Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!


Forgot your password?
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×

Submission + - SPAM: Market May Have Found a Bottom

satoshiminaoi writes: NEW YORK (Investing Guide at Deep Blue Group Publications LLC) — On Thursday, the market was searching for a bottom. Friday saw that bottom made.

All the indexes ripped higher out of the gate. The oversold condition, mentioned Thursday, in the Nasdaq and the Russell 2000 paved the way for the move higher.

The S&P 500 daily trading range is the setup for the algorithm machines and the hedge fund community. The S&P came within 10 points of its sell range on Friday and within 10 points of its buy range. Volatility on a daily basis is the theme.

The DJIA was up triple digits at one point and the other indexes were also up huge. A late-day selloff paired those gains. The Nasdaq and Russell 2000 went red again before closing slightly higher.

The DJIA closed at 1623.06, up 58.83 points. The S&P 500 closed up 8.57 points, at 1857.62. Even though the Nasdaq and Russell 2000 closed slightly green, those indexes were still well into oversold territory, according to certain internal indicators. We should expect a continued move higher next week in the indexes, based on these conditions.

This market is not for the faint of heart. This is a trader's market, pure and simple. Just when the bears were out in force this week, calling for market tops, we are nowhere near that type of signal after Friday's market rebound.

Based on internal signals, the trend remains bullish. As I have stated on different occasions, the trend is a three month or more month time frame.

The S&P 500 is not close to that bearish signal. At one point Friday, the S&P 500 index came within 12 points of its all-time closing high. That is certainly not a bearish sign.

Until this market breaks the necessary technical levels to become a bearish trend, traders and investors alike need to play this market from the bullish perspective. If not, money will be lost and many long opportunities will be missed.

Next Tuesday, the markets begin the month of April with a clean slate. There will be no more quarterly squaring up of the books.

This has been a flat stock market for the first three months of 2014. Gold and utilities have been the leaders. The dollar and interest rates are burning. The consumer is feeling the inflationary pinch. This is not a good recipe for continued stock-market growth. At some point, the markets will reflect this negative headwind. Until then, let the markets be your guide, as the trend is still higher.

Two positions that I mentioned in Thursday column that were purchased and sold on Friday were Las Vegas Sands (LVS_) and Hologic (HOLX_). Both were sold for nice gains.

On Friday, Orbitz (OWW_) and Safeway (SWY_) were added as long purchases. Currently, both companies are extraordinarily oversold, according to internal indicators.

At the time of publication, the author held positions in OWW and SWY, but positions may change at any time.

This article represents the opinion of a contributor and not necessarily that of TheStreet or its editorial staff.

(Article Source: [spam URL stripped])

Link to Original Source

Submission + - South Africa appeals to ISO against OOXML (openmalaysiablog.com)

yoonkit writes: "The South African national body (SABS) has submitted an official appeal against DIS 29500 (Microsoft Office OpenXML) to ISO and IEC stating "deep concerns" on the contradictions raised early in the process, "challenges" the interpretation of the ISO directives on the conduct of the ballot resolution meeting (BRM) and the inappropriateness of the fast-tracking of the large DIS. [PDF and transcript available.] Steve Pepper, ex-Chair of the Norwegian TC who lead the demonstration against OOXML, also urges "other national body members of JTC1 to declare their support for this appeal. Let's make it impossible for ISO and IEC to simply wave it aside.""
The Internet

Submission + - SPAM: Largest US power co. is a net security black hole

coondoggie writes: "The Government Accountability Office today issued a searing indictment of the network security systems, or lack thereof, guarding the control systems that regulate the country's largest public power company. The Tennessee Valley Authority (TVA) is a federal corporation that generates power using 52 fossil, hydro and nuclear facilities in an area of about 80,000 square miles and has not fully implemented appropriate security practices to protect the control systems used to operate its critical infrastructures, the GAO concluded. TVA's corporate network infrastructure and its control systems networks and devices at individual facilities and plants reviewed were vulnerable to disruptions that could endanger a good portion of the country's economic security and public health and safety, the GAO said. [spam URL stripped]"
Link to Original Source

Submission + - Piece of Missing Cosmic Matter Found (yahoo.com)

mgmirkin writes:
Astronomers have found a piece of the universe's puzzle that's been missing for awhile: a type of extremely hot, dense matter that is all but invisible to us.
Along with dark matter, the missing baryonic matter is thought to form an enormous spider web of tendrils that connect galaxy clusters, which sit on threads and knots in the web.

The missing part of this matter was thought to be a hot, ultra-thin gas haze of very low density between larger structures. Its hellacious temperature means that it only emits far-ultraviolet and X-ray radiation.
"So far we could only see the clusters, the dense knots of the web. Now we are starting to see the connecting wires of the immense cosmic spider web," said MPE study team member Aurora Simionescu of the discovery of this missing baryonic matter.

A similar baryonic haze, 150 times hotter than the sun's surface, was indirectly detected surrounding the Milky Way and connecting about three dozen other galaxies known collectively as the Local Group in 2003 by astronomers at Harvard and Ohio State Universities.

See original article here: Piece of Missing Cosmic Matter Found


Submission + - Bank Collects, Sends Customer Info to Denmark

Teejaykay writes: In March this year, the Finnish Sampo Bank moved their website and e-bank services to its parent company Danske Bank's IT platform with unexpected and amusing consequences, though less so for their customers. It has now come to light that their e-bank's java applet is also collecting data and sending it to Denmark — to a server which stores information from online opinion polls and presumably other data mining operations. The applet collects, among other things, the name of the computer, make of the soundcard, the partitions on one's hard drives and the kernel version number. The Finnish Data Protection Board has asked Sampo Bank for an explanation (link contents in Finnish).

Submission + - Constrictive NDAs

wbtittle writes: "We have been asked to do some work for a large corporation. Before we get the spec for work we need to sign an NDA (non disclosure agreement). This is perfectly reasonable. The company has trade secrets that it doesn't want promulgated to its competitors. One of the clauses of the NDA is "the signee shall not use our company name in any literature. It may not say or infer that the signee has done work for our company or any wholly owned, partially owned or franchised company." Part of the reason we would do work for the company is to say that we did work for the company. Saying you do work with a Fortune 100 company is a good marketing practice. We have done business with subsidiaries (partially owned and franchised) before (also on the Fortune 100 list) and haven't had to sign such statements. Is this a growing trend? We are probably not going to sign this NDA and forgo the potential of this contract because losing the ability to say we have done work for X Company could really hurt our marketability."

Submission + - Good books for learning mainframes

Anonymous Coward writes: "I have been working with computers for about 21 years. I started on the Apple IIc and went from there. I have used workstation versions of Linux, Windows, Unix, OS/2, and MacOS. I have worked as a network administrator and systems administrator for some small businesses. This allowed me to work with some low end Windows and Unix web servers and domain servers. I am now wishing to become better acquainted with the mainframe side of computers. I am a hardware nerd at heart, but have a great deal of experience with software as well. I would like to find a book that will give me an overview of mainframes from the ground up. It should include items like hardware maintenance and software setup."

Submission + - Blogger says more URI abuse to come (zdnet.com) 1

Anonymous Coward writes: "Nathan McFeters of ZDNet has posted a story that references a new URI abuse type of flaw in IBM's Lotus Expediter. The attack is a command injection, and can be leveraged to run arbitrary code. It was originally reported to security focus by Thomas Pollet. Security focus provides the following details:

"IBM Lotus Expeditor is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the context of users that follow malicious URIs. We don't know which specific versions of IBM Lotus Expeditor are affected. We will update this BID as more information emerges."

and gives a proof of concept of the exploit:


McFeters and fellow researchers Billy Rios and Rob Carter have presented at the Black Hat computer security conferences on this topic this year, and this type of flaw has turned out to be a pretty major flaw for numerous applications. The group mentions that this type of attack can be triggered using cross site scripting or cross site request forgery attacks. McFeters mentions that he is seeing more of these issues, and that he expects a lot more flaws to come, including in mobile devices.

My question is, why are developers using this functionality? If it is leading to so many issues, as McFeters claims in his blog, then why are developers using it, or why aren't they doing a better job to lock it down?"


Submission + - Programming materials for curriculum development

stryphos writes: "I am wanting to implement programming in my secondary/post-secondary Computer Tech classes. I have recently purchased a copy of Deitel's Java and C++ programming guides. I have an additional amount of money that I can spend (and have to before end of fiscal year) for curriculum development to enhance these programs. What recommendations are out there for these languages (and/or others)? I am up for anything from videos to more literature to ... what are your thoughts? Remember, I need to spend this money soon or Uncle Sam takes it back."

Submission + - Hacked pumps give free gas (local6.com) 1

Dionysius, God of Wine and Leaf, writes: "Meanwhile, police are investigating an organized theft ring that used a never-before-seen device to hack gas station pumps and steal unlimited amounts of gasoline in Casselberry last week.

"One of the operatives (got) out and used a computerized device to bypass the pumps so they could pump an unlimited amount of gas into the vehicles," Casselberry police Lt. Dennis Stewart said.



Submission + - Researchers improve TCP throughput by 35% to 55% (infoscience.epfl.ch)

slashdotmsiriv writes: Researchers at EPFL showed that architectural trends in
the evolution of microprocessors have shifted the dominant
source of overhead in TCP receive processing from
per-byte operations, such as data copy and checksumming,
to the per-packet operations.

Motivated by this trend, they propose two optimizations to
receive side TCP processing, Receive Aggregation and
Acknowledgment Offload, which reduce its per-packet
overhead. These optimizations result in significant improvements
in the receive throughput of TCP in native Linux, by 35% in a uniprocessor
and 55% in an SMP system.

Hopefully, we will soon have these optimizations in vanilla kernel


Submission + - Neuros and TI Launch Open Video Platform/Bounties (neurostechnology.com)

JoeBorn writes: "Texas Instruments has joined forces with Neuros Technology, an open-source video device manufacturer, to promote development of an open-source software platform for video hardware and set-top boxes. This platform, which will enable HD playback and recording, will open up the television as a development target and give community and third-party developers the ability to build applications for the TV. The bounty program will be paying cash to developers who implement specific features, and reflects an increased interest from TI in building ties with the open source software community on top of its hardware components. Are community-focused bounties an effective way to introduce large, traditionally closed companies to the open source community?"

Submission + - Which robot/kid combo annoys you the most?

An anonymous reader writes: CNET's picked up on the fact that many sci-fi movies seem to team kids with robots and inevitably the kids are always annoying. In the original Battlestar Galactica, for example, "Boxey and Muffett proceed to run the full gamut of annoyance: the kid has a bowl haircut, the dog runs off at inappropriate moments, the kid runs after the dog, they need rescuing... and that's just the first episode". But which robot/kid combos annoy Slashdot the most?

Submission + - SPAM: Carl Hayden Wins International Robotics Title

stoolpigeon writes: "Carl Hayden High School's Falcon Robotics team won the top prize in the international robotics championship over the weekend in Atlanta. The 42-member high school team includes students from some of the lowest income neighborhoods in Phoenix. The teens have competed this school year with a robot they built and named "Virginia's Dream." It was named for a girl that team members knew before she was deported after it was discovered her family was in Arizona illegally."
Link to Original Source
Sun Microsystems

Submission + - MySQL Community Speaks up on Proprietary Add Ons

An anonymous reader writes: There has been a flurry of posts from MySQL's open source developers on their thoughts around MySQL deciding to make proprietary extensions to the MySQL server. The "Monty" of MySQL has spoken out on his thoughts about Sun/MySQL adding proprietary features to MySQL. Brian Aker has also posted what he believes differentiates Open Source from Crippleware.

The trouble with money is it costs too much!