timothy

Vulnerabilities Found (and Sought) In More Command-Line Tools

itwbennett writes The critical Shellshock vulnerabilities found last month in the Bash Unix shell have motivated security researchers to search for similar flaws in old, but widely used, command-line utilities. Two remote command execution vulnerabilities were patched this week in the popular wget download agent and tnftp client for Unix-like systems [also mentioned here]. This comes after a remote code execution vulnerability was found last week in a library used by strings, objdump, readelf and other command-line tools.

Read more of this story at Slashdot.








Getting ‘Showdown’ To 90 FPS In UE4 On Oculus Rift

An anonymous reader writes Oculus has repeatedly tapped Epic Games to whip up demos to show off new iterations of Oculus Rift VR headset hardware. The latest demo, built in UE4, is ‘Showdown’, an action-packed scene of slow motion explosions, bullets, and debris. The challenge? Oculus asked Epic to make it run at 90 FPS to match the 90 Hz refresh rate of the latest Oculus Rift ‘Crescent Bay’ prototype. At the Oculus Connect conference, two of the developers from the team that created the demo share the tricks and tools they used to hit that target on a single GPU.

Read more of this story at Slashdot.








Signed-In Maps Mean More Location Data For Google

mikejuk writes The announcement on the Google Geo Developers blog has the catchy title No map is an island. It points out that while there are now around 2 million active sites that have Google Maps embedded, they store data independently, The new feature, called attributed save, aims to overcome this problem by creating an integrated experience between the apps you use that have map content and Google Maps, and all it requires is that users sign in. So if you use a map in a specific app you will be able to see locations you entered in other apps.This all sounds great and it makes sense to allow users to take all of the locations that have previously been stored in app silos and put them all together into one big map data pool. The only down side is that the pool is owned by Google and some users might not like the idea of letting Google have access to so much personal geo information. It seems you can have convenience or you can have privacy. It might just be that many users prefer their maps to be islands.

Read more of this story at Slashdot.








Pirate Bay Founder Gottfrid Warg Faces Danish Jail Time

Hammeh writes BBC news reports that Pirate Bay co-founder Gottfrid Warg has been found guilty of hacking into computers and illegally downloading files in Denmark. Found guilty of breaching security to access computers owned by technology giant CSC to steal police and social security files, Mr Warg faces a sentence of up to six years behind bars. Mr Warg argued that although the computer used to commit the offence was owned by him, the hacks were carried out by another individual who he declined to name.

Read more of this story at Slashdot.








First Detailed Data Analysis Shows Exactly How Comcast Jammed Netflix

An anonymous reader writes John Oliver calls it “cable company f*ckery” and we’ve all suspected it happens. Now on Steven Levy’s new Backchannel publication on Medium, Susan Crawford delivers decisive proof, expertly dissecting the Comcast-Netflix network congestion controversy. Her source material is a detailed traffic measurement report (.pdf) released this week by Google-backed M-Lab — the first of its kind — showing severe degradation of service at interconnection points between Comcast, Verizon and other monopoly “eyeball networks” and “transit networks” such as Cogent, which was contracted by Netflix to deliver its bits. The report shows that interconnection points give monopoly ISPs all the leverage they need to discriminate against companies like Netflix, which compete with them in video services, simply by refusing to relieve network congestion caused by external traffic requested by their very own ISP customers. And the effects victimize not only companies targeted but ALL incoming traffic from the affected transit network. The report proves the problem is not technical, but rather a result of business decisions. This is not technically a Net neutrality problem, but it creates the very same headaches for consumers, and unfair business advantages for ISPs. In an accompanying article, Crawford makes a compelling case for FCC intervention.

Read more of this story at Slashdot.








How Apple Watch Is Really a Regression In Watchmaking

Nerval’s Lobster writes Apple design chief Jony Ive has spent the past several weeks talking up how the Apple Watch is an evolution on many of the principles that guided the evolution of timepieces over the past several hundred years. But the need to recharge the device on a nightly basis, now confirmed by Apple CEO Tim Cook, is a throwback to ye olden days, when a lady or gentleman needed to keep winding her or his pocket-watch in order to keep it running. Watch batteries were supposed to bring “winding” to a decisive end, except for that subset of people who insist on carrying around a mechanical timepiece. But with Apple Watch’s requirement that the user constantly monitor its energy, what’s old is new again. Will millions of people really want to charge and fuss with their watch at least once a day?

Read more of this story at Slashdot.








A Mixed Review For CBS’s "All Access" Online Video Streaming

lpress writes I tested CBS All Access video streaming. It has technical problems, which will be resolved, but I will still pass because they show commercials in addition to a $5.99 per month fee. Eventually, we will all cut the cord and have a choice of viewing modes — on-demand versus scheduled and with and without commercials — but don’t expect your monthly bill to drop as long as our ISPs are monopolies or oligopolies.

Read more of this story at Slashdot.








Tim Cook: "I’m Proud To Be Gay"

An anonymous reader writes Apple CEO Tim Cook has publicly come out as gay. While he never hid his sexuality from friends, family, and close co-workers, Cook decided it was time to make it publicly known in the hopes that the information will help others who don’t feel comfortable to do so. He said, “I don’t consider myself an activist, but I realize how much I’ve benefited from the sacrifice of others. So if hearing that the CEO of Apple is gay can help someone struggling to come to terms with who he or she is, or bring comfort to anyone who feels alone, or inspire people to insist on their equality, then it’s worth the trade-off with my own privacy.” Cook added that while the U.S. has made progress in recent years toward marriage equality, there is still work to be done. “[T]here are laws on the books in a majority of states that allow employers to fire people based solely on their sexual orientation. There are many places where landlords can evict tenants for being gay, or where we can be barred from visiting sick partners and sharing in their legacies. Countless people, particularly kids, face fear and abuse every day because of their sexual orientation.”

Read more of this story at Slashdot.








Slashdot Asks: Appropriate Place For Free / Open Source Software Artifacts?

A friend of mine who buys and sells used books, movies, etc. recently purchased a box full of software on CD, including quite a few old Linux distributions, and asked me if I’d like them. The truth is, I would like them, but I’ve already collected over the last two decades more than I should in the way of Linux distributions, on at least four kinds of media (starting with floppies made from a CD that accompanied a fat book on how to install some distribution or other — very useful in the days of dialup). I’ve got some boxes (Debian Potato, and a few versions of Red Hat and Mandrake Linux), and an assortment of marketing knickknacks, T-shirts, posters, and books. I like these physical artifacts, and they’re not dominating my life, but I’d prefer to actually give many of them to someplace where they’ll be curated. (Or, if they should be tossed, tossed intelligently.) Can anyone point to a public collection of some kind that gathers physical objects associated with Free software and Open Source, and makes them available for others to examine? (I plan to give some hardware, like a pair of OLPC XO laptops, to the same Goodwill computer museum highlighted in this video, but they probably don’t want an IBM-branded radio in the shape of a penguin.)

Read more of this story at Slashdot.








Hacking Team Manuals: Sobering Reminder That Privacy is Elusive

Advocatus Diaboli writes with a selection from The Intercept describing instructions for commercial spyware sold by Italian security firm Hacking Team. The manuals describe Hacking Team’s software for government technicians and analysts, showing how it can activate cameras, exfiltrate emails, record Skype calls, log typing, and collect passwords on targeted devices. They also catalog a range of pre-bottled techniques for infecting those devices using wifi networks, USB sticks, streaming video, and email attachments to deliver viral installers. With a few clicks of a mouse, even a lightly trained technician can build a software agent that can infect and monitor a device, then upload captured data at unobtrusive times using a stealthy network of proxy servers, all without leaving a trace. That, at least, is what Hacking Team’s manuals claim as the company tries to distinguish its offerings in the global marketplace for government hacking software. (Here are the manuals themselves.)

Read more of this story at Slashdot.