Follow Slashdot stories on Twitter

 


Forgot your password?
Close
typodupeerror
×
Security

Remote Exploit Vulnerability Found In Bash 399

Posted by Soulskill from the don't-bash-bash dept.
kdryer39 sends this news from CSO: A remotely exploitable vulnerability has been discovered by Stephane Chazelas in bash on Linux, and it is unpleasant. The vulnerability has the CVE identifier CVE-2014-6271. This affects Debian as well as other Linux distributions. The major attack vectors that have been identified in this case are HTTP requests and CGI scripts. Another attack surface is OpenSSH through the use of AcceptEnv variables. Also through TERM and SSH_ORIGINAL_COMMAND. An environmental variable with an arbitrary name can carry a nefarious function which can enable network exploitation.
Businesses

Report: Microsoft To Buy Minecraft Studio For $2bn+ 368

Posted by Soulskill from the say-what-now dept.
dotarray (1747900) writes "A surprising story has emerged today that suggests Microsoft is looking to buy Minecraft developer Mojang. The reported price tag is "more than US$2 billion." The original report is at the WSJ (possibly behind a paywall). Quoting: "For Microsoft, "Minecraft" could reinvigorate the company's 13-year-old Xbox videogame business by giving it a cult hit with a legion of young fans. Mojang has sold more than 50 million copies of "Minecraft" since it was initially released in 2009 and earned more than $100 million in profits last year from the game and merchandise. "Minecraft" is already available on the Xbox, as well as Sony Corp.'s PlayStation, PCs and smartphones."

Comment Re:The diet is unimportant... (Score 2) 588

by Assmasher (#47806873) Attached to: Low-Carb Diet Trumps Low-Fat Diet In Major New Study

I think that generally speaking what you're saying is accurate, but it does depend upon what you do during the day.

I used to run 6 miles every day at lunch (this was when I worked down in Mill Valley/Sausalito so running was fun) and I could eat lots of whatever I wanted - and I did.

How I miss May Lee's kung pao chicken, San Jose La Taqueria (on 4th street San Rafael?) chorizo super burritos, Dave's quesadillas and tamales in Corte Madera, and Max's fries and caramelized brie sandwich.

That stuff would give me a heart attack just looking at it now since I only run when chased by very slow monsters now...

BTW, if you loved Max's on Sundays like I did, I hear it closed.

Comment Re:Eh, not quite (Score 4, Interesting) 132

by Assmasher (#47806779) Attached to: Apple Reveals the Most Common Reasons That It Rejects Apps

Dooood, don't make them angry. I had a hard enough time getting the damn reviewer to actually use the login (Apple/Apple.)

It was rejected TWICE in a row after 3 weeks of waiting because "it appears to require login account information" - despite a VERY clear explanation of how the app works and why you need to login and properly filling out the testing account entries in iTunesConnect, et cetera.

I started to think they were employing monkeys over there.

Just like you, every submission after the first acceptance - ZERO account activity on the apple demo account ;).

Comment Re:yet if we did it (Score 1) 463

I believe the opt out is only in relation to the law banning the use of wireless electronic devices. That would mean that only being charged under that statute would potentially allow interpretation of his duties to qualify. Other distracted driving statues and reasonable care would still apply.

Comment Re:What's the point? (Score 1) 511

by Assmasher (#47746953) Attached to: If Java Wasn't Cool 10 Years Ago, What About Now?

One of the overlooked advantages with using Java on the server/middleware side is that long running processes in real production environments often have to deal with memory fragmentation, with C++ this is often a very serious, and sometime virtually impossible situation to deal with (writing a pre-allocating memory manager is a non trivial task and you have to worry about people misusingit.) In Java (which I don't personally enjoy working in, but can appreciate), this issue is, for the most part, gone - and in those rare cases where you have to directly intervene, it is trivial to do so.

Given the skill of the average "I work at a bank building IFX/OFX software" developer, I'd rather they stuck to Java...

Comment Re:What's the point? (Score 1) 511

by Assmasher (#47746931) Attached to: If Java Wasn't Cool 10 Years Ago, What About Now?

I can't use a statically typed language without being constantly pelted with reminders of their limitations. No, you can't compile that, you didn't use quite the right punctuation in the type name. Sorry, I couldn't protect you from that null pointer, even though I have decades of research and all the source code available to me. Oh, you want a type that could be one of several types? Have fun with those runtime downcasts, or null pointers, or whatever.

Personally, it sounds like you want to be as sloppy as you like... Nobody should be protecting you from null pointers except yourself.

Slashdot Top Deals

"What man has done, man can aspire to do." -- Jerry Pournelle, about space flight

Close