Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Submission + - Have your iPhone 6 repaired, only to get it bricked by Apple (theguardian.com) 1

Nemosoft Unv. writes: In case you had a problem with the fingerprint sensor or some other small defect on your iPhone 6 and had it repaired by a non-official (read: cheaper) shop, you may be in for a nasty surprise: error 53.

What happens is that during an OS update or re-install the software checks the internal hardware and if it detects a non-Apple component, it will display an error 53 and brick your phone. Any photos or other data held on the handset is lost – and irretrievable.
Thousands of people have flocked to forums to express their dismay at this. What's more insiduous is that the error may only appear weeks or months after the repair.

Increduously, Apple says this cannot be fixed by any hard- or software update, while it is clearly their software that causes the problem in the first place.

And then you thought FTDI was being nasty...

Submission + - Online Museum Displays Decades Of Malware (thestack.com)

An anonymous reader writes: archive,org has launched a Museum of Malware, which devotes itself to a historical look at DOS-based viruses of the 1980s and 1990s, and gives viewers the opportunity to run the viruses in a DOS game emulator, and to download 'neutered' versions of the code. With an estimated 50,000 DOS-based viruses in existence by the year 2000, the Malware Museum's 65 examples should be seen as representative of an annoying, but more innocent era of digital vandalism.

Submission + - Undefined behavior is closer than you think

Andrey_Karpov writes: Some people think that undefined behavior is caused only by gross errors (accessing outside the bounds of the array, for instance) or inadequate constructions (i = i++ + ++i, for example). That's why it is quite surprising when a programmer sees undefined behavior in the code that used to work correctly, without arousing any suspicion. One should never let his guard down, programming in C/C++. Because hell is closer than you may think.

Submission + - Battle brewing over the right to record 4k and 8k broadcasts in Japan (itmedia.co.jp)

AmiMoJo writes: Japanese broadcasters have indicated that 4k and 8k broadcasts may have recording disabled via a "do not copy" flag, which receivers would be expected to obey. Now the Internet Users Association (MIAU) and Shufuren (Housewives Federation) have submitted documentation opposing the ban. The document points out that the ban will only inconvenience the majority of the general audience, while inevitably failing to prevent unauthorized copying by anyone determined to circumvent the protection.

Submission + - Firefox 44 Deletes Fine-Grained Cookie Management (mozilla.org)

ewhac writes: Among its other desirable features, Firefox included a feature allowing very fine-grained cookie management. When enabled, every time a Web site asked to set a cookie, Firefox would raise a dialog containing information about the cookie requested, which you could then approve or deny. An "exception" list also allowed you to mark selected domains as "Always allow" or "Always deny", so that the dialog would not appear for frequently-visited sites. It was an excellent way to maintain close, custom control over which sites could set cookies, and which specific cookies they could set. It also helped easily identify poorly-coded sites that unnecessarily requested cookies for every single asset, or which would hit the browser with a "cookie storm" — hundreds of concurrent cookie requests.

Mozilla quietly deleted this feature from Firefox 44, with no functional equivalent put in its place. Further, users who had enabled the "Ask before accept" feature have had that preference silently changed to, "Accept normally." The proffered excuse for the removal was that the feature was unmaintained, and that its users were, "probably crashing multiple times a day as a result" (although no evidence was presented to support this assertion). Mozilla's apparent position is that users wishing fine-grained cookie control should be using a third-party add-on instead, and that an "Ask before accept" option was, "not really nice to use on today's Web."

Submission + - A. Merkel proud to announce a breakthrough in fusion by German physicists (youtube.com)

HommeDeJava writes: German president Angela Merket, herself a trained physicist, was very proud to initiate a breakthrough by compatriots German physicists.

German president Angela Merket, herself a trained physicist, was very proud to announce and somewhat initiate a breakthrough by compatriots German physicists.

At the push of a button, Mrs Merkel have started a 2-megawatt pulse of microwave creating the first hydrogen plasma at 80 million degrees and a lifetime of a quarter of a second confined in the world's largest stellarator-type fusion magnetic bottle deviceWendelstein 7-X

This experiment can be considered as a breakthrough in thermonuclear fusion.

Submission + - Patent troll VirnetX awarded $626M in damages from Apple (arstechnica.com)

Tackhead writes: Having won a $200M judgement against Microsoft in 2010, lost a $258M appeal against Cisco in 2013, and having beaten Apple for $368M in 2012, only to see the verdict overturned in 2014, patent troll VirnetX is back in the news, having been awarded $626M in damages arising from the 2012 Facetime patent infringement case against Apple.

Submission + - Why the calorie is broken (arstechnica.com)

ami.one writes: Cynthia Graber and Nicola Twilley explain how we are still using a century old method for measuring the Calories in our Food AND the calories spent in different human activities. Essentially, there is a very big difference between burning stuff in a bomb calorie-meter and the extremely complex ways our body extracts energy from food. In fact, the exact process of digestion is yet to be understood sufficiently at a micro level, and years from being replicated to any close degree. Plus, the way our bodies spend calories for a given activity is hugely different from the way a car consumer gasoline and dependent on a number of parameters — some of which are not even known currently.
Therefore, balancing Calories IN to Calories OUT is not so stupidly simple as it seems to the underweight layperson .

Submission + - Oracle to Drop Java Browser Plugin in JDK 9 (softpedia.com) 1

An anonymous reader writes: After Mozilla said in October that it would stop supporting Firefox plugins on the older NPAPI technology, Oracle had no choice now but to announce the deprecation of the Java browser plugin starting with the release of the JDK version 9, which is set for release in March 2017, and developers are urged to start using the Java Web Start pluginless technology instead. Security issues also had a big part in Java's demise.

Submission + - Oracle deprecates the Java browser plugin

rudy_wayne writes: Oracle has announced that the Java browser plugin will be deprecated in Java 9, which is currently available as an early access beta. A future release will remove it entirely.

The deprecation will affect the many companies and governments who continue to insist on the use of Java applets hosted within the browser. Oracle has some advice on how to migrate away from the plugin.

Will old browsers running old versions of Java become the new "Windows XP" that businesses and governments cling to long after it should be killed off?

Submission + - Admiral in charge of Navy intel has not been allowed to see secrets for years (washingtonpost.com)

schwit1 writes: This is not an onion article.

For more than two years, the Navy's intelligence chief has been stuck with a major handicap: He's not allowed to know any secrets.

Vice Adm. Ted "Twig" Branch has been barred from reading, seeing or hearing classified information since November 2013, when the Navy learned from the Justice Department that his name had surfaced in a giant corruption investigation involving a foreign defense contractor and scores of Navy personnel.

Worried that Branch was on the verge of being indicted, Navy leaders suspended his access to classified materials. They did the same to one of his deputies, Rear Adm. Bruce F. Loveless, the Navy's director of intelligence operations.

More than 800 days later, neither Branch nor Loveless has been charged. But neither has been cleared, either. Their access to classified information remains blocked.

Submission + - Desktop 3D printers shown to emit hazardous gases and particles (acs.org)

An anonymous reader writes: A new study in the journal Environmental Science & Technology by researchers at Illinois Institute of Technology and The University of Texas at Austin sheds more light on potentially harmful emissions from desktop FDM 3D printers. The researchers measured emissions of both ultrafine particles (UFPs) and volatile organic compounds (VOCs) from 5 commercially available polymer-extrusion 3D printers using up to 9 different filaments. Their estimates of time-varying UFP emission rates ranged from ~10^8 to ~10^11 particles per minute across all tested combinations, varying primarily by filament material. They also found that the individual VOCs emitted in the largest quantities included caprolactam from nylon-based and imitation wood and brick filaments (ranging from ~2 to ~180 g/min), styrene from acrylonitrile butadiene styrene (ABS) and high-impact polystyrene (HIPS) filaments (ranging from ~10 to ~110 g/min), and lactide from polylactic acid (PLA) filaments (ranging from ~4 to ~5 g/min). Styrene is classified as a possible human carcinogen by the International Agency for Research on Cancer (IARC classification group 2B). While caprolactam is classified as probably not carcinogenic to humans, the California Office of Environmental Health Hazard Assessment (OEHHA) maintains low acute, 8-hour, and chronic reference exposure levels (RELs) of only 50, 7, and 2.2 g per cubic meters, respectively, all of which would likely be exceeded with just one of the higher emitting printers operating in a small office.

Submission + - OpenSSL to Release Emergency Security Patch on Thursday (openssl.org)

An anonymous reader writes: The OpenSSL project has announced that it will release a security update for all supported branches on Thursday. Noteworthy is that among the patches will be one for the OpenSSL 1.0.2 branch that is marked as HIGH risk, such as a Heartbleed style vulnerability that has affected OpenSSL before.

Submission + - MiniUPnP Vulnerability Clears Way to Stack Smashing Attack (threatpost.com)

msm1267 writes: Cisco’s Talos security intelligence and research group found and privately disclosed a serious and trivially exploitable client-side bug in Mini UPnP that was patched in September of last year.

Now four months later, it’s unclear how many vendor products that make use of the library were patched, nor is it known how many devices on private networks—things such as Xboxes, home and business routers and peer-to-peer applications such as the Bitcoin-qt wallet—have been patched.

Cisco today published technical details of the vulnerability and to demonstrate the widespread nature of the bug and its potential impact, released a proof-of-concept attack against the default Bitcoin wallet which opens the door to remote code execution.
Cisco’s exploit bypasses the Stack Smashing Protection (SSP) mitigation, which protects vulnerable buffers in a stack with a stack cookie, or canary. The Cisco attack bypasses the stack cookie on Linux systems.

Slashdot Top Deals

The universe seems neither benign nor hostile, merely indifferent. -- Sagan

Working...