Wolfrider - Slashdot User

Submission + - Popular Security Software Came Under Relentless NSA and GCHQ Attacks (firstlook.org)

Submitted by schwit1 on Monday June 22, 2015 @07:54PM

schwit1 writes: The National Security Agency and its British counterpart, Government Communications Headquarters, have worked to subvert anti-virus and other security software in order to track users and infiltrate networks, according to documents from NSA whistleblower Edward Snowden.

The spy agencies have reverse engineered software products, sometimes under questionable legal authority, and monitored web and email traffic in order to discreetly thwart anti-virus software and obtain intelligence from companies about security software and users of such software. One security software maker repeatedly singled out in the documents is Moscow-based Kaspersky Lab, which has a holding registered in the U.K., claims more than 270,000 corporate clients, and says it protects more than 400 million people with its products.

Submission + - TRIM and Linux: Tread Cautiously, And Keep Backups Handy

Submitted by Anonymous Coward on Tuesday June 16, 2015 @02:54PM

An anonymous reader writes: Algolia is a buzzword-compliant ("Hosted Search API that delivers instant and relevant results") start-up that uses a lot of open-source software (including various strains of Linux) and a lot of solid-state disk, and as such sometimes runs into problems with each of these. Their blog this week features a fascinating look at troubles that they faced with ext4 filesystems mysteriously flipping to read-only mode: not such a good thing for machines processing a search index, not just dishing it out. The NGINX daemon serving all the HTTP(S) communication of our API was up and ready to serve the search queries but the indexing process crashed. Since the indexing process is guarded by supervise, crashing in a loop would have been understandable but a complete crash was not. As it turned out the filesystem was in a read-only mode. All right, let’s assume it was a cosmic ray :) The filesystem got fixed, files were restored from another healthy server and everything looked fine again. The next day another server ended with filesystem in read-only, two hours after another one and then next hour another one. Something was going on. After restoring the filesystem and the files, it was time for serious analysis since this was not a one time thing. https://blog.algolia.com/when-... The rest of the story explains how they isolated the problem and worked around it; it turns out that the culprit was TRIM, or rather TRIM's interaction with certain SSDs: The system was issuing a TRIM to erase empty blocks, the command got misinterpreted by the drive and the controller erased blocks it was not supposed to. Therefore our files ended-up with 512 bytes of zeroes, files smaller than 512 bytes were completely zeroed. When we were lucky enough, the misbehaving TRIM hit the super-block of the filesystem and caused a corruption. Since SSDs are becoming the norm outside the data center as well as within, some of the problems that their analysis exposed for one company probably would be good to test for elsewhere. One upshot: As a result, we informed our server provider about the affected SSDs and they informed the manufacturer. Our new deployments were switched to different SSD drives and we don’t recommend anyone to use any SSD that is anyhow mentioned in a bad way by the Linux kernel.

Submission + - Voat overloaded as people abandon Reddit .. (independent.co.uk)

Submitted by nickweller on Monday June 15, 2015 @09:04PM

nickweller writes: So many people are leaving Reddit that its closest competitor crashed and had to ask for donations to stay up.

Many users of the site protested and left when last week it banned five subreddits for harassment. And since, users have been making good on threats to leave the site — going instead to a Swiss clone of the site, Voat.

Submission + - LastPass reporting a security breach, including authentication hashes and salts (lastpass.com)

Submitted by hawkeyeMI on Monday June 15, 2015 @04:44PM

hawkeyeMI writes: They have posted a notice, which begins, "We want to notify our community that on Friday, our team discovered and blocked suspicious activity on our network. In our investigation, we have found no evidence that encrypted user vault data was taken, nor that LastPass user accounts were accessed. The investigation has shown, however, that LastPass account email addresses, password reminders, server per user salts, and authentication hashes were compromised."

Comment Re:aside from the HD, the same (Score 1) 558

by Wolfrider on Sunday June 14, 2015 @11:30PM (#49911691) Attached to: Ask Slashdot: What Hardware Is In Your Primary Computer?

> There's some funny BIOS problem connected with the hard drives. Occasionally, the computer fails to detect any drives at all and waits on "press F10 to enter setup". More often it detects the drive but fails to boot

--Have you tried replacing the CMOS battery and SATA cables? Also might want to check the power supply, if it's more than 4 years old it might be worth replacing with a higher wattage/more efficient model.

Submission + - Notepad++ Leaves SourceForge (notepad-plus-plus.org)

Submitted by Anonymous Coward on Sunday June 14, 2015 @07:03PM

An anonymous reader writes: SourceForge was a good place; unfortunately, sometimes good places don't last.

Recently SF hijacked its hosted projects to distribute their wrapped crapware:

SourceForge grabs GIMP for Windows' account, wraps installer in bundle-pushing adware
Black “mirror”: SourceForge has now taken over Nmap audit tool project
What happened to Sourceforge? The full story between VLC and Sourceforge

Obviously, the paid component per installation system is one of their important income generating scams. I would be fine with that, if they were the actual owners of the legitimate software. The real problem is, they are polluting these open source software installations for the purpose of filling their pockets by this scam, and worst of all, without even notifying the authors/creators of this software, while the creators are struggling against such parasitic software in order to keep their installers cleaner and safer.

Such a shameless policy should be condemned, and the Notepad++ project will move entirely out of SourceForge.

I humbly request that Notepad++ users not encourage such scams, and educate others not to download any software from SourceForge. I request as well that the project owners on SourceForge move out of SourceForge, in order to preserve the purpose of the Open Source Community and encourage the works of true authors/creators.

Submission + - Disney Blacklisted Displaced American Workers (dailycaller.com) 1

Submitted by schwit1 on Tuesday June 09, 2015 @09:29PM

schwit1 writes: The American tech workers Disney laid off in January after forcing them to train their foreign replacements were put on a "black list" that disqualified them from hire by any contractor that works with Disney, emails obtained by The Daily Caller News Foundation between one of the laid off workers and a recruiting firm show.

Submission + - The world's first water computer (csmonitor.com)

Submitted by Okian Warrior on Tuesday June 09, 2015 @06:37PM

Okian Warrior writes: Stanford's Manu Prakash created a computer clock made of water droplets trapped in a magnetic field that could have biological and chemical applications, as well as change the way scientists think about computation.

Check out the video of the computer in action.

[[You guys keep complaining that no one submits good videos to the feed, well here's one. Check out the video accompanying the article: https://www.youtube.com/watch?...

[[Also not the video technique. People talking, but interspersed with interesting images of their system in action. Still scenes are made more interesting by camera movement.]]

Submission + - Why So Many Robots Struggled with the DARPA Challenge (roboticstrends.com)

Submitted by stowie on Tuesday June 09, 2015 @04:35PM

stowie writes: DARPA deliberately degraded communications (low bandwidth, high latency, intermittent connection) during the challenge to truly see how a human-robot team could collaborate in a Fukushima-type disaster. And there was no standard set for how a human-robot interface would work. So, some worked better than others. The winning DRC-Hubo robot used custom software designed by Team KAIST that was engineered to perform in an environment with low bandwidth. It also used the Xenomai real-time operating system for Linux and a customized motion control framework. The second-place finisher, Team IHMC, used a sliding scale of autonomy that allowed a human operator to take control when the robot seemed stumped or if the robot knew it would run into problems.

Submission + - Congress Didn't Notice the FBI Creating a 'Small Air Force' for Surveillance (theatlantic.com)

Submitted by Errorcod3 on Tuesday June 09, 2015 @01:15PM

Errorcod3 writes: Last week, Americans learned that even as the NSA collected information on their telephone and Internet behavior, the FBI was using fictitious companies to secretly operate what the AP called “a small air force with scores of low-flying planes across the country carrying video and, at times, cell phone surveillance technology.”

The news organization reported that surveillance flights may be more than a decade old, and identified “more than 100 flights since late April orbiting both major cities and rural areas.”

The merits of this program will now be debated.

What’s already clear, however, is the anti-democratic nature of keeping it hidden all these years. The U.S. is supposed to be governed by the people. Whether Americans want a federal law-enforcement agency using planes to conduct surveillance on vast swaths of the country is a question properly aired and debated.

It is for Americans to choose.

Instead, an executive branch that has grown alarmingly powerful since the September 11 terrorist attacks, or perhaps even before, imposed its preferred policy in secret. The vast majority of Americans were completely unaware of its choice.

Comment Re:What do we get? (Score 1) 468

by Wolfrider on Monday June 08, 2015 @12:36AM (#49864689) Attached to: Features That Windows 10 Will Deprecate

> What if I wanted to go back to 7/8?

--Running a full image backup with the free bootable system rescue cd and ntfsclone to an external USB drive is probably a very good bet... HOWTOs are available if you do a search. See distrowatch.com to download system rescue cd. Oh, you should also do an ' fdisk -l ' from the cd and DD backup the boot partition as well. ;-)

Comment Re:You Mean...? (Score 1) 468

by Wolfrider on Sunday June 07, 2015 @11:23PM (#49864487) Attached to: Features That Windows 10 Will Deprecate

--Of course, if you have a lot of non-US content, it may actually be cheaper/more convenient to have a 2nd drive installed that is permanently locked to that region rather than flashing back and forth... ;-)

Submission + - Hunt for the Dangerous Defecator—company demands DNA swabs, employees sue (arstechnica.com)

Submitted by THE_WELL_HUNG_OYSTER on Tuesday June 02, 2015 @06:15PM

THE_WELL_HUNG_OYSTER writes: Who left offensive fecal matter throughout an Atlanta warehouse that stored and delivered products for grocery stores?

Two employees, who were forced to give a buccal cheek swab to determine if their DNA matched the poop, are suing in what could be the first damages trial resulting from the 2008 civil rights legislation Genetic Information Nondiscrimination Act (GINA), which generally bars employers from using individuals' genetic information when making hiring, firing, job placement, or promotion decision.

Although there was no DNA match, the two were offered a combined $200,000 settlement. The plaintiffs rejected it and "said the offer was a load of doo doo".

Submission + - Cure for cancer one step closer after 'spectacular' breakthrough (newsweek.com)

Submitted by schwit1 on Monday June 01, 2015 @11:03PM

schwit1 writes: The treatment, known as immunotherapy, uses the body's immune system to attack cancerous cells. Researchers say it could replace chemotherapy as the standard treatment for cancer within five years.

A series of studies show that the drugs are effective against some of the most deadly tumours, including those of the lung, bowel, liver and head.

Patients who could expect to live for just a matter of months under existing treatments, could see their tumours completely destroyed and go on to enjoy a normal lifespan under the new treatment.

Submission + - Netflix Is Experimenting with Advertising (vice.com)

Submitted by derekmead on Monday June 01, 2015 @02:20PM

derekmead writes: Netflix is experimenting with advertisements that run both before and after users watch a video. It's unclear whether or not the company will eventually push ads to everyone.

For now, the company is primarily experimenting with the HBO model of pitching its own original programming to viewers. The company is only showing trailers for shows like Orange Is the New Black and House of Cards—it has not attempted to sell third party ads, and the company told me that, for the moment, only specific users in specific markets are seeing ads.

Slashdot Top Deals