Published on April 23rd, 2020 📆 | 5030 Views ⚑0
Ubuntu 20.04 arrives with Linux 5.4 kernel and WireGuard VPN
As expected, Canonical has released the newest version of its Ubuntu Linux distribution, Ubuntu 20.04. This long-term-support (LTS) version is more than just the latest version of one of the most popular Linux distributions; it’s a major update for desktop, server, and cloud users.
Let’s start with the core operating system. Here, you’ll find Ubuntu 20.04, aka Focal Fossa, is now based on November 2019’s Linux 5.4 kernel. This kernel includes significant new features.
Thanks to Linux 5.4, Ubuntu 20.04 now boasts:
- Kernel lockdown mode: This optional LSM (Linux Security Module) keeps preventing the root account from working with kernel code in some instances. It makes it much harder for compromised root accounts to compromise Linux systems.
- ExFat support: Ubuntu now supports this popular Microsoft device file system.
The core operating system also includes numerous other new features:
- WireGuard: The new, simplified wildly popular virtual private network (VPN) with up-to-date cryptography defaults. Besides being included in Ubuntu 20.04 LTS, WireGuard will be backported to Ubuntu 18.04 LTS. In a statement, WireGuard creator Jason A. Donenfeld said: “Including WireGuard by default in all recent versions of Ubuntu means that users will finally have a great out-of-the-box secure tunnel on Ubuntu.”
- Z File System (ZFS): Focal Fossa now supports the latest version of this Oracle-based file system. It now includes disk encryption and performance enhancements.
Canonical is also taking Linux security more seriously than ever. Besides kernel lockdown mode, it now incorporates Kernel Self Protection. This is a variety of improvements designed to protect against kernel security flaws. It also includes a Secure Boot utility and Secure Shell (SSH) Fast ID Online (FIDO) multi-factor authentication. With the latter, users will be able to login securely without using a password.
In a press conference, Canonical’s CEO founder Mark Shuttleworth explained that Canonical is now “thinking about security as part of operations, rather than security, separate from operations.” This “DevSecOps” approach is new, but by making it easy for “organizations to incorporate security functions into the application development and deployment process,” security will be baked into not the operating system but the entire platform. This, in turn, will make not just Ubuntu, but any operations running on Ubuntu more secure than ever.
Shuttleworth also pointed out that Snap applications, easy-to-install Linux applications, are more secure than native Linux apps. That’s because by strictly confining Snap programs to containers, a badly behaving app can’t impact the overall operating system.
Ubuntu 20.04 also includes, as Robert Gomer, director of AMD Datacenter Alliances, observed, “native support for AMD Secure Encrypted Virtualization with accelerated memory encryption designed for data-in-use protection as well as high-performance scaling for AMD EPYC processors with 256 threads and beyond.”
The most important change in this Ubuntu release is not in the technology, per se. Historically, Ubuntu LTS versions come with five years of support. So, you can safely plan on using Ubuntu 20.04 until 2025. And, if you pay for Ubuntu Advantage support, you’ll be able to run supported Ubuntu for a decade (that is until 2030). But, now, Canonical is also offering support for up to 10 years — not just for the core operating system but for 30,000 other open-source applications, which had not received support before.
Shuttleworth explained: “We’re offering full 10 years of coverage for all packages including the 30,000 packages that we never previously covered with security updates. This represents a huge improvement in enterprise security.”
Shuttleworth is well aware of just how important the Linux desktop is to Ubuntu users. He said Ubuntu is the “world’s most popular open-source desktop operating system, and this is our best release to date.” Ubuntu 20.04 LTS offers an enterprise-grade secure and cost-effective operating system for workplaces and home users. There are a couple of big things to understand about success on the desktop. But the people who use Ubuntu desktop are often passionate people who are making huge waves in their industry.
Focal Fossa uses GNOME 3.36 for its default desktop. This comes with a dark theme, an improved shell theme, new lock screens, faster performance, a Do Not Disturb toggle feature, and an improved settings panel.
It also includes such stand-by applications of the Linux desktop as PulseAudio 14.0 for audio, Firefox 75.0 for web browsing, Thunderbird 68.7.0 for e-mail, and LibreOffice 6.4 for its office suite. It also includes support for cloud-based applications such as Google G Suite and Microsoft Exchange support.
For gamers, Ubuntu 20.04 comes with Feral Interactive’s GameMode performance tool, which will be installed by default. GameMode is a Linux daemon that enables games to request things like more CPU power, I/O priority, and other optimizations. In practice, this means Linux games will run much more smoothly. Proprietary Nvidia drivers have also been added for improved graphics performance. The UI for presenting and selecting these drivers has also been improved.
To add new applications, the Snap Store has replaced “ubuntu-software” as the default tool for finding and installing packages and snaps. You can still install traditional Linux packages via this tool. Six thousand Snap applications are now available. This includes Slack, Skype, Plex, Spotify, JetBrains, and Visual Studio Code.
Looking ahead, there will be more Snap applications. These will also have better start-up time, and performance Canonical is also making it easier to build your own and general improvements.
For developers, Python 3.8 is now the default Python. Python 2.7 has been moved to universe. It’s not included by default in any new installs. In case you haven’t gotten the hint yet, Python 2.x is done. The remaining programs, which require Python 2.7, have been updated to use /usr/bin/python2 as their interpreter. If you upgrade from a previous release, /usr/bin/python will continue to point to python2 for compatibility.
This release has also upgraded most of the other popular languages. It comes with the new upstream releases of glibc 2.31, OpenJDK 11, rustc 1.41, GCC 9.3, Python 3.8.2, ruby 2.7.0, php 7.4, perl 5.30, and golang 1.13.
For AI and ML developers, Unbutu supports KubeFlow. This (AI/ML) tool enables programmers to quickly create, train, and tune neural networks within Kubernetes for dynamic resource provisioning. It works with TensorFlow and other modern AI/ML frameworks such as PyTorch, MXNet, and Chainer.
It’s always been possible to install Ubuntu on pretty much any PC. If you want to buy and run Canonical certifies multiple Dell, HP, and Lenovo workstations. The one exception is the ancient 32-bit x86 architecture. Ubuntu 19.10 is the last Ubuntu to support this old architecture.
For Windows Subsystem on Linux (WSL) users, Ubuntu 20.04 is available now. Shuttleworth said: “WSL enables deep integration with Linux applications in Windows 10. This offers Windows users a first-class engineering workstation experience in minutes.”
Ubuntu Server and Cloud
The server has many under the hood improvements. These include making encryption easier, better support installing to multipath disks, more reliable installation, and better failure reporting. The changes you’re most likely to notice is support for automated installs.
On the cloud, Ubuntu via Canonical’s Ubuntu Pro program broadens Ubuntu security maintenance to cover every single package in Ubuntu for a full 10 years. Ubuntu Pro also includes FIPS and Common Criteria EAL to meet FedRAMP, PCI, HIPAA, and ISO compliance requirements.
Canonical, which has partnerships with all of the major public clouds, claims that it’s still the most popular cloud-based Linux. Indeed, according to the Cloud Market’s latest analysis of operating systems on the Amazon Elastic Compute Cloud (EC2), Ubuntu is the top named Linux distribution. With 10 years of support across both its distribution and its programs, Ubuntu is likely to stay in the lead.
Microsoft certainly likes Ubuntu on the cloud. “We’re excited to partner with Canonical to bring the Ubuntu 20.04 LTS innovations across our toolchain — from developers on WSL to scaling enterprise production deployments in Azure,” said John Gossman, a Microsoft distinguished engineer. “In this release, we’ve made it easier than ever to manage workstation environments and to enjoy the long-term stability and security of Ubuntu Pro for Azure across a wide range of compute options.”
And while Red Hat is now a vital part of IBM, Michael Desens, IBM VP of offering management on IBM mainframes, said: “Canonical and IBM continue to work closely together to offer cloud solutions with Ubuntu on IBM LinuxONE and IBM Z. Today’s announcement of Ubuntu 20.04 LTS running on IBM LinuxONE and IBM Z continues to deliver on our support for containers and Kubernetes, which is fueling our client’s journey to a hybrid cloud to support their mission-critical workloads.”
Canonical also supports IBM Secure Execution for Linux, a trusted execution environment for IBM Z and LinuxONE. IBM Secure Execution for Linux provides both enterprise-grade confidentiality and protection support for sensitive data and is designed to run large numbers of workloads in full isolation at scale, with protection for both insider and external threats across the hybrid cloud environment.
Shuttleworth summed it up: “Accelerating open source globally is our mission. Ubuntu 20.04 LTS is the new state of the art open-source platform for the enterprise and the entrepreneur. We’ve brought together thousands of contributors and the world’s largest technology companies to make Ubuntu 20.04 LTS the standard reference platform for secure cloud and edge compute.”
Ubuntu 20.04 LTS is available for download and on major public clouds now. Go, check out, and enjoy. I think you’ll find a lot to like.