. We therefore decided to remove the lodash dependency. Most uses are replaced by native functions. What could not be replaced is now provided by a utils module in each package. Last but not least, one less dependency.

All the packages can be found in the releases section of our repo.

You can see a demo of what the toolkit can do using our demo widget.

If you have any questions or feedback, please reach out to us using our public room #nordeck:matrix.org.

Dept of VoIP 🤙

Element Call (website)

Native Decentralised End-to-end Encrypted Group Calls in Matrix, as a standalone web app

Robin says

Hello TWIM!

You may be wondering: "Why hasn't there been a post from the Element VoIP Team in so long?" A fair question! We've been asking ourselves the same, especially since so much has happened. Over the past month, we've been deep down the rabbit hole, working hard to solidify the Element Call experience.

Our mission? To banish issues like gray tiles, missing participants, and lost media—for good! (Well, at least issues we can identify and control…)

This behind-the-scenes work wasn't exactly flashy, but it was crucial. Here's what we've been tackling to make Element Call more stable than ever:

  • Encryption key issues: Fixes to ensure keys don't get lost between the client and widget.
  • State resolution complexities: Matrix state resolution can lead to scenarios EC struggles with. While Simplified Sliding Sync helps here, getting everything to work as reliably as we need for EC took some work.
  • Edge case fixes: Numerous small changes in widget communication and the SPA (Single Page Application) to iron out tricky corner cases.

Looking forward, these foundational improvements open doors for bigger steps—like making EC more secure and fully leveraging its Matrix backing.

Other key updates:

  • We've improved mobile ringing, though there's still work ahead making DM calls behave like a telephone call.
  • Load times for the widget and app have been significantly improved, making calls snappier to start.
  • Tiles now stay in a stable order to make for a more focused call experience.

With all that groundwork laid, let's get to the fun stuff !

New Features🎉

Our latest release introduces several usability enhancements and fun additions that make calling over Matrix even better:

  • Fast camera switching: on mobile. Easily switch cameras with a dedicated button.
  • Emoji reactions! 👏🤘🐱🐶 With playful sound effects that keep the mood lighthearted.
  • Raise hand feature: Now you can raise your hand during calls! (Includes an experimental timer—feedback welcome on whether it's helpful or confusing.)

Exciting Milestones

Even on stable Element Web, you can now start an Element Call-based call—a huge step forward for the quest to ship MatrixRTC!

Not all of our recent stability improvements have made it into this release (some depend on Synapse, JS-SDK, or other updates), but we're taking care to roll them out thoughtfully to ensure a smooth experience.

Now's a great time to give Matrix calling a try! Jump into Element X or even stable Element Web and start a call. We can't wait to hear your thoughts.

Happy calling! 🚀

Dept of SDKs and Frameworks 🧰

matrix-rust-sdk (website)

Next-gen crypto-included SDK for developing Clients, Bots and Appservices; written in Rust with bindings for Node, Swift and WASM

bnjbvr says

@this-week-in:matrix.org

We have released a new version of the Matrix Rust SDK this week: you can now update it to version 0.8.0!

This is the first version we're releasing using our brand new release process, so changelogs are still a bit rough, but this new release process should also help with hopefully getting more frequent releases (with fewer large breaking changes, better changelogs over time, etc.).

Notable new changes include:

  • There are new APIs in town to observe the latest event of a single type: Client::observe_events and Client::observe_room_events (docs).
  • The media cache has been moved over to a new store, called the EventCacheStore; it may be configured when creating a new client using StoreConfig::event_cache_store.
  • The send queue now has the ability to upload medias, and reflect ongoing uploads as local echoes.
  • The implementation of invisible crypto is moving along nicely, with new methods to pin a UserIdentity, listen to identity changes etc.

Full changelog for the main crate. Note we now have changelog files for every other crate we do publish.

libkazv (website)

libkazv is a matrix client sdk built upon lager and the value-oriented design it enables.

tusooa🏔️ announces

libkazv 0.8.0 is released. It uses the vodozemac crypto library instead of the deprecated olm, and fixes a security vulnerability that might have allowed the replacement of the session key of a megolm session. There are also several small enhancements.

Elm SDK (website)

A more consistent alternative to the matrix-js-sdk, written in Elm.

Bram says

Elm SDK beta 3.6.1

The Elm SDK has a patch update, fixing trailing slashes at the end of the URL.

Most of the work for the Elm SDK is fixing bugs where the spec doesn't match the ecosystem. Synapse doesn't sanitize user IDs over federation, for example, which leads to unspecified JSON results. This is currently in the testing phase, but this refactor means a second patch update might appear soon.

  • ❌️ Downside: This means more work for me.
  • ✅️ Upside: The Elm SDK will be able to count numbers and determine the scope of these problems.

Once the Elm SDK has appropriately adapted to some problems like these, I will report my findings, hopefully offering the Spec Core Team some statistics that can help them make decisions when making breaking migration changes. For now, however, this week's patch update exclusively fixes a bug! 🐛

Dept of Services 🚀

Synapse Admin

Aine [don't DM] reports

A while back, we at etke.cc announced our Synapse-Admin fork, and this week, we're excited to share more new features and QoL changes!

Add "Assign Admin" button

Using the Make Room Admin API endpoint, you can now assign room admins to Matrix rooms. This feature works only if there is at least one local member (preferably with a room admin power level) in that room.

Add preferred color themes to login page and footer

This update brings something small but special: a proper dark theme across the whole Synapse Admin app 🎉.

Previously, the Login page had a light background even when your browser was configured to prefer dark mode. The same was true for the footer, which was overwhelmingly bright.

Fellow dark mode enjoyers, the inconvenience is no more—both the Login page and footer now use your preferred theme colors!

Documentation for configuration

Not a new feature, but one that may help a lot—we hope you find this useful! We've added documentation for all config options and example configs for reverse proxies. The latter is a bit lacking, containing examples only for basic cases with Nginx and Traefik, so PRs are greatly appreciated.

Source code, admin.etke.cc (CDN version), and don't forget to say hi in the #synapse-admin:etke.cc

Dept of Bots 🤖

I Don't Have Spotify Maubot

HarHarLinks announces

Do people sometimes share links to music with you on Matrix? They do for me. Often, people use Spotify as their music streaming service, but I don't have Spotify.

Last week I came across sjdonado's I don't have Spotify webapp which conveniently exposes a REST API that allows you to easily query things, and is selfhostable open source software.

So easy enough I spent yesterday afternoon tinkering a quick maubot plugin that does the job for you: https://github.com/HarHarLinks/maubot-idonthavespotify.

Here is what it looks like in action:

Baibot

Slavi says

baibot and its underlying framework library (mxlink) have been adapted to the new v0.8.0 release of the Rust-based matrix-sdk.

This brings Matrix authenticated media support, so:

  • baibot can now be used on existing homeservers which already enable authenticated media (like matrix.org)
  • there's one less blocker preventing admins from enabling authenticated media on their homeserver

Dept of Events and Talks 🗣️

Matrix Retreat 2025: Workation in Thailand

Yan says

Following the success of the Matrix Retreat in Austria 2024, we are organizing the next iteration: a workation for those passionate about Matrix, messengers, and distributed technology.

Details:

  • When: Between FOSDEM (February 1–2, 2025) and FOSSASIA (March 13–15, 2025) joining partially is possible
  • Where: Koh Phangan, Thailand

This is an excellent opportunity to collaborate with like-minded professionals in a productive yet relaxed environment.

How to Get Involved:

  1. Join our videocall: on 24th November 6pm CEST
  2. Connect via Matrix for updates and coordination:

We look forward to collaborating with you on this exciting initiative.

Dept of Interesting Projects 🛰️

matrix-sdk-redis

andybalaam says

matrix-sdk-redis is a new Rust crypto store implementation, allowing you to use matrix-rust-sdk and store your Matrix crypto information in a Redis store, avoiding the need for a filesystem. It's highly experimental and has some significant known gaps, but it seems to work. Version 0.1.1 is out now. Find out more at https://codeberg.org/andybalaam/matrix-sdk-redis

Element Web Guest Module (website)

Michael Weimann (n.io) reports

The Element Guest Module in conjunction with the Synapse Guest Module allows visitors to your homeserver to automatically register a temporary account with some capabilities that go beyond standard Matrix guest users.

Element Web 1.11.84 now includes the matrix-react-sdk as part of the Element Web repo (PR). We have released a new version of the guest module adapting to the change, that works with Element Web 1.11.84 (or later).

All the packages of our Element Web modules can be found in the releases section of our repo.

If you have any questions or feedback, please reach out to us using our public room #nordeck:matrix.org.

TARDIS

Matthew announces

I wrote a new experimental DAG visualisation layout algorithm for TARDIS, loosely based on git-style 'tramline' branching visualisations. It can handle massively complex DAG structures, useful when debugging exotic state resolution problems or fork-proliferation problems.

So for instance, the layout of an Element Call-related DAG explosion that TARDIS entirely failed to visualise last week, which looked like this:

Now looks like this

Matrix in the News 📰

Thib (m.org) announces

Computer Weekly covered the story of ePost, a service from the Swiss Post based on Matrix targeting a million users

Matrix Federation Stats

Aine [don't DM] reports

collected by MatrixRooms.info - an MRS instance by etke.cc

As of today, 10384 Matrix federateable servers have been discovered by matrixrooms.info, 3171 (30.5%) of them are publishing their rooms directory over federation. The published directories contain 21165 rooms.

Stats timeline is available on MatrixRooms.info/stats

How to add your server | How to remove your server

Dept of Ping

Here we reveal, rank, and applaud the homeservers with the lowest ping, as measured by pingbot, a maubot that you can host on your own server.

#ping:maunium.net

Join #ping:maunium.net to experience the fun live, and to find out how to add YOUR server to the game.

RankHostnameMedian MS
1awawawawawawawawawawawawawawawawawawawawawawawawawawawawawawaw.gay183
2girlboss.ceo214
3puppygock.gay270.5
4ncat.cafe307
5uwu.zemos.net318
6rory.gay321.5
7transgender.ing329
8constellatory.net349
9ipv6.girlcock.systems353
10kif.rocks360

That's all I know

See you next week, and be sure to stop by #twim:matrix.org with your updates!

To learn more about how to prepare an entry for TWIM check out the TWIM guide.

AMD Linux Graphics Driver Now Allows Display Support With Modern GPUs On LoongArch

23 November 2024 at 00:11
Following the Linux 6.13 DRM feature pull this week that brought many new open-source kernel graphics driver features, it's now time to further stabilize that new feature code with fixes. Sent out today were a batch of fixes for the AMDGPU/AMDKFD kernel driver code targeting the early Linux 6.13 state. In addition to fixes though is also allowing the AMDGPU Display Core "DC" code to build properly on LoongArch hardware for allowing recent AMD Radeon GPUs to work on these Chinese systems...

Docker Desktop 4.36: New Enterprise Administration Features, WSL 2, and ECI Enhancements

22 November 2024 at 23:38

Key features of the Docker Desktop 4.36 release include: 

Docker Desktop 4.36 introduces powerful updates to simplify enterprise administration and enhance security. This release features streamlined macOS sign-in enforcement via configuration profiles, enabling IT administrators to deploy tamper-proof policies at scale, alongside a new PKG installer for efficient, consistent deployments. Enhancements like the unified WSL 2 mono distribution improve startup speeds and workflows, while updates to Enhanced Container Isolation (ECI) and Desktop Settings Management allow for greater flexibility and centralized policy enforcement. These innovations empower organizations to maintain compliance, boost productivity, and streamline Docker Desktop management across diverse enterprise environments.

2400x1260 4.36 rectangle docker desktop release

Sign-in enforcement: Streamlined alternative for organizations for macOS 

Recognizing the need for streamlined and secure ways to enforce sign-in protocols, Docker is introducing a new sign-in enforcement mechanism for macOS configuration profiles. This Early Access update delivers significant business benefits by enabling IT administrators to enforce sign-in policies quickly, ensuring compliance and maximizing the value of Docker subscriptions.

Key benefits

  • Fast deployment and rollout: Configuration profiles can be rapidly deployed across a fleet of devices using Mobile Device Management (MDM) solutions, making it easy for IT admins to enforce sign-in requirements and other policies without manual intervention.
  • Tamper-proof enforcement: Configuration profiles ensure that enforced policies, such as sign-in requirements, cannot be bypassed or disabled by users, providing a secure and reliable way to manage access to Docker Desktop (Figure 1).
  • Support for multiple organizations: More than one organization can now be defined in the allowedOrgs field, offering flexibility for users who need access to Docker Desktop under multiple organizational accounts (Figure 2).

How it works

macOS configuration profiles are XML files that contain specific settings to control and manage macOS device behavior. These profiles allow IT administrators to:

  • Restrict access to Docker Desktop unless the user is authenticated.
  • Prevent users from disabling or bypassing sign-in enforcement.

By distributing these profiles through MDM solutions, IT admins can manage large device fleets efficiently and consistently enforce organizational policies.

Screenshot of Enforced Sign-in Configuration Profile showing Description, Signed, Installed, Settings, Details, and Custom Settings.
Figure 1: macOS configuration profile in use.
Screenshot of macOS configuration profile showing "allowedOrgs"
Figure 2: macOS configuration profile in use with multiple allowedOrgs visible.

Configuration profiles, along with the Windows Registry key, are the latest examples of how Docker helps streamline administration and management. 

Enforce sign-in for multiple organizations

Docker now supports enforcing sign-in for more than one organization at a time, providing greater flexibility for users working across multiple teams or enterprises. The allowedOrgs field now accepts multiple strings, enabling IT admins to define more than one organization via any supported configuration method, including:

  • registry.json
  • Windows Registry key
  • macOS plist
  • macOS configuration profile

This enhancement makes it easier to enforce login policies across diverse organizational setups, streamlining access management while maintaining security (Figure 3).

Learn more about the various sign-in enforcement methods.

Screenshot of Sign-in required box, saying "Sign-in to continue using Docker Desktop. You must be a member of one of the following organizations" with Docker-internal and Docker listed.
Figure 3: Docker Desktop when sign-in is enforced across multiple organizations. The blue highlights indicate the allowed company domains.

Deploy Docker Desktop for macOS in bulk with the PKG installer

Managing large-scale Docker Desktop deployments on macOS just got easier with the new PKG installer. Designed for enterprises and IT admins, the PKG installer offers significant advantages over the traditional DMG installer, streamlining the deployment process and enhancing security.

  • Ease of use: Automate installations and reduce manual steps, minimizing user error and IT support requests.
  • Consistency: Deliver a professional and predictable installation experience that meets enterprise standards.
  • Streamlined deployment: Simplify software rollouts for macOS devices, saving time and resources during bulk installations.
  • Enhanced security: Benefit from improved security measures that reduce the risk of tampering and ensure compliance with enterprise policies.

You can download the PKG installer via Admin Console > Security and Access > Deploy Docker Desktop > macOS. Options for both Intel and Arm architectures are also available for macOS and Windows, ensuring compatibility across devices.

Start deploying Docker Desktop more efficiently and securely today via the Admin Console (Figure 4). 

Screenshot of Admin console showing option to download PKG installer.
Figure 4: Admin Console with PKG installer download options.

Desktop Settings Management (Early Access) 

Managing Docker Desktop settings at scale is now easier than ever with the new Desktop Settings Management, available in Early Access for Docker Business customers. Admins can centrally deploy and enforce settings policies for Docker Desktop directly from the cloud via the Admin Console, ensuring consistency and efficiency across their organization.

Here’s what’s available now:

  • Admin Console policies: Configure and enforce default Docker Desktop settings from the Admin Console.
  • Quick import: Import existing configurations from an admin-settings.json file for seamless migration.
  • Export and share: Export policies as JSON files to easily share with security and compliance teams.
  • Targeted testing: Roll out policies to a smaller group of users for testing before deploying globally.

What’s next?

Although the Desktop Settings Management feature is in Early Access, we’re actively building additional functionality to enhance it, such as compliance reporting and automated policy enforcement capabilities. Stay tuned for more!

This is just the beginning of a powerful new way to simplify Docker Desktop management and ensure organizational compliance. Try it out now and help shape the future of settings management: Admin Console > Security and Access > Desktop Settings Management (Figure 5).

Screenshot of Admin console showing Desktop Setting Management page, which includes Global policy, Settings policy, User policies, and more.
Figure 5: Admin console with Desktop Settings Management.

Streamlining data workflow with WSL 2 mono distribution 

Simplify the Windows Subsystem for Linux (WSL 2) setup by eliminating the need to maintain two separate Docker Desktop WSL distributions. This update streamlines the WSL 2 configuration by consolidating the previously required dual Docker Desktop WSL distributions into a single distribution, now available on both macOS and Windows operating systems.

The simplification of Docker Desktop’s WSL 2 setup is designed to make the codebase easier to understand and maintain. This enhances the ability to handle failures more effectively and increases the startup speed of Docker Desktop on WSL 2, allowing users to begin their work more quickly.

The value of streamlining data workflows and relocating data to a different drive on macOS and Windows with the WSL 2 backend in Docker Desktop encompasses these key areas:

  • Improved performance: By separating data and system files, I/O contention between system operations and data operations is reduced, leading to faster access and processing.
  • Enhanced storage management: Separating data from the main system drives allows for more efficient use of space.
  • Increased flexibility with cross-platform compatibility: Ensuring consistent data workflows across different operating systems (macOS and Windows), especially when using Docker Desktop with WSL 2.
  • Enhanced Docker performance: Docker performs better when processing data on a drive optimized for such tasks, reducing latency and improving container performance.

By implementing these practices, organizations can achieve more efficient, flexible, and high-performing data workflows, leveraging Docker Desktop’s capabilities on both macOS and Windows platforms.

Enhanced Container Isolation (ECI) improvements 

  • Allow any container to mount the Docker socket: Admins can now configure permissions to allow all containers to mount the Docker socket by adding * or *:* to the ECI Docker socket mount permission image list. This simplifies scenarios where broad access is required while maintaining security configuration through centralized control. Learn more in the advanced configuration documentation.
  • Improved support for derived image permissions: The Docker socket mount permissions for derived images feature now supports wildcard tags (e.g., alpine:*), enabling admins to grant permissions for all versions of an image. Previously, specific tags like alpine:latest had to be listed, which was restrictive and required ongoing maintenance. Learn more about managing derived image permissions.

These enhancements reduce administrative overhead while maintaining a high level of security and control, making it easier to manage complex environments.

Upgrade now

The Docker Desktop 4.36 release introduces a suite of features designed to simplify enterprise administration, improve security, and enhance operational efficiency. From enabling centralized policy enforcement with Desktop Settings Management to streamlining deployments with the macOS PKG installer, Docker continues to empower IT administrators with the tools they need to manage Docker Desktop at scale.

The improvements in Enhanced Container Isolation (ECI) and WSL 2 workflows further demonstrate Docker’s commitment to innovation, providing solutions that optimize performance, reduce complexity, and ensure compliance across diverse enterprise environments.  

As businesses adopt increasingly complex development ecosystems, these updates highlight Docker’s focus on meeting the unique needs of enterprise teams, helping them stay agile, secure, and productive. Whether you’re managing access for multiple organizations, deploying tools across platforms, or leveraging enhanced image permissions, Docker Desktop 4.36 sets a new standard for enterprise administration.  

Start exploring these powerful new features today and unlock the full potential of Docker Desktop for your organization.

Learn more

Before yesterdayFOSS

Doing more with less: LLM quantization (part 2)

22 November 2024 at 07:00
What if you could get similar results from your large language model (LLM) with 75% less GPU memory? In my previous article,, we discussed the benefits of smaller LLMs and some of the techniques for shrinking them. In this article, we’ll put this to test by comparing the results of the smaller and larger versions of the same LLM.As you’ll recall, quantization is one of the techniques for reducing the size of a LLM. Quantization achieves this by representing the LLM parameters (e.g. weights) in lower precision formats: from 32-bit floating point (FP32) to 8-bit integer (INT8) or INT4. The
❌
❌