Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror

Submission Summary: 0 pending, 49 declined, 6 accepted (55 total, 10.91% accepted)

×

Submission + - The Internet Freedom Act of 2009 (thedailyshow.com)

Submitted by Gopal.V
Gopal.V writes: Jon Stewart took up the cause of Net Neutrality in last night's daily show episode. Even though daily show was a little biased, the topic under discussion was John McCain's Internet Freedom Act of 2009 which is essentially a death knell for net neutrality. US being pretty much the central routing hub of the entire internet, this will certainly affect everyone everywhere. Please note that the video is not advised for anyone who likes Unicorns.
Security

Submission + - CCC Create a rogue CA certificate (win.tue.nl)

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Just when you were breathing easy about Kaminsky, DNS and the word hijacking, by repeating the word SSL in your head, the hackers at CCC were busy at work making a hash of SSL certificate security. Here's the scoop on how they set up their own rouge CA, by (from what I can figure) reversing the hash and engineering a collision up in MD5 space. Until now, md5 collisions have been ignored because nobody would put in that much effort to create a useful dummy file, but a CA certificate for phishing seems juicy enough to be fodder for the botnets now."
Google

Submission + - Google Native client: x86 on the web (google.com)

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Google has announced Google native client which is enables x86 native code to be run securely inside a browser. With java applets already dead and buried, this could mean the end of the new war between browsers and the various javascript engines (V8, Squirrelfish, Tracemonkey). The only question remains whether it can be secured (ala ActiveX) and whether the advantages carry over onto non-x86 platforms.The package is available for download from its Google code site. Hopefully, I can finally write my web apps in asm."
Yahoo!

Submission + - Yahoo! launches Pipes

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Yahoo! has launched Pipes, a unixy way of remixing web content — in a somewhat "leg bone connected to the ankle bone" fashion — with connectors and filters/mutators, ending up with something very similar to the shell way of doing things, except with a cool javascript designer which faintly reminds you of ye olde Java Studio.

If you don't like content from Y! or flickr, this supports feeds from google base, which should make things interesting for real estate data at least. The tool definitely has a "Go forth and write your own aggregators" feel to it, rather than directly hooking into mashup land. As far as I'm concerned, I can finally create a pipe which filters out all the angst-ridden self-loathing out of blog feeds."
Patents

Submission + - Apple granted patent on ORM

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Apple has just been granted patent #7,127,474 by the USPTO. The idea is the basis and concept for a large number of ORM sub-systems in J2EE or Ruby on Rails. Even though I expect Sun and others to pay a royalty to apple, it raises some interesting contradictions for rails shipping with Leopard. But still you can't argue with the relevance of the patent.

And for the fear of tainting ORM developers — please do NOT RTF PATENT if you are one. Just say No! to software patents."
Google

Submission + - Google Earth buffer overflow exploit discovered

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "A buffer overflow exploit has been detected in Google Earth. The vulnerability uses a malformed .kml file, subscribed or automatically refreshed by the application. It is being disputed whether this could be used to insert a canned payload (like the vnc dlls) — but nobody really has come out with the code, so far.

The Linux version of Google Earth and the NASA WorldWind's KMLImporter are not reported as vulnerable."
Yahoo!

Submission + - Yahoo! Login for your website

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Yahoo! has brought out a new auth system for their single-sign-on system, which lets other third party websites to authenticate and access user content, after user login. Or as the ydn blog said "Our Users Can Be Your Users Too". The Yahoo! Photos api, which uses this, has already been announced and if I read the cards right, a Yahoo! Mail api is currently being demo'd before the open hackday participants."
Yahoo!

Submission + - Yahoo! launches Ruby Developer Center

Submitted by
t3rmin4t0r
t3rmin4t0r writes: "Yahoo! has launched a Ruby Developer Center adding another language to their Developer Network toolkit. The site includes tutorials on how to access the popular Yahoo! web services with ruby such as using the Term Extraction or the del.icio.us REST apis. If you want to get in touch with the developers or other users, there is a ydn-ruby mailing list. Here is the official announcement.

Apparently, the ruby version of the toolkit has come out of a spare time project. So ... can I have my perl support tomorrow ?"
Yahoo!

Submission + - Yahoo! opens up Hack Day

Submitted by
Gopal.V writes: As part of their Y! Developer Network programme, Yahoo! is holding a developer only two-day event — Sept 29th & 30th. You can read more about it on hackday.org or techcrunch. The idea seems to to extend the energy and enthusiasm that came out of the Hack Days, purely internally and add a little zing to it in terms of external contributors, not to mention a bit of community interaction.

Considering all the cool stuff that has come out of the original hack days (as ycoolthing shows), this could be really a good idea. So if you've been hacking away with some random Y! api, here's a stage for you to show up and beat the masters at their own game.

Slashdot Top Deals

The optimum committee has no members. -- Norman Augustine

Close