AusCERT aren't the Australian National CERT although they have in some ways been the de-facto CERT for some time. That position is now taken up by CERT Australia who are working closely with AusCERT and taken up some of their work. If you've got problems contacting them, send me some contact details and I'll try and help you out - I know some of their staff. AusCERT have been an incredibly useful source of information on compromised systems on my customer's networks.
Donald Knuth has published a book and a date has been set for the release of Duke Nukem Forever? It's all too much.
An anonymous reader writes "After going through all kinds of grief, including being shut down by the Washington State Ecology Department, classifying them as an 'incinerator,' it looks like Green Power Inc is finally ready to shine. The Air Force, Navy, Army, and Marines, in a joint effort, validated their technology in November, and the results are now being published for the first time. For every 100 tons of municipal solid waste feedstock processed each day, the plant produces 1240 gallons of Naphtha, 3700 gallons of Kerosene, 6900 gallons of Diesel and 3000 gallons of Fuel Oil. And even the ash can be used for cement or asphalt. They generate 1 MW of electricity to sell to the grid 24/7, running three shifts per day to keep the plant going, employing approximately five people per shift. Sticker price is $25 million. ROI, 3.5 years. Maybe with this announcement, the trend of no sales in the US will change, compared to the 72 foreign contracts backed by letters of credit."
One problems is that many of the domains appear to point towards servers running virtual hosts and hosting legitimate sites on the same IP address. We've been looking at data on our network and tracking down these infections based on IP address brings a lot of false positives. You really do need either proxy logs, or logs of DNS queries to find out the domain that's being contacted.
theodp writes "Taking a page from the insanely-jealous-husband-playbook, Motorola management has adopted an if-I-can't-have-you-nobody-can stance on its fired employees, reportedly blocking RIM from offering jobs to laid-off workers. In a complaint filed in state court, Motorola is charged with improperly trying to expand a previous agreement 'to prevent the RIM entities from hiring any Motorola employees, including the thousands of employees Motorola has already fired or will fire.' Through its Compete America membership, Motorola has repeatedly warned Congress that failing to accommodate the lobbying group members' 'principled' demand for timely access to talent would not be in the United States' economic interest and would make the US second-rate in education and basic research."
beadfulthings writes "After eight years and some $65 million, the state of Maryland is taking its first steps to return to an accountable, paper-ballot based voting system. Governor Martin O'Malley has announced an initial outlay of $6.5 million towards the $20 million cost of an optical system which will scan and tally the votes while the paper ballots are retained as a backup. The new (or old) system is expected to be in place by 2010 — or four years before the state finishes paying off the bill for the touch-screen system."
I read all my BBC stories on Slashdot you insensitive clod. Since I never RTFA, I never visit bbc.co.uk. QED
iCry writes "It was rumored last week, and Apple has now confirmed it: 'Apple said today that a firmware update to the iPhone due to be released later this week "will likely result" in SIM-unlocked iPhones turning into very expensive bricks... So what are users of SIM-unlocked iPhones to do? Not run the latest software update, that's for sure. Users can instead pray to the hacking deities — the famed iPhone Dev Team that released the free software unlock, and iPhoneSIMfree, which released a commercial software unlock — to write applications that will undo the unlocks, as it were, if those users want to run the latest iPhone software.'"
moquist writes "The approach of Software Freedom Day 2007 brings to mind a question that begs to be asked: what are you doing to inform people in your community about Software Freedom? What kind of event can you imagine holding that would attract the sorts of people who otherwise wouldn't ever hear about or try Linux, Firefox, or OpenOffice? Post your ideas here, or better yet, register a Software Freedom Day team and actually try them out in your community this year!"
Link to Original Source
Link to Original Source
Thousands of open source advocates and enthusiasts from around the world are expected to take the message of free and open source software to the streets on September 15 for the fourth annual Software Freedom Day.
Link to Original Source
Link to Original Source
An anonymous reader writes "The International Intellectual Property Alliance — a group that brings together several U.S. lobby groups including the MPAA, RIAA, BSA, the ESA, and publisher groups, has just released its Section 301 recommendations, criticizing 60 countries for their copyright laws. While the report leads to dire media coverage, Michael Geist has just debunked the lobby campaign demonstrating how "the U.S. approach is quite clearly one of 'do what I say, not what I do' (fair use is good for the U.S., but no one else), criticizing country after country for not enacting a DMCA, and blasting national attempts to improve education or culture though exceptions or funding programs.""
Stephan A. Rickauer writes "The newly announced "Free Linux Kernel Driver Development FAQ" initiated by Linux Kernel Developer Greg Kroah-Hartman, working for Novell, has provoked more negative reactions from prominent Free Software projects, e.g. OpenBSD. Project leader Theo de Raadt writes to Greg: "It is a fucking farce. You are trying to make sure that maintainers of code — ie. any random joe who wants to improve the code in the future — has LESS ACCESS to docs later on because someone signed an NDA to write it in the first place. You are making a very big mistake." Though the short term goal of getting Linux drivers more easily seems to be understandable in the first place, signing NDA's will hurt all Free Software projects in the long run. This short-sighted strategy will lead to the situation where companies are even less motivated to reveal free programming documentation. They will point with fingers to NDA'ed GPL code, which needs to be reverse engineered agin. Theo summarizes: "It is people like you who are closed."."
An anonymous reader writes "A growing number of people are concerned about where Wikipedia is heading. Some have left Wikipedia for Citizendium, while others are trying to change the culture of Wikipedia from within. A recent essay called Wikipedia is failing points out many of the problems which must be solved with Wikipedia for it to succeed in its aim of becoming a reputable, reliable reference work. How would you go about solving these problems?"
An anonymous reader writes "On December 23, Amazon advertised a "buy one get one free" sale on DVD boxsets, but did not test the promotion before going live. When anyone placed two boxsets in their cart, the website gave a double discount — so the "grand total" shown (before order submission) was $0.00 or something very small. Despite terms stating that Amazon checks order prices before shipping, Amazon shipped the vast majority of orders. Five days later (December 28), after orders had been received and presumably opened, Amazon emailed customers advising them to return the boxsets unopened or customers' credit cards would be charged an additional amount. (You can read more threads about this here and here.) Starting yesterday, Amazon has been (re)charging credit cards, often without authorization. On Amazon's side, they didn't advertise any double discount, and the free or nearly-free boxsets must have cost them a mint. But with Amazon continually giving unadvertised discounts that seem to be errors, is "return the merchandise or be charged" the new way that price glitches will be handled?"