Please create an account to participate in the Slashdot moderation system


Forgot your password?

+ - Solaris 11.3 Onwards Will Feature OpenBSD's PF Packet Filter ->

Submitted by writes: In his most recent article, Solaris Admins: For A Glimpse Of Your Networking Future, Install OpenBSD, Peter Hansteen points to leaked information (via a patch to a mailing list) that Oracle's Solaris from version 11.3 (expected this year) onwards is joining the ranks of OSes using the OpenBSD PF firewall. From version 12 onwards, PF will be the only packet filter, replacing the legacy IPF system. Which was the software PF was designed to replace, due to performance and rather nasty licensing reasons.
Link to Original Source

+ - For The First Time, SpaceX Will Land A Rocket After Launch->

Submitted by schwit1
schwit1 writes: On January 6, Musk’s company SpaceX will launch a Falcon 9 rocket to the International Space Station. The launch itself is fairly unremarkable; SpaceX has had a contract with NASA for some time now to transport cargo to the ISS via unmanned rockets, as part of the Commercial Resupply Services program.

What SpaceX will attempt to do after the launch is what makes the mission so exciting. The company will try to land the first stage of its Falcon rocket on a platform in the ocean — a feat that has never been done before.

Link to Original Source

+ - TrueCrypt gets a new life, new name->

Submitted by storagedude
storagedude writes: Amid ongoing security concerns, the popular open source encryption program TrueCrypt may have found new life under a new name, reports eSecurity Planet. Under the terms of the TrueCrypt license — which was a homemade open source license written by the authors themselves rather than a standard one — a forking of the code is allowed if references to TrueCrypt are removed from the code and the resulting application is not called TrueCrypt. Thus, CipherShed will be released under a standard open source license, with long-term ambitions to become a completely new product.
Link to Original Source

Comment: Re:while... (Score 2) 117

by Tetch (#47905189) Attached to: Indian Mars Mission Has Completed 95% of Its Journey Without a Hitch

while 95% of the population still live in extreme poverty and could make more use of the billions wasted on this project

Nah, sorry, this argument doesn't work. Far more billions are wasted on completely useless military activity than the relatively miniscule space program of all nations put together - and the space programme at least has a use ...

As 'The Hawk' says, we urgently need to set up an off-world colony before the next asteroid strike wipes our species out. We had an unexpected visit from such an asteroid whizzing past inside the orbit of our geostationary satellites just a couple of days ago - this house-sized lump of rock was only detected for the first time about a week before it arrived. Who knows how long we've got before one of these things actually collides with us. Apparently such an event is now overdue in geological timescale terms.

More space programme please.

Comment: Re:Bad Technology Is Bad (Score 1) 207

by Tetch (#46296011) Attached to: Chevron Gives Residents Near Fracking Explosion Free Pizza

Thanks - didn't know about that one, and I'm grateful for the information .... It's been worrying me more and more that idiots (i.e. politicians) keep commissioning more and more nuclear power generation facilities without having any idea (and without even wanting to know) how we're going to clean up the aftermath. It's good to know that somebody has made at least one serious attempt to try it. Although ...

Still has the "what do we do with nuclear waste?" problem, but it was decommissioned anyway.

... as you noted, encasing the reactor vessel in concrete foam and burying it under 45 feet of gravel doesn't really cut it.

If you haven't seen it, there's a really instructive documentary ("Into Eternity"), made in 2010, about a nuclear waste storage repository ("Onkalo") being constructed deep underground in Finland, that is tackling - among other things - the extreme difficulty of figuring out how to construct signage ("Stay Away - Extreme Danger To Health") at the entrance to the facility, that will still be adequately durable, legible and understandable to descendant humans 100,000 years from now.

As the narrator says, "Onkalo must last 100,000 years. Nothing built by man has lasted one tenth of that time."

Another instructive documentary covers the herculean efforts made by the Russians/Ukrainians at Chernobyl to avoid a worse disaster than we already had.

It's a horrific story. They used soldiers to go up on the roof of the reactor building, each of whom could only risk being there for 45 seconds before getting their full dose for the year - enough time to chuck 2 shovelfulls of debris over the side, and then run away fast. In the end, they had to mobilise 500,000 (!) workers of all kinds to get the emergency cleanup done - and as we all know, even then it wasn't done very well, so much so that the EU is having to do it all over again.

I don't even want to think about how Fukushima's gonna go - it seems to be a worse mess than Chernobyl (albeit at a somewhat better designed & built power station). One fact that has stayed with me was how, at the time the tsunami took out the power, the on-site engineers had to go get their car batteries out of their own cars, bring them in, and wire them up in series so as to power up the control room instrumentation to find out what was going on in the reactors. We all owe those guys a beer.

It seems to me (somebody else coined this, not me) that our technological capabilities have advanced faster than we have evolved the ability to safely manage them, and we should just take a step back and do some very careful thinking. We can afford to reduce our lifestyles, wait a while, and revisit The Plan repeatedly until its perfect - we only have the one planet. It's the greedy short-termism involved in the rush to have it all that disgusts me.

Personally I imagine the way forward will involve giant solar panels in orbit collecting the Sun's bounteous energy and somehow transmitting it down to the surface. I have no idea whether that's just science fiction :-) .... it does of course require everyone to stop fighting wars, and divert all the money back into a proper space programme.

Comment: Bad Technology Is Bad (Score 5, Insightful) 207

by Tetch (#46292467) Attached to: Chevron Gives Residents Near Fracking Explosion Free Pizza

Yup, don't like fracking - it carries too high a risk of polluting my landscape, and quite likely turning a beautiful view into a rubbish-tip. In the UK, the government has even gone on record to say the extracted oil & gas won't reduce anybody's energy bills. It will, however, make a shit-load of money for some people who already have too much, and who seem willing to rig the deck to make sure they get their way.

Don't like nuclear fission power either - it produces *filthy* dirty waste, that we have no idea what to do with. AFAIK, not a single nuclear power station has yet been decommissioned and cleaned up anywhere in the world - quite a few are mothballed, while an alleged "decommissioning" process achieves almost nothing and stretches endlessly into the future at vast expense to the tax-payer (cos poor little private sector can't take the pain, so public sector has to take that task on, or private sector will take its ball home).

Both these technologies are amateurish, half-assed, ill-thought-out, poor examples of our abilities at this climactic moment of the 21st century, and I'm embarrassed to be a member of the same species that wants to do this crap. Come on ... we're capable of better than that.

For some reason, many of my peers in this /. community seem to take umbrage whenever there is any criticism of any industrial process if there is some kind of "technology" aspect to that process. There appears to be a belief that so long as a process makes money and is technological, it must be undertaken, irrespective of the impact on this one uniquely precious planet that we have here. I will continue to try to understand this point of view, but I fear its exponents are blinded by the flashing lights.


+ - Harvard Bomber Hoax Perpetrator Caught through Tor->

Submitted by Meshach
Meshach writes: The FBI has caught the student who called in a bomb threat on December 16. The student used a temporary anonymous email account routed through Tor but the FBI were able to trace it because it originated in the Harvard wireless network. He could face as long as five years in prison, three years of supervised release and a $250,000 fine if convicted.
Link to Original Source

+ - Theo de Raadt gives a 10-year summary on exploit mitigation in OpenBSD

Submitted by ConstantineM
ConstantineM writes: Microsoft has all significant exploit mitigation techniques fully integrated and enabled, claims Theo de Raadt at Yandex ruBSD, whilst giving a 10-year summary of the methods employed by OpenBSD. In year 2000, OpenBSD started a development initiative to intentionally make the memory environment of a process less predictable and less robust, without impacting the well-behaved programs. Concepts like the random stack gap, W^X, ASLR and PIE are explained. Some of them, like the random stack gap, are implemented with a 3-line change to the kernel, yet it appears that some other vendors are still shipping without it.

+ - Image of Europe Getting Nuked Used in Promotion for China's Moon Rover-> 4

Submitted by jjp9999
jjp9999 writes: In a promotional exhibit for China's Jade Rabbit lunar rover, an image in the background showed a nuclear explosion over Europe. The image they used was public stock photo titled "Nuclear Explosion on Earth from Space." How it got picked up for the exhibit remains a mystery. The exhibit was shown in November at the China International Industry Fair 2013 in Shanghai ahead of China's recent lunar landing.
Link to Original Source

+ - Qt 5.2 - Foundation for KDE Frameworks 5->

Submitted by KDE Community
KDE Community writes: On December 12th, the Qt Project released Qt 5.2. Congratulations to the Qt community for this great milestone! This version will form the foundation of Frameworks 5, the upcoming modularized release of the KDE libraries. As part of the Frameworks efforts, KDE devoted considerable effort to integrating valuable KDE technologies into Qt 5.2. This article is intended to give a glimpse at some of KDE's contributions to Qt.
Link to Original Source

Comment: Re:Time to switch gears (Score 2) 163

by Tetch (#45711021) Attached to: Facebook Tracks the Status Updates and Messages You Don't Write Too

Yes, Javascript is used all over the web, but I find that in almost every case it is unnecessary. I use Noscript, and have a pretty small whitelist, comprising mostly just my bank, some webmail sites, and one or two travel ticket booking sites that just don't work at all without it. I temporarily whitelist quite a variety of sites whose functionality is enhanced by scripting, but only on those occasions when I actually need that extra functionality - and taking that moment to click on the Noscript icon to do the temporary whitelist really doesn't slow me down.

One example is the BBC news website, which runs at least twice as fast with scripting disabled - so I keep scripting blocked there except when I actually want to watch the video associated with a news story.

Facebook stays disabled except on those rare occasions when I actually venture into that cess-pit; I believe (not sure) that this preserves me from most/all of those attempts by Facebook to follow me round the Web ("Like" ... "Share this" ...).

And all those tracker sites of which I'm aware (doubleclick, google-analytics, 2o7, etc.) stay on my Noscript 'Untrusted' list.

All the forums I use regularly work just fine without scripting, albeit sometimes with a slightly clunky look'n'feel. Often a site's 'search' facility just reports "No hits" unless scripting is enabled, but I'm blessed if I know why. So on the rare occasions when I need to search the forum, I temporarily whitelist. Easy, quick.
[BTW: I've authored plenty of websites with a search engine integrated, and scripting is just not necessary (at least with Ht://Dig).]

There is just no need for scripting in the vast majority of cases - genuinely Web 2.0 sites excepted. I reserve a special level of contempt for sites that implement links with Javascript.

I accept that large efficiencies of content data transfer are obtained when AJAX is used nicely (page components updated in situ instead of a complete retransmission of the entire modified page). However, as a capable security-minded sysadmin I'm also aware of that fundamental security adage: "If you let a Bad Guy run His program on Your computer, it's not Your computer any more", ((c) Microsoft). Javascript functions are programs, so to allow all websites to run Javascript on my computer is an act of faith that :

  1. 1) The site administrator is not a Bad Guy
  2. 2) The site administrator is competent enough to author and/or run the webserver platform in a sufficiently secure manner that it never gets broken into by a Bad Guy and infected with a silent drive-by malware download.

I'm afraid I just don't have that level of confidence in the abilities and motivations of all 5 Gajillion website sysadmins out there - and they not only have to be that competent, but also remain that competent 100% of the time. Heh.

I run without scripting enabled, I enjoy a significantly faster and more ad-free web experience, I visit all kinds of murky parts of the Web :), and it's literally years since any PC of mine acquired an infection - unlike the army of friends and relatives whose PCs I'm regularly called to disinfect. Sadly, I accept that most Ordinary Folks just cannot get their heads round this stuff, and are completely fazed by the idea of having to "authorise" anything that ever happens on their computer. This, my friends, is Our Fault - we should not have engineered a WWW that functions so dangerously.

Dialog Box (n):
A small window containing an 'Ok' button, a 'Cancel' button, and some text that the user will ignore.

You know that almost all drive-by downloads (apart from those that target buggy embedded document viewers) exploit a flaw in the DOM that requires Javascript to leverage, right ?

U X e dUdX, e dX, cosine, secant, tangent, sine, 3.14159...