chicksdaddy writes "Google's been known to pay $60,000 for information on remotely exploitable vulnerabilities in its Chrome web browser. So, when a researcher says that he has one, but isn't interested in selling it, eyebrows get raised. And that's just what's happening this week, with Google saying it will wait and see what Georgian researcher Ucha Gobejishvili has up his sleeve in a presentation on Saturday at the Malcon conference in New Delhi. Gobejishvili has claimed that he will demonstrate a remotely exploitable hole in the Chrome web browser at Malcon. He described the security hole in Chrome as a 'critical vulnerability' in a Chrome DLL. 'It has silent and automatically (sp) download function and it works on all Windows systems,' he told Security Ledger. However, more than a few questions hang over Gobejishvili's talk. The researcher said he discovered the hole in July, but hasn't bothered to contact Google. He will demonstrate the exploit at MalCon, and have a 'general discussion' about it, but won't release source code for it. 'I know this is a very dangerous issue that's why I am not publishing more details about this vulnerability,' he wrote. Google said that, with no information on the hole, it can only wait to hear the researcher's Malcon presentation before it can assess the threat to Chrome users."
Slashdot is powered by your submissions, so send in your scoop
An anonymous reader writes "Many this week have declared Israel's American financed Iron Dome rocket defense system a success. Some have even gone so far to declare it a vindication of Ronald Reagan's 1980's Star Wars missile defense system. Pundits have even gone so far to assume the system could be sold to other nations. However, the Iron Dome may not be the game changer many are making it out to be. Taking out unsophisticated rockets is quite different than advanced missiles: '...the technical and strategic challenges of shooting down ballistic missiles differ considerably from those of shooting down unguided rockets. BMD shares with rocket defense some common technological ground; both require fast reaction time and impressive sensor capabilities, and the Iron Dome project has benefited from technical work on missile defense. However, ballistic missiles in flight behave differently from unguided, sub-atmospheric rockets.'"
First time accepted submitter almostadnsguy writes "There seem to be a lot of ways to cook a turkey the geekiest ones are probably out of the realm of possibility for normal geeks. However, Within the limits of normal society (or outside if you wish) what is the geekiest way to do it? Do you use a special brine, cook it in an inventive way, or raise genetically modified turkeys with extra legs?"
angry tapir writes "As supercomputers grow more powerful, they'll also grow more vulnerable to failure, thanks to the increased amount of built-in componentry. Today's high-performance computing (HPC) systems can have 100,000 nodes or more — with each node built from multiple components of memory, processors, buses and other circuitry. Statistically speaking, all these components will fail at some point, and they halt operations when they do so, said David Fiala, a Ph.D student at the North Carolina State University, during a talk at SC12. Today's techniques for dealing with system failure may not scale very well, Fiala said."
theodp writes "Two decades before Moneyball hit the Big Screen, Coach David Arseneault of tiny Grinnell College came up with a unique style of run-and-gun basketball that he called The System, the principles of which were subjected to statistical analysis in Keys to Success in a Run-and-Gun Basketball System, a paper for the 2011 Joint Statistical Meetings. Well, as they say, sometimes The System works. On Tuesday, biochem major Jack Taylor, just three games into his career as a Grinnell College basketball player, made national news when he poured in 138 points — yes, 138 points — in a 179-104 victory over Faith Baptist Bible College. Even LeBron and Kobe were impressed. The old NCAA Division III record of 89 was set last year by Taylor's Grinnell teammate, Griffin Lentsch. Taylor's feat also bested what was deemed to be the unbeatable overall NCAA scoring record of 113 points, set by NCAA Division II performer Clarence 'Bevo' Francis of Rio Grande in 1954."
sfcrazy writes "The KDE team has released the first beta for its renewed Workspaces, Applications, and Development Platform. 'With API, dependency and feature freezes in place, the KDE team's focus is now on fixing bugs and further polishing new and old functionality.' QtQuick in Plasma Workspaces has received a lot of work: 'Plasma Quick, KDE's extensions on top of QtQuick allow deeper integration with the system and more powerful apps and Plasma components. Plasma Containments can now be written in QtQuick. Various Plasma widgets have been rewritten in QtQuick, notably the system tray, pager, notifications, lock & logout, weather and weather station, comic strip and calculator plasmoids. Many performance, quality and usability improvements make Plasma Desktop and Netbook workspaces easier to use.' Here's the Feature Plan for 4.10."
AngryDad writes "Today I received a baffling email from my hosting provider that said, 'We have a company-wide patching freeze and we will not be releasing patches to our customers who utilize the patching portal for the months of November and December.' This means that myself and all other customers of theirs who run Windows servers will have to live with several critical holes for at least two months. Is this common practice with mid-tier hosting providers? If so, may I ask Eastern-EU folks to please refrain from hacking my servers during the holiday season?"
SternisheFan writes with news of rumors over Microsoft's plans for its next-gen Xbox console. According to The Verge, the company is working on a cheap, Xbox-based set-top box for some time in 2013. "The device will run on the core components of Windows 8 and support casual gaming titles rather than full Xbox games typically found on a dedicated console. Although hardware specifications aren't fully locked down, we understand Microsoft will use a chipset to enable an "always on" device that boots quickly and resumes to provide near-instant access to TV and entertainment services. Microsoft's Xbox set-top box work is said to be part of a broader effort to ensure its core architecture for the next-generation Xbox is scalable enough to be put together to run on a number of devices. We understand that the company could opt to combine its core system for the next Xbox with a phone stack to deliver a phone capable of running a full version of Microsoft's Xbox Live services."
coondoggie writes "It may be a gimmick or the ultimate answer, but a California city this week okay-ed a draft ordinance that would let businesses install 7,000-volt electric fences to protect sites from rampant copper thieves. As reported by the Sacramento CBS station, the reaction from one business owner to the ordinance says it all: 'It'll be a little fun to watch one of these guys get electrocuted holding my fence trying to rob me.'"
concealment sends in an AP report about an uproar in India over citizens arrested for their Facebook remarks. Quoting: "As India's financial capital shut down for the weekend funeral of a powerful politician linked to waves of mob violence, a woman posted on Facebook that the closures in Mumbai were 'due to fear, not due to respect.' A friend of hers hit the 'like' button. For that, both women were arrested. Analysts and the media are slamming the Maharashtra state government for what they said was a flagrant misuse of the law and an attempt to curb freedom of expression. The arrests were seen as a move by police to prevent any outbreak of violence by supporters of Bal Thackeray, a powerful Hindu fundamentalist politician who died Saturday."
another random user writes "Google has warned that a forthcoming U.N.-organized conference threatens the 'free and open internet.' Government representatives are set to agree a new information and communications treaty in December. It has been claimed some countries will try to wrest oversight of the net's technical specifications and domain name system from U.S. bodies to an international organization. However, the U.N. has said there would be consensus before any change was agreed." Google is using its Take Action page to encourage people to speak out on this issue.
poofmeisterp writes "Due to old cast iron underground pipelines, natural gas leaks run amok in Boston, MA. '"While our study was not intended to assess explosion risks, we came across six locations in Boston where gas concentrations exceeded the threshold above which explosions can occur," Nathan Phillips, associate professor at BU, said in a statement.' With 'a device to measure methane' in a vehicle equipped with GPS, Duke and Boston University researchers created a nice little map showing the methane levels in parts per million at different points in the city. 'Repairing these leaks will improve air quality, increase consumer health and safety, and save money,' study researcher Robert B. Jackson, of Duke, said in a statement. 'We just have to put the right financial incentives into place.' It looks like money is an issue. Imagine that."
Nerval's Lobster writes "The National Transportation Safety Board (NTSB) plans on replacing its existing stock of BlackBerry devices with Apple's iPhone 5. Research In Motion's BlackBerry smartphones, the government entity wrote in a Nov. 13 notice of intent, 'have been failing both at inopportune times and at an unacceptable rate.' The NTSB's use of iPads means it has the operational support for iOS; consequently, the decision was made to go with Apple. 'The iPhone 5 has been determined to be the only device that meets the dual requirement of availability from the existing wireless vendor and is currently supportable by existing staff resources,' the notice added. RIM is fighting to retain the government and enterprise contracts that originally made it such a mobile powerhouse. If agencies and boards such as the NTSB begin to embrace alternative platforms, however, that could critically weaken RIM's business model just as the company attempts a comeback behind the upcoming BlackBerry 10 platform."
An anonymous reader writes "Back in September, a U.S. judge ruled that a school district violated the First Amendment (freedom of speech) and Fourth Amendment (unreasonable search and seizure) rights of a 12-year-old student by forcing her to hand over her Facebook password to school officials who in turn used it to search for messages they deemed inappropriate. This month, another U.S. judge has ordered that women suing their employer for sexual harassment must hand over cell phones, passwords to their email accounts, blogs, as well as to Facebook and other social networks."