If you're looking to add a powerhouse search tool to the Linux desktop, Albert is exactly what you need.

There are several Linux file systems, but should you go with an alternative, and if so, which one?

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Raspberry Pi Imager 1.9.4 released bringing performance improvements, bug fixes and more David Uzondu Neowin · Jun 5, 2025 05:12 EDT Raspberry Pi Imager 1.9.4 is now out, marking the first official release in its 1.9.x series. This application, for anyone new to it, is a tool from the Raspberry Pi Foundation. It first came out in March 2020. Its main job is to make getting an operating system onto a microSD card or USB drive for any Raspberry Pi computer super simple, even if you hate the command line. It handles downloading selected OS images and writing them correctly, cutting out several manual steps that used to trip people up, like finding the right image version or using complicated disk utility tools. This version brings solid user interface improvements for a smoother experience, involving internal tweaks that contribute to a more polished feel. Much work went into global accessibility, adding new Korean and Georgian translations. Updates also cover Chinese, German, Spanish, Italian, and many others. Naturally, a good number of bugs got squashed, including a fix for tricky long filename issues on Windows and an issue with the Escape key in the options popup. Changes specific to operating systems are also clear. Windows users get an installer using Inno Setup. Its program files, installer, and uninstaller are now signed for better Windows security. For macOS, .app file naming in .dmg packages is fixed, and building the software is more reliable. Linux users can now hide system drives from the destination list, a great way to prevent accidentally wiping your main computer drives. The Linux AppImage also disables Wayland support by default. The full list of changes is outlined below: Fixed minor errors in Simplified Chinese translation Updated translations for German, Catalan, Spanish, Slovak, Portuguese, Hebrew, Traditional Chinese, Italian, Korean, and Georgian Explicitly added --tree to lsblk to hide partitions from the top-level output CMake now displays the version as v1.9.1 Added support for quiet uninstallation on Windows Applied regex to match SSH public keys during OS customization Updated dependencies: libarchive (3.7.4 → 3.7.7 → 3.8.0) zlib (removed preconfigured header → updated to 1.4.1.1) cURL (8.8 → 8.11.0 → 8.13.0) nghttp2 (updated to 1.65.0) zstd (updated to 1.5.7) xz/liblzma (updated to 5.8.1) Windows-specific updates: Switched to Inno Setup for the installer Added code signing for binaries, installer, and uninstaller Enabled administrator privileges and NSIS removal support Fixed a bug causing incorrect saving of long filenames macOS-specific updates: Fixed .app naming in .dmg packages Improved build reliability and copyright Linux-specific updates: System drives are now hidden in destination popup Wayland support disabled in AppImage General UI/UX improvements: Fixed OptionsPopup not handling the Esc key Improved QML code structure, accessibility, and linting Made options popup modal Split main UI into component files Added a Style singleton and ImCloseButton component Internationalization (i18n): Made "Recommended" OS string translatable Made "gigabytes" translatable Packaging improvements: Custom AppImage build script with Qt detection Custom Qt build script with unprivileged mode Qt 6.9.0 included Dependencies migrated to FetchContent system Build system: CMake version bumped to 3.22 Various improvements and hardening applied Removed "Show password" checkbox in OS customization settings Reverted unneeded changes in long filename size calculation Internal refactoring and performance improvements in download and extract operations Added support for more archive formats via libarchive Lastly, it's worth noting that the system requirements have changed since version 1.9.0: macOS users will need version 11 or later; Windows users, Windows 10 or newer; Ubuntu users, version 22.04 or newer; and Debian users, Bookworm or later. Tags Report a problem with article Follow @NeowinFeed

Matali Physics 6.9 Presents Physics-driven, Completely Dynamic Light Sources Published June 02, 2025 Advertisement We are pleased to announce the release of Matali Physics 6.9, the next significant step on the way to the seventh major version of the environment. Matali Physics 6.9 introduces a number of improvements and fixes to Matali Physics Core, Matali Render and Matali Games modules, presents physics-driven, completely dynamic light sources, real-time object scaling with destruction, lighting model simulating global illumination (GI) in some aspects, comprehensive support for Wayland on Linux, improved simulation of stacked objects, improved physics-based photo mode, introduces optimizations for Steam Deck portable gaming console and Linux as well as provides a refreshed Matali Physics Game demo. What is Matali Physics?Matali Physics is an advanced, modern, multi-platform, high-performance 3d physics environment intended for games, VR, AR, physics-based simulations and robotics. Matali Physics consists of the advanced 3d physics engine Matali Physics Core and other physics-driven modules that all together provide comprehensive simulation of physical phenomena and physics-based modeling of both real and imaginary objects.What's new in version 6.9?Physics-driven, completely dynamic light sources. The introduced solution allows for processing hundreds of movable, long-range and shadow-casting light sources, where with each source can be assigned logic that controls its behavior, changes light parameters, volumetric effects parameters and others;Real-time object scaling with destruction. All groups of physics objects and groups of physics objects with constraints may be subject to destruction process during real-time scaling, allowing group members to break off at different sizes;Lighting model simulating global illumination (GI) in some aspects. Based on own research and development work, processed in real time, ready for dynamic scenes, fast on mobile devices, not based on lightmaps, light probes, baked lights, etc.;Comprehensive support for Wayland on Linux. The latest version allows Matali Physics SDK users to create advanced, high-performance, physics-based, Vulkan-based games for modern Linux distributions where Wayland is the main display server protocol;Other improvements and fixes which complete list is available on the History webpage.What platforms does Matali Physics support?AndroidAndroid TV*BSDiOSiPadOSLinux (distributions)macOSSteam DecktvOSUWP (Desktop, Xbox Series X/S)Windows (Classic, GDK, Handheld consoles)What are the benefits of using Matali Physics?Physics simulation, graphics, sound and music integrated into one total multimedia solution where creating complex interactions and behaviors is common and relatively easyComposed of dedicated modules that do not require additional licences and feesSupports fully dynamic and destructible scenesSupports physics-based behavioral animationsSupports physical AI, object motion and state change controlSupports physics-based GUISupports physics-based particle effectsSupports multi-scene physics simulation and scene combiningSupports physics-based photo modeSupports physics-driven soundSupports physics-driven musicSupports debug visualizationFully serializable and deserializableAvailable for all major mobile, desktop and TV platformsNew features on requestDedicated technical supportRegular updates and fixesIf you have questions related to the latest version and the use of Matali Physics environment as a game creation solution, please do not hesitate to contact us.  Cancel Save 0 likes 0 comments Comments Nobody has left a comment. You can be the first! You must log in to join the conversation. Don't have a GameDev.net account? Sign up!

🍉🍋🐍🍇🍎 "Brainmelting Snake" Serpentes is back An updated offering of blissful boomer arcade goodness is here! It's Snake, but every fruit has 5 effects assigned to it randomly. Eat the fruits to reveal their effects, then use them to your advantage... or die trying. Based on a hellishly addictive hidden gem made by Benjamin Soulé in 2015, this new Serpentes got a second serving of 11 fresh fruits to unlock, mix, and match with the old ones, featuring new mechanics, reworked old ones, and a new original soundtrack by Pentadrangle. Boomer Arcade at its crunchiest Select two bonuses to start your run, then score the best possible score in 60 seconds. Death is inevitable, but dying only means retrying the very next second, as the fruits' properties get reshuffled. As you reach higher scores and fill up the leaderboard, you'll unlock new bonuses to select at the start, and new fruits to mix into the game for new effects. Strategize on the fly The fruits have 5 rows of properties. The first row is simply score. The second one adds and removes lengths of tail. The third one adds enemies, obstacles, it makes your snake faster, and some other fun things. The fourth row makes your next fruit more valuable, or maybe you'll get a wider selection of fruits, or you'll get a way to destroy some of the enemies and obstacles. Finally the fifth row holds a variety of powerful bonuses and mini-games that play through the game of Snake. Complete a row on all the fruits to get 20 extra seconds on the timer. Quickly pick up 5 of a same fruit to unlock its fifth property. Try different priorities. Adapt your strategy to the effects you uncover. Or die and restart. After all, a run is just 1 minute. Pay to win The free demo for this game is essentially the same as the full game. However, the demo only lets you select one starting bonus, instead of two. This makes it considerably harder than the full game, though not impossible, and we believe it's representative enough to get an idea of whether this game is for you. Besides this, the demo mostly features the fruits from the original version, and only 2 of the 11 unlockable new ones. Controls This game plays entirely with the keyboard, or with a gamepad. (keyboard still required to input your name at least once for the leaderboard) Use directions to move your snake, and hold them to move faster. That's it. 🍌🍑🐍🍒🥑 Praise for Serpentes "It captures the spirit of the original Snake perfectly [...] and then dials it up to eleven." — Derek Yu"Each variation of the Snake theme has generally been the same until Benjamin Soulé released 'Serpentes'." — Indie Retro News"[about Serpentes] I love the way it feels in my brain." — The Beauty of Games, by Frank Lantz🍋🍊🐍🥝🍍 This game was partially funded on Patreon by people like you! Our 3€-per-month Patreon subscription gives you our games as they come out, starting with the last game that came out when you subscribe. At this time, that means this game! If you have the means, subscribing for 5€ per month makes your name appear in the credits of the games that come out while you are subscribed, and gives you the OST of the games on Bandcamp. For 10€ per month, you also get access to a Discord channel where we frequently post news, articles and other resources we find interesting or helpful. The games are given out as Itch keys and Steam keys to be redeemed on our website. The games initially release on Itch, and then come to Steam a bit later. When the game releases on a platform, the corresponding key appears. You can cancel your subscription at anytime and it won't revoke your game keys. This game is currently an Itch exclusive. But it will come out on Steam eventually. If you feel so inclined, wishlisting Serpentes there would be very helpful to us! Buying the game here on Itch, or getting it through our Patreon subscription, will get you a Steam key when it releases there. 🍋🍑🐍🥑🍉 Discord If you'd like you can come to our Discord to share your best scores and compare strategies! It's also a great place to talk with us and get news for this and our next projects! 🍎🍍🐍🍊🍓 Are you press or a content creator? If you're a streamer, youtuber, or press and you'd like to cover the game, you can request a press key using this form! We've also uploaded a few assets you might find useful, including screenshots and thumbnail material! Find them here! 🍌🍒🐍🍓🥝 About PUNKCAKE As PUNKCAKE Délicieux we make a new game every month, which you can get by subscribing to our Patreon for 3€/month or buy separately on Itch io for 6$! Subscribe to our newsletter! Join our Discord! Follow our Bluesky! Subscribe to our Youtube! 🍇🍋🐍🍍🍊 Changelog: Quickpatch 1.0b: Fixed the Lychee unlock. Fixed a crash when trying to delete highscores. More informationPurchaseGet this game and 23 more for $66.00 USDSerpentes Release Sale! 🐍🍒View bundleBuy Now$6.00 $5.40 USD or moreIn order to download this game you must purchase it at or above the minimum price of $5.40 USD. You will get access to the following files:Download demo

html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd" The MetaHuman client reel. Epic Games’ framework for generating realistic 3D characters for games is out of early access, and can now be used with any DCC app or game engine. Epic Games has officially launched MetaHuman, its framework for generating realistic 3D characters for games, animation and VFX work, after four years in early access.The core applications, MetaHuman Creator, Mesh to MetaHuman and MetaHuman Animator, are now integrated into Unreal Engine 5.6, the latest version of the game engine. In addition, Epic has updated the licensing for MetaHuman characters, making it possible to use them in any game engine or DCC application, including in commercial projects. There are also two new free plugins, MetaHuman for Maya and MetaHuman for Houdini, intended to streamline the process of editing MetaHumans in Maya and Houdini. A suite of tools for generating and animating realistic real-time 3D characters First launched in early access in 2021, MetaHuman is a framework of tools for generating realistic 3D characters for next-gen games, animation, virtual production and VFX.The first component, MetaHuman Creator, enables users to design realistic digital humans. Users can generate new characters by blending between presets, then adjusting the proportions of the face by hand, and customising readymade hairstyles and clothing. The second component, Mesh to MetaHuman, makes it possible to create MetaHumans matching 3D scans or facial models created in other DCC apps. The final component, MetaHuman Animator, streamlines the process of transferring the facial performance of an actor from video footage to a MetaHuman character. MetaHuman Creator was originally a cloud-based tool, while Mesh to MetaHuman and MetaHuman Animator were available via the old MetaHuman plugin for Unreal Engine. Now integrated directly into Unreal Engine 5.6 That changes with the end of early access, with MetaHuman Creator, Mesh to MetaHuman and MetaHuman Animator all now integrated directly into Unreal Engine itself.Integration – available in Unreal Engine 5.6, the latest version of the engine – is intended to simplify character creation and asset management worklows. Studios also get access to the MetaHuman source code, since Unreal Engine itself comes with full C++ source code access. However, the tools still cannot be run entirely locally: according to Epic, in-editor workflow is “enhanced by cloud services that deliver autorigging and texture synthesis”. https://www.cgchannel.com/wp-content/uploads/2025/06/250604_MetaHumanOfficialLaunch_LicensingChanges_UnifiedClothing.mp4 Users can now adjust MetaHumans’ bodies, with a new unified Outfit Asset making it possible to create 3D clothing that adjusts automatically to bodily proportions. Updates to both MetaHuman Creator and MetaHuman Animator In addition, the official release introduces new features, with MetaHuman Creator’s parametric system for creating faces now extended to body shapes.Users can now adjust proportions like height, chest and waist measurements, and leg length, rather than simply selecting preset body types. Similarly, a new unified Outfit Asset makes it possible to author custom 3D clothing, rather than selecting readymade presets, with garments resizing to characters’ body shapes. MetaHuman Animator – which previously required footage from stereo head-mounted cameras or iPhones – now supports footage from mono cameras like webcams. The toolset can also now generate facial animation – both lip sync and head movement – solely from audio recordings, as well as from video footage. You can find fuller descriptions of the new features in Epic Games’ blog post. Use MetaHumans in Unity or Godot games, or sell them on online marketplaces Equally significantly, Epic has changed the licensing for MetaHumans.The MetaHuman toolset is now covered by the standard Unreal Engine EULA, meaning that it can be used for free by any artist or studio with under $1 million/year in revenue. MetaHuman characters and clothing can also now be sold on online marketplaces, or used in commercial projects created with other DCC apps or game engines. The only exception is for AI: you can use MetaHumans in “workflows that incorporate artificial intelligence technology”, but not to train or enhance the AI models themselves. Studios earning more than $1 million/year from projects that use MetaHuman characters need Unreal Engine seat licenses, with currently cost $1,850/year. However, since MetaHuman characters and animations are classed as ‘non-engine products’, they can be used in games created in other engines, like Unity or Godot, without incurring the 5% cut of the revenue that Epic takes from Unreal Engine games. https://www.cgchannel.com/wp-content/uploads/2025/06/250604_MetaHumanOfficialLaunch_LicensingChanges_MetaHumanForMaya.mp4 The free MetaHuman for Maya plugin lets you edit MetaHumans with Maya’s native tools. New plugins streamline editing MetaHumans in Maya and Houdini Last but not least, Epic Games has released new free add-ons intended to streamline the process of editing MetaHumans in other DCC software.The MetaHuman for Maya plugin makes it possible to manipulate the MetaHuman mesh directly with Maya’s standard mesh-editing and sculpting tools. Users can also create MetaHuman-compatible hair grooms using Maya’s XGen toolset, and export them in Alembic format. The MetaHuman for Houdini plugin seems to be confined to grooming, with users able to create hairstyles using Houdini’s native tools, and export them in Alembic format. The plugins themselves are supplemented by MetaHuman Groom Starter Kits for Maya and Houdini, which provide readymade sample files for generating grooms. Price, licensing and system requirements MetaHuman Creator and MetaHuman Animator are integrated into Unreal Engine 5.6. The Unreal Editor is compatible with Windows 10+, macOS 14.0+ and RHEL/Rocky Linux 8+.The MetaHuman plugin for Maya is compatible with Maya 2022-2025. The MetaHuman for Houdini plugin is compatible with Houdini 20.5 with SideFX Labs installed. All of the software is free to use, including for commercial projects, if you earn under $1 million/year. You can find more information on licensing in the story above. Read an overview of the changes to the MetaHuman software on Epic Games’ blog Download the free MetaHuman for Maya and Houdini plugins and starter kits Read Epic Games’ FAQs about the changes to licensing for MetaHumans Have your say on this story by following CG Channel on Facebook, Instagram and X (formerly Twitter). As well as being able to comment on stories, followers of our social media accounts can see videos we don’t post on the site itself, including making-ofs for the latest VFX movies, animations, games cinematics and motion graphics projects.

They’re interesting: Tracked as CVE-2025-5054 and CVE-2025-4598, both vulnerabilities are race condition bugs that could enable a local attacker to obtain access to access sensitive information. Tools like Apport and systemd-coredump are design

Replicube A game by Walaber Entertainment LLCDev snapshot: Godot 4.5 dev 5By: Thaddeus Crews2 June 2025Pre-releaseBrrr… Do you feel that? That’s the cold front of the feature freeze just around the corner. It’s not upon us just yet, but this is likely to be our final development snapshot of the 4.5 release cycle. As we enter the home stretch of new features, bugs are naturally going to follow suit, meaning bug reports and feedback will be especially important for a smooth beta timeframe.Jump to the Downloads section, and give it a spin right now, or continue reading to learn more about improvements in this release. You can also try the Web editor or the Android editor for this release. If you are interested in the latter, please request to join our testing group to get access to pre-release builds.The cover illustration is from Replicube, a programming puzzle game where you write code to recreate voxelized objects. It is developed by Walaber Entertainment LLC (Bluesky, Twitter). You can get the game on Steam.HighlightsIn case you missed them, see the 4.5 dev 1, 4.5 dev 2, 4.5 dev 3, and 4.5 dev 4 release notes for an overview of some key features which were already in those snapshots, and are therefore still available for testing in dev 5.Native visionOS supportNormally, our featured highlights in these development blogs come from long-time contributors. This makes sense of course, as it’s generally those users that have the familiarity necessary for major changes or additions that are commonly used for these highlights. That’s why it might surprise you to hear that visionOS support comes to us from Ricardo Sanchez-Saez, whose pull request GH-105628 is his very first contribution to the engine! It might not surprise you to hear that Ricardo is part of the visionOS engineering team at Apple, which certainly helps get his foot in the door, but that still makes visionOS the first officially-supported platform integration in about a decade.For those unfamiliar, visionOS is Apple’s XR environment. We’re no strangers to XR as a concept (see our recent XR blogpost highlighting the latest Godot XR Game Jam), but XR platforms are as distinct from one another as traditional platforms. visionOS users have expressed a strong interest in integrating with our ever-growing XR community, and now we can make that happen. See you all in the next XR Game Jam!GDScript: Abstract classesWhile the Godot Engine utilizes abstract classes—a class that cannot be directly instantiated—frequently, this was only ever supported internally. Thanks to the efforts of Aaron Franke, this paradigm is now available to GDScript users (GH-67777). Now if a user wants to introduce their own abstract class, they merely need to declare it via the new abstract keyword:abstract class_name MyAbstract extends Node The purpose of an abstract class is to create a baseline for other classes to derive from:class_name ExtendsMyAbstract extends MyAbstract Shader bakerFrom the technical gurus behind implementing ubershaders, Darío Samo and Pedro J. Estébanez bring us another miracle of rendering via GH-102552: shader baker exporting. This is an optional feature that can be enabled at export time to speed up shader compilation massively. This feature works with ubershaders automatically without any work from the user. Using shader baking is strongly recommended when targeting Apple devices or D3D12 since it makes the biggest difference there (over 20× decrease in load times in the TPS demo)!Before:After:However, it comes with tradeoffs:Export time will be much longer.Build size will be much larger since the baked shaders can take up a lot of space.We have removed several MoltenVK bug workarounds from the Forward+ shader, therefore we no longer guarantee support for the Forward+ renderer on Intel Macs. If you are targeting Intel Macs, you should use the Mobile or Compatibility renderers.Baking for Vulkan can be done from any device, but baking for D3D12 needs to be done from a Windows device and baking for Apple .metallib requires a Metal compiler (macOS with Xcode / Command Line Tools installed).Web: WebAssembly SIMD supportAs you might recall, Godot 4.0 initially released under the assumption that multi-threaded web support would become the standard, and only supported that format for web builds. This assumption unfortunately proved to be wishful thinking, and was reverted in 4.3 by allowing for single-threaded builds once more. However, this doesn’t mean that these single-threaded environments are inherently incapable of parallel processing; it just requires alternative implementations. One such implementation, SIMD, is a perfect candidate thanks to its support across all major browsers. To that end, web-wiz Adam Scott has taken to integrating this implementation for our web builds by default (GH-106319).Inline color pickersWhile it’s always been possible to see what kind of variable is assigned to an exported color in the inspector, some users have expressed a keen interest in allowing for this functionality within the script editor itself. This is because it would mean seeing what kind of color is represented by a variable without it needing to be exposed, as well as making it more intuitive at a glance as to what color a name or code corresponds to. Koliur Rahman has blessed us with this quality-of-life goodness, which adds an inline color picker GH-105724. Now no matter where the color is declared, users will be able to immediately and intuitively know what is actually represented in a non-intrusive manner.Rendering goodiesThe renderer got a fair amount of love this snapshot; not from any one PR, but rather a multitude of community members bringing some long-awaited features to light. Raymond DiDonato helped SMAA 1x make its transition from addon to fully-fledged engine feature (GH-102330). Capry brings bent normal maps to further enhance specular occlusion and indirect lighting (GH-89988). Our very own Clay John converted our Compatibility backend to use a fragment shader copy instead of a blit copy, working around common sample rate issues on mobile devices (GH-106267). More technical information on these rendering changes can be found in their associated PRs.SMAA comparison:OffOnBent normal map comparison:BeforeAfterAnd more!There are too many exciting changes to list them all here, but here’s a curated selection:Animation: Add alphabetical sorting to Animation Player (GH-103584).Animation: Add animation filtering to animation editor (GH-103130).Audio: Implement seek operation for Theora video files, improve multi-channel audio resampling (GH-102360).Core: Add --scene command line argument (GH-105302).Core: Overhaul resource duplication (GH-100673).Core: Use Grisu2 algorithm in String::num_scientific to fix serializing (GH-98750).Editor: Add “Quick Load” button to EditorResourcePicker (GH-104490).Editor: Add PROPERTY_HINT_INPUT_NAME for use with @export_custom to allow using input actions (GH-96611).Editor: Add named EditorScripts to the command palette (GH-99318).GUI: Add file sort to FileDialog (GH-105723).I18n: Add translation preview in editor (GH-96921).Import: Add Channel Remap settings to ResourceImporterTexture (GH-99676).Physics: Improve performance with non-monitoring areas when using Jolt Physics (GH-106490).Porting: Android: Add export option for custom theme attributes (GH-106724).Porting: Android: Add support for 16 KB page sizes, update to NDK r28b (GH-106358).Porting: Android: Remove the gradle_build/compress_native_libraries export option (GH-106359).Porting: Web: Use actual PThread pool size for get_default_thread_pool_size() (GH-104458).Porting: Windows/macOS/Linux: Use SSE 4.2 as a baseline when compiling Godot (GH-59595).Rendering: Add new StandardMaterial properties to allow users to control FPS-style objects (hands, weapons, tools close to the camera) (GH-93142).Rendering: FTI - Optimize SceneTree traversal (GH-106244).Changelog109 contributors submitted 252 fixes for this release. See our interactive changelog for the complete list of changes since the previous 4.5-dev4 snapshot.This release is built from commit 64b09905c.DownloadsGodot is downloading...Godot exists thanks to donations from people like you. Help us continue our work:Make a DonationStandard build includes support for GDScript and GDExtension..NET build (marked as mono) includes support for C#, as well as GDScript and GDExtension.While engine maintainers try their best to ensure that each preview snapshot and release candidate is stable, this is by definition a pre-release piece of software. Be sure to make frequent backups, or use a version control system such as Git, to preserve your projects in case of corruption or data loss.Known issuesWindows executables (both the editor and export templates) have been signed with an expired certificate. You may see warnings from Windows Defender’s SmartScreen when running this version, or outright be prevented from running the executables with a double-click (GH-106373). Running Godot from the command line can circumvent this. We will soon have a renewed certificate which will be used for future builds.With every release, we accept that there are going to be various issues, which have already been reported but haven’t been fixed yet. See the GitHub issue tracker for a complete list of known bugs.Bug reportsAs a tester, we encourage you to open bug reports if you experience issues with this release. Please check the existing issues on GitHub first, using the search function with relevant keywords, to ensure that the bug you experience is not already known.In particular, any change that would cause a regression in your projects is very important to report (e.g. if something that worked fine in previous 4.x releases, but no longer works in this snapshot).SupportGodot is a non-profit, open source game engine developed by hundreds of contributors on their free time, as well as a handful of part and full-time developers hired thanks to generous donations from the Godot community. A big thank you to everyone who has contributed their time or their financial support to the project!If you’d like to support the project financially and help us secure our future hires, you can do so using the Godot Development Fund.Donate now

In technical fields like information technology, definitions are fundamental. They are the building blocks for constructing useful applications and systems. Yet, despite this, it’s easy to assume a term’s definition and wield it confidently before discovering its true meaning. The two closely related cases that stand out to me are “security” and “privacy.” I say this with full awareness that, in my many writings on information security, I never adequately distinguished these two concepts. It was only after observing enough conflation of these terms that I resolved to examine my own casual treatment of them. So, with the aim of solidifying my own understanding, let’s properly differentiate “information security” and “information privacy.” Security vs. Privacy: Definitions That Matter In the context of information technology, what exactly are security and privacy? Security is the property of denying unauthorized parties from accessing or altering your data. Privacy is the property of preventing the observation of your activities by any third parties to whom you do not expressly consent to observe those activities. As you can see, these principles are related, which is one reason why they’re commonly interchanged. This distinction becomes comprehensible with examples. Let’s start with an instance where security applies, but privacy does not. Spotify uses digital rights management (DRM) software to keep its media secure but not private. DRM is a whole topic of its own, but it essentially uses cryptography to enforce copyright. In Spotify’s case, it’s what constitutes streaming rather than just downloading: the song’s file is present on your device (at least temporarily) just as if you’d downloaded it, but Spotify’s DRM cryptography prevents you from opening the file without the Spotify application. The data on Spotify (audio files) are secure because only users of the application can stream audio, and streamed content can’t be retained, opened, or transmitted to non-users. However, Spotify’s data is not private because nearly anyone with an email address can be a user. Thus, in practice, the company cannot control who exactly can access its data. A more complex example of security without privacy is social media. When you sign up for a social media platform, you accept an end-user license agreement (EULA) authorizing the platform to share your data with its partners and affiliates. Your data stored with “authorized parties” on servers controlled by the platform and its affiliates would be considered secure, provided all these entities successfully defend your data against theft by unauthorized parties. In other words, if everyone who is allowed (by agreement) to have your data encrypts it in transit and at rest, insulates and segments their networks, etc., then your data is secure no matter how many affiliates receive it. In practice, the more parties that have your data, the more likely it is that any one of them is breached, but in theory, they could all defend your data. On the other hand, any data you fork over to the social network is not private because you can’t control who uses your data and how. As soon as your data lands on the platform’s servers, you can’t restrict what they do with it, including sharing your data with other entities, which you also can’t control. Both examples illustrate security without privacy. That’s because privacy entails security, but not the reverse. All squares are rectangles, but not all rectangles are squares. If you have privacy, meaning you can completely enforce how any party uses your data (or doesn’t), it is secure by definition because only authorized parties can access your data. Mobile Devices: Secure but Not Private Casually mixing security and privacy can lead people to misunderstand the information security properties that apply to their data in any given scenario. By reevaluating for ourselves whether a given technology affords us security and privacy, we can have a more accurate understanding of how accessible our data really is. One significant misconception I’ve noticed concerns mobile devices. I get the impression that the digital privacy content sphere regards mobile devices as not secure because they aren’t private. But while mobile is designed not to be private, it is specifically designed to be secure. Why is that? Because the value of data is in keeping it in your hands and out of your competitor’s. If you collect data but anyone else can grab your copy, you are not only at no advantage but also at a disadvantage since you’re the only party that spent time and money to collect it from the source. With modest scrutiny, we’ll find that every element of a mobile OS that might be marketed as a privacy feature is, in fact, strictly a security feature. Cybersecurity professionals have hailed application permissions as a major stride in privacy. But whom are they designed to help? These menus apply to applications that request access to certain hardware, from microphones and cameras to flash memory storage and wireless radios. This access restriction feature serves the OS developer by letting users lock out as much of their competition as possible from taking their data. The mobile OS developer controls the OS with un-auditable compiled code. For all you know, permission controls on all the OS’s native apps could be ignored. However, even if we assume that the OS developer doesn’t thwart your restrictions on their own apps, the first-party apps still enjoy pride of place. There are more of them; they are preinstalled on your device, facilitate core mobile device features, require more permissions, and often lose core functions when those permissions are denied. Mobile OSes also sandbox every application, forcing each to run in an isolated software environment, oblivious to other applications and the underlying operating system. This, too, benefits the OS vendor. Like the app permission settings, this functionality makes it harder for third parties to grab the same data the OS effortlessly ingests. The OS relies on its own background processes to obtain the most valuable data and walls off every other app from those processes. Mobile Security Isn’t Designed With You in Mind The most powerful mobile security control is the denial of root privileges to all applications and users (besides, again, the OS itself). While it goes a long way toward keeping the user’s data safe, it is just as effective at subjecting everything and everyone using the device to the dictates of the OS. The security advantage is undeniable: if your user account can’t use root, then any malware that compromises it can’t either. By the same token, because you don’t have complete control over the OS, you are unable to reconfigure your device for privacy from the OS vendor. I’m not disparaging any of these security controls. All of them reinforce the protection of your data. I’m saying that they are not done primarily for the user’s benefit; that is secondary. Those of you familiar with my work might see the scroll bar near the bottom of this page and wonder why I haven’t mentioned Linux yet. The answer is that desktop operating systems, my preferred kind of Linux OS, benefit from their own examination. In a follow-up to this piece, I will discuss the paradox of desktop security and privacy. Please stay tuned.

Jun 03, 2025Ravie LakshmananWeb Security / Digital Identity Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing "patterns of concerning behavior observed over the past year." The changes are expected to be introduced in Chrome 139, which is scheduled for public release in early August 2025. The current major version is 137. The update will affect all Transport Layer Security (TLS) server authentication certificates issued by the two Certificate Authorities (CAs) after July 31, 2025, 11:59:59 p.m. UTC. Certificates issued before that date will not be impacted. Chunghwa Telecom is Taiwan's largest integrated telecom service provider and Netlock is a Hungarian company that offers digital identity, electronic signature, time stamping, and authentication solutions. "Over the past several months and years, we have observed a pattern of compliance failures, unmet improvement commitments, and the absence of tangible, measurable progress in response to publicly disclosed incident reports," Google's Chrome Root Program and the Chrome Security Team said. "When these factors are considered in the aggregate and considered against the inherent risk each publicly-trusted CA poses to the internet, continued public trust is no longer justified." As a result of this change, Chrome browser users on Windows, macOS, ChromeOS, Android, and Linux who navigate to a site serving a certificate issued by either of the two CAs after July 31, will be served a full-screen security warning. Website operators who rely on the two CAs are recommended to use the Chrome Certificate Viewer to check the validity of their site's certificates and transition to a new publicly-trusted CA as soon as "reasonably possible" to avoid any user disruption. Enterprises, however, can override these Chrome Root Store constraints by installing the corresponding root CA certificate as a locally-trusted root on the platform Chrome is running. It's worth noting that Apple has distrusted the Root CA Certificate "NetLock Arany (Class Gold) Főtanúsítvány" effective November 15, 2024. The disclosure comes after Google Chrome, Apple, and Mozilla decided to no longer root CA certificates signed by Entrust as of November 2024. Entrust has since sold off its certificate business to Sectigo. Earlier this March, Google revealed that the CA/Browser Forum adopted Multi-Perspective Issuance Corroboration (MPIC) and Linting as required practices in the Baseline Requirements (BRs) to enhance domain control validation and flag insecure practices in X.509 certificates. Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post. SHARE    