Do you develop on GitHub? You can keep using GitHub but automatically sync your GitHub releases to SourceForge quickly and easily with this tool so your projects have a backup location, and get your project in front of SourceForge's nearly 20 million monthly users. It takes less than a minute. Get new users downloading your project releases today!
Steyn claimed that a university's internal investigation regarding Mann was a sham, similar to another investigation of a now-convicted pedophile at the same university.
I still don't understand the need to pray five times a day - it's like Allah wants his (her?) followers to check in with him (her?) every few hours or something. For Christians it's (supposed to be) once a week!
Posted
by
samzenpus
from the welcome-to-the-neighborhood dept.
MarkWhittington writes According to an article in Sputnik, a private Russian company called Lin Industrial has announced that it is capable of building a lunar base. However, according to information contained to a recent post in Parabolic Arc, this announcement may be more the result of idle boasting than an objective assessment of actual ability. Nevertheless, Lin seems to be one of the few entrepreneurial startups in Russia in the style of much more robust enterprises in the West such as SpaceX and Blue Origin.
Posted
by
Soulskill
from the totally-secure-for-undefined-values-of-secure dept.
An anonymous reader writes Developer Jonathan Rudenberg has discovered and pointed out a glaring security hole in Docker's system. He says, "Recently while downloading an 'official' container image with Docker I saw this line: ubuntu:14.04: The image you are pulling has been verified
I assumed this referenced Docker's heavily promoted image signing system and didn't investigate further at the time. Later, while researching the cryptographic digest system that Docker tries to secure images with, I had the opportunity to explore further. What I found was a total systemic failure of all logic related to image security.
Docker's report that a downloaded image is 'verified' is based solely on the presence of a signed manifest, and Docker never verifies the image checksum from the manifest. An attacker could provide any image alongside a signed manifest. This opens the door to a number of serious vulnerabilities."
Docker's lead security engineer has responded here.
Posted
by
Soulskill
from the selecting-for-mediocrity dept.
sciencehabit writes: A study published today indicates that the scientific peer review system does a reasonable job of predicting the eventual interest in most papers, but it may fail when it comes to identifying really game-changing research. Papers that were accepted outright by one of the three elite journals tended to garner more citations than papers that were rejected and then published elsewhere (abstract). And papers that were rejected went on to receive fewer citations than papers that were approved by an editor. But there is a serious chink in the armor: All 14 of the most highly cited papers in the study were rejected by the three elite journals, and 12 of those were bounced before they could reach peer review. The finding suggests that unconventional research that falls outside the established lines of thought may be more prone to rejection from top journals.
Notice how your post and the parent post are modded 'Troll', even though they are reasonable? That's the mentality we're dealing with here. I expect mine will also be modded down.