Catch up on stories from the past week (and beyond) at the Slashdot story archive

 


Forgot your password?
Close
typodupeerror
×
Apple

Submission + - Adobe confirms Apple is approving Flash apps (geek.com)

Submitted by Anonymous Coward
An anonymous reader writes: Yesterday Apple surprised everyone by lifting the restrictions on iPhone app development. The move made it possible for Flash apps to be ported to iPhone again, as Adobe had originally intended with its new Packager for iPhone shipped with Flash Professional CS5.

It didn’t take long for Flash developers to react, and Adobe has confirmed that Flash apps converted with Packager for iPhone are already being approved for the App Store.
GUI

Flawed iTunes Stands Out Among Apple's Products 390

Posted by Soulskill from the maybe-if-it-only-had-one-button dept.
waderoush writes "On top of all the other features that it has crammed into iTunes, Apple this week added Ping, a Facebook-like social network for music discovery. It's all part of the company's plan to dominate the world of consumer media, but Xconomy argues that this time, Apple may have gone a bridge too far. iTunes, nearing its tenth birthday, started out merely as a program for ripping CDs, and has grown increasingly creaky and impenetrable as Apple has added more and more cruft, the article argues. The company won't have a stable base for its new media empire until it rebuilds iTunes from scratch — perhaps along the lines suggested by its other new product this week, the revamped Apple TV."
Android

Flash On Android Is 'Shockingly Bad' 657

Posted by timothy from the not-so-flash dept.
Hugh Pickens writes "Ryan Lawler writes on GigaOm that although many have touted the availability of Flash on Android devices as a competitive advantage over Apple's mobile devices, while trying to watch videos from ABC.com, Fox.com and Metacafe using Flash 10.1 on a Nexus One over a local Wi-Fi network connected to a 25-Mbps Verizon FiOS broadband connection, mobile expert Kevin Tofel found that videos were slow to load, if they loaded at all, leading to an overall very inconsistent experience while using his Android device for video. 'While in theory Flash video might be a competitive advantage for Android users, in practice it's difficult to imagine anyone actually trying to watch non-optimized web video on an Android handset,' writes Lawler. 'All of which makes one believe that maybe Steve Jobs was right to eschew Flash in lieu of HTML5 on the iPhone and iPad.'"
Cellphones

Android Fork Brings Froyo To 12 Smartphones 193

Posted by timothy from the sticking-it-to-the-phone-companies dept.
jj110888 writes "CyanogenMod has just been updated to version 6.0, bringing Android Open Source Project 2.2 (Froyo) to several devices. This fork includes enchantments to many of the built-in apps, Ad-hoc network connectivity, OpenVPN support, Bluetooth HID, Incognito browsing, extensive control over audio and UI elements, and more found in the extensive CHANGELOG. The CyanogenMod team uses an instance of Google's gerrit tool for code review and patch submission, helping make this former backport of Android 1.6 to T-Mobile's G1 into thriving development for the G1/MyTouch/MyTouch 1.2, Droid, Nexus One, HTC Aria, HTC Desire, HTC Evo 4G (minus 4G and HDMI output), Droid Incredible, and MyTouch Slide. HTC Hero (including Droid Eris) are coming soon for 6.0, with Samsung Galaxy S devices expected to be supported in 6.1."
Security

New QuickTime Flaw Bypasses ASLR, DEP 162

Posted by Soulskill from the once-more-unto-the-breach dept.
Trailrunner7 writes "A Spanish security researcher has discovered a new vulnerability in Apple's QuickTime software that can be used to bypass both ASLR and DEP on current versions of Windows and give an attacker control of a remote PC. The flaw apparently results from a parameter from an older version of QuickTime that was left in the code by mistake. It was discovered by Ruben Santamarta of Wintercore, who said the vulnerability can be exploited remotely via a malicious Web site. On a machine running Internet Explorer on Windows 7, Vista or XP with QuickTime 7.x or 6.x installed, the problem can be exploited by using a heap-spraying technique. In his explanation of the details of the vulnerability and the exploit for it, Santamarta said he believes the parameter at the heart of the problem simply was not cleared out of older versions of the QuickTime code. 'The QuickTime plugin is widely installed and exploitable through IE; ASLR and DEP are not effective in this case and we will likely see this in the wild,' said HD Moore, founder of the Metasploit Project."
Image

Developer Demands Pirate Bay Not Remove Torrent Screenshot-sm 203

Posted by samzenpus from the please-steal-this-software dept.
An anonymous reader writes "This week TPB got a very unusual e-mail. It was a 'Notice of Ridiculous Activity' from a company that had found one of its apps cracked and listed as a torrent on TPB. The app in question is called Memoires, developed by Coding Robots. Memoires is marketed as the easiest way to keep a journal on your Mac. It costs $29.99 to buy after you've enjoyed a 30-day free trial. That, of course, didn't stop someone from cracking the software and making it available for free as a torrent. Dmitry Chestnykh, founder of Coding Robots, noticed the cracked torrent and decided to download it to see what had been done. After using it, he was upset — not because the cracked version was available, but because the cracker (named Minamoto) had done such a bad job of cracking it. The best section of the e-mail has to be this: 'I demand that you don't remove this torrent, so that people can laugh at Minamoto and CORE skills. However, I also demand the[sic] better crack to be made, so that it doesn't cripple the user experience of my beautiful program.'"

Comment Re:How Does It Encapsulate the Source Code? (Score 4, Interesting) 220

by Taagehornet (#33391926) Attached to: Many Hackers Accidentally Send Their Code To Microsoft

Crash reports probably include the script that was running and maybe the binary file running but how could it access the source code of an arbitrary task/thread/program?

According to TFA Heckman gave a presentation of XSS and SQL injection attacks. So, I imagine that what we're talking about here is Microsoft receiving a dump of IE process memory, which of course will include the malicious script.

Furthermore, how can you tell if this is a malware developer or the first unfortunate victim? Or even an outlier victim whose machine was luckily not correctly configured for the attack?

If you get a sequence of error reports from the same IP within a short period of time, where the only difference is that the script bringing IE down has been modified slightly, you've probably got the developer at the other end of the line. (Online source control on a budget? ;-)

Are you saying that they're actually developing this stuff in a Microsoft IDE (like Visual Studio) that actually phones home source code upon program crash? That sounds like a guaranteed way to keep me away from Visual Studio.

Where did that come from?
Google

The Case For Oracle 341

Posted by samzenpus from the flip-side-of-the-coin dept.
An anonymous reader writes "In a lucid writeup, InfoWorld's Neil McAllister takes a different angle on the Oracle-Google lawsuit, giving an explanation why Oracle was right to sue Google. McAllister argues that Google is splintering the Java platform, just like Microsoft was doing back in the 90s, and should be held up to the same standards. He further cites Google's Josh Bloch calling for Oracle to take a lead role in steering Java, concluding that Bloch maybe 'should have been more careful what he wished for.'"
Crime

Julian Assange Faces Rape Investigation In Sweden — Updated 1017

Posted by Soulskill from the out-of-left-field dept.
mpawlo was one of many readers who have sent news that a warrant has been issued in Stockholm, Sweden for WikiLeaks founder and spokesman Julian Assange. The investigation apparently involves "one report of rape and one report of harassment." The story was broken by Swedish tabloid Expressen (original in Swedish), and later picked up by more reputable sources like CNN and the BBC, who say the warrant has been confirmed by Swedish authorities. The WikiLeaks Twitter feed has commented three times about the charges so far, first saying they were warned of 'dirty tricks,' then that they hadn't been contacted by Swedish police, and then a statement from Assange saying the charges are without basis.
Update: 08/21 15:58 GMT by S : Multiple sources are now reporting that the warrant for Assange's arrest has been withdrawn. Aftonbladet has coverage in Swedish. Chief prosecutor Eva Finne said, "I don't think there is reason to suspect that he has committed rape."
Java

Introducing JITB — a Flash Player Built On the JVM 126

Posted by Soulskill from the stay-as-long-as-you-like dept.
MBCook writes "Joa Ebert has started working on a new program called JITB. Announced in a talk at FITC San Fran, it's a Flash player written to use the Java JVM to run ActionScript, and in a simple graphics test case (making 1 million calls to flash.geom.Point) was 30x faster than Adobe's Flash player. There is an impressive demo video on YouTube showing the point test."
Cellphones

Apple Patents Remotely Disabling Jailbroken Phones 381

Posted by Soulskill from the trying-to-put-the-break-in-jailbreak dept.
An anonymous reader writes "Apple yesterday applied for a patent to allow remotely disabling electronic devices when 'unauthorized usage' is detected. The patent application covers using the camera to take pictures of the unauthorized user and using GPS to determine location, and it involves ascertaining whether the phone has been hacked or jailbroken, using those as criteria for detecting 'suspicious behavior.' The patent would allow the carrier or any other 'authorized' party to disable or restrict the functionality of the device. Is this Apple's latest tool to thwart jailbreaking?"

Slashdot Top Deals

People will buy anything that's one to a customer.

Close