XorNand - Slashdot User

Comment Re: Hopefully it's improved since 2019 (Score 1) 284

by Z00L00K on Sunday May 05, 2024 @01:39AM (#64448680) Attached to: The US Just Mandated Automated Emergency Braking Systems By 2029

I have figured out that some shadows and road patches can trig the braking system.

A side effect of the lane assist is that a lot of the 'feeling' of the road disappears and it makes it harder to find out ice on the road where just subtle changes in the feel of the car indicates bad conditions.

Comment Re: Tailgaters beware (Score 1) 284

by Z00L00K on Sunday May 05, 2024 @01:34AM (#64448674) Attached to: The US Just Mandated Automated Emergency Braking Systems By 2029

It will probably not work, the camera system will still think it's part of your vehicle.

Comment Re: I prefer to be in charge of my vehicle's braki (Score 0) 284

by Z00L00K on Sunday May 05, 2024 @01:28AM (#64448666) Attached to: The US Just Mandated Automated Emergency Braking Systems By 2029

I'd say that the automatic braking system is dumb as a brick - it thinks that tree shadows and pavement patches are items worth braking for.

It also makes it harder to enter roundabouts because it can't see that vehicles crossing in front of you will be out of the way in time.

Comment Nothing new (Score 1) 2

by Z00L00K on Friday May 03, 2024 @04:33PM (#64445730) Attached to: Automated Emergency Braking mandated by 2029

Cameras and automated emergency braking already exists on some cars like the Subaru Outback from 2016 that I have, hopefully they can improve it so it doesn't try to brake for tree shadows and pavement repairs.

Submission + - Automated Emergency Braking mandated by 2029 (caranddriver.com) 2

Submitted by sinij on Friday May 03, 2024 @01:34PM

sinij writes: However, automated emergency braking systems will be a federally mandated standard . . . by 2029. Following the finalization of a new Federal Motor Vehicle Safety Standard, the National Highway Traffic Safety Administration (NHTSA) is announcing the new safety standard for all passenger cars and light trucks by September 2029.

This technology requires forward-facing camera, which makes both the price and cost of maintenance and repair more expensive. In my view, it does not pass cost vs. benefit analysis.

Submission + - Sony alters the deal for Steam game owners (gamesradar.com)

Submitted by Baron_Yam on Friday May 03, 2024 @01:29PM

Baron_Yam writes: Players who made Steam purchases of Helldivers 2 are now, months after the fact, being told by Sony that their games will be useless unless linked to a PSN account.

Submission + - German police bust Europe's 'largest' scam call center (dw.com)

Submitted by Plumpaquatsch on Friday May 03, 2024 @09:07AM

Plumpaquatsch writes: Investigators teamed up with colleagues from the Balkans and Lebanon in raids set up by months of intense surveillance. Authorities say the operation thwarted over €10 million in damages and led to 21 arrests.

Dubbed "Operation Pandora," the sting began in Germany in December 2023, after a suspicious bank teller contacted police when a 76-year-old customer from Freiburg sought to hurriedly withdraw €120,000 ($128,232) from her savings account to hand over to a fake police officer.

When real police investigators tracked the internet-based telephone number that had been used to lure the woman, they discovered a veritable goldmine.

Rather than shutting down the number, authorities instead went on the offensive, setting up their own call center in which hundreds of officers from Baden-Württemberg, Bavaria, Berlin and Saxony worked around the clock monitoring some 1.3 million calls in real time, as the number from the initial scam was tied to an entire network of fraud call centers.

Police were able to trace and record data from the calls, as well as warn potential victims of what was in fact happening, in turn winning valuable time to put together the April 18 sting.

Police say their efforts allowed them to thwart some €10 million in damages in roughly 6,000 cases of attempted fraud.

Comment Re:Second one in as many months? (Score 1) 174

by Z00L00K on Thursday May 02, 2024 @11:02AM (#64442266) Attached to: Whistleblower Josh Dean of Boeing Supplier Spirit AeroSystems Has Died

If there's a third one then it's starting to smell.

Comment Re:Typical Squelching (Score 1) 174

by Z00L00K on Thursday May 02, 2024 @10:52AM (#64442228) Attached to: Whistleblower Josh Dean of Boeing Supplier Spirit AeroSystems Has Died

Or had Polonium tea.

Comment Re:And nothing will happen (Score 2) 174

by Z00L00K on Thursday May 02, 2024 @10:51AM (#64442224) Attached to: Whistleblower Josh Dean of Boeing Supplier Spirit AeroSystems Has Died

It's a plausible deniability death.

So now there are two down, one from alleged suicide, one from MRSA.

If there's a third then it's becoming suspicious.

I don't expect that it's the three letter agencies directly - but that doesn't rule out individuals within them that getting money under the table.

After all - a lot of this is about big money.

Comment Re: Uh, what? (Score 1) 320

by Z00L00K on Wednesday May 01, 2024 @11:58AM (#64438878) Attached to: Systemd Announces 'run0' Sudo Alternative

OK, now I did learn one new thing.

Comment Re: Uh, what? (Score 2) 320

by Z00L00K on Tuesday April 30, 2024 @10:36PM (#64437646) Attached to: Systemd Announces 'run0' Sudo Alternative

You mistyped ASR33.

Comment Re: As long as sudo still works ... (Score 2, Insightful) 320

by Z00L00K on Tuesday April 30, 2024 @10:16PM (#64437614) Attached to: Systemd Announces 'run0' Sudo Alternative

Systemd should be a different OS and not a kludge on Linux.

Comment Re:The real lesson here (Score 1) 70

by Z00L00K on Tuesday April 30, 2024 @04:13PM (#64436700) Attached to: How an Empty S3 Bucket Can Make Your AWS Bill Explode

All you need to cause problems is to flood their cloud accounts and hope that they get billed by the request.

Submission + - Systemd wants to expand to include a sudo replacement (fosspost.org)

Submitted by Anonymous Coward on Tuesday April 30, 2024 @01:00PM

An anonymous reader writes: Systemd lead developer Lennart Poettering has posted on Mastodon about their upcoming v256 release of Systemd, which is expected to include a sudo replacement called “run0”.

The developer talks about the weaknesses of sudo, and how it has a large possible attack surface. For example, sudo supports network access, LDAP configurations, other types of plugins, and much more. But most importantly, its SUID binary provides a large attack service according to Lennart:

"I personally think that the biggest problem with sudo is the fact it’s a SUID binary though – the big attack surface, the plugins, network access and so on that come after it it just make the key problem worse, but are not in themselves the main issue with sudo. SUID processes are weird concepts: they are invoked by unprivileged code and inherit the execution context intended for and controlled by unprivileged code. By execution context I mean the myriad of properties that a process has on Linux these days, from environment variables, process scheduling properties, cgroup assignments, security contexts, file descriptors passed, and so on and so on."

He’s saying that sudo is a Unix concept from many decades ago, and a better privilege escalation system should be in place for 2024 security standards:

"So, in my ideal world, we’d have an OS entirely without SUID. Let’s throw out the concept of SUID on the dump of UNIX’ bad ideas. An execution context for privileged code that is half under the control of unprivileged code and that needs careful manual clean-up is just not how security engineering should be done in 2024 anymore."

Slashdot Top Deals