29 March 2009 - Open News

Version mobile | RSS - News | Russian Version

Search

Newsroom

Open Source [28]

Computer news [7]

Mobile Linux [5]

Soft [9]

Policy [2]

News [4]

Open Club [0]

News Calendar

Popularity OS

Place on site:

 <script type="text/javascript" src="http://www.Open-Club.net/informer/14"></script>

FRIENDS

AECS NO!
Linux for everyone!
Secrets of Martial Arts
World
Historical films

Polls

Statistics

Total online: 1

Guests: 1

Users: 0

Total users: 86
List of users

On a site:

Today came:

We congratulate:

Главная » 2009 » March » 29

AMD Catalyst 9.3 For Linux Brings OpenGL Composite Support

While the Catalyst driver for Windows was released a number of days ago, the Catalyst Linux driver was missing. It has, however, been released today. AMD's Linux engineers ended up delaying the Catalyst 9.3 release so they could spend additional time tuning this driver, since it will be the last release that supports the R300 through R500 series as the support is being dropped. The significant feature that was pushed back into the Catalyst 9.3 Linux driver is improved Composite support.

Catalyst 9.3 for Linux has improved support for Composite via supporting redirected OpenGL rendering under Compiz. Yes, that means for all of the Linux desktops out there running Compiz or KWin4 or other compositing window managers, the rendering is now a lot better. With the open-source drivers, redirected direct rendering is possible when using DRI2 and the related work such as kernel memory management, but the Catalyst driver does not use the Direct Rendering Infrastructure 2. The proprietary NVIDIA driver also uses its own infrastructure for dealing with redirected OpenGL rendering. With OpenGL composite support, windows and their contents should be displayed properly even when dragging around a wobbly window on a multi-sided desktop. Hurrah! As a very easy way to understand why redirected OpenGL rendering is important, first let's watch a video we recorded on Catalyst 9.2 when the advanced Compiz desktop effects were enabled from Ubuntu.

The OpenGL demo does not keep up with the moving window and it is horribly rendered. Now this is what it looks like on the same exact system immediately after installing Catalyst 9.3.

It's now a beautiful desktop! While this is great, look for the Composite support to continue to improve in the Catalyst Linux driver.

Download AMD Catalyst 9.3

Researchers unveil persistent BIOS attack methods

Apply all of the browser, application and OS patches you want, your machine still can be completely and silently compromised at the lowest level--without the use of any vulnerability.

That was the rather sobering message delivered by a pair of security researchers from Core Security Technologies in a talk at the CanSecWest conference on methods for infecting the BIOS with persistent code that will survive reboots and reflashing attempts. Anibal Sacco and Alfredo Ortega (above) demonstrated a method for patching the BIOS with a small bit of code that gave them conplete control of the machine. And the best part is, the method worked on a Windows machine, a PC running OpenBSD and another running VMware Player.

"It was very easy. We can put the code wherever we want," said Ortega. "We're not using a vulnerability in any way. I'm not sure if you understand the impact of this. We can reinfect the BIOS every time it reboots."

Sacco and Ortega stressed that in order to execute the attacks, you need either root privileges or physical access to the machine in question, which limits the scope. But the methods are deadly effective and the pair are currently working on a BIOS rootkit to implement the attack.

"We can patch a driver to drop a fully working rootkit. We even have a little code that can remove or disable antivirus," Ortega said.

The work by the Core team follows on to research done on persistent rootkits by John Heasman of NGSS, who was able to devise a method for placing rootkits on PCs using the memory space on PCI cards. In a presentation at Black Hat DC in 2007, Heasman showed a completely working method for loading the malware on to a PCI card by using the flashable ROM on the device. He also had a way to bypass the Windows NT kernel and create fake stack pointers.

In an interview at the time, he told me: "At that point it's game over. We're executing 32-bit code in ring zero."

As application and operating system protection mechanisms continue to become more sophisticated and more difficult to evade, expect to see more and more attacks targeting the hardware and low-level software, where there are still opportunities for success.

Hosted by uCoz