An anonymous reader writes: A major security flaw which reveals VPN users’ real IP addresses has been discovered by Perfect Privacy (PP). The researchers suggest that the problem affects all VPN protocols, including IPSec, PPTP and OpenVPN. The technique involves a port-forwarding tactic whereby a hacker using the same VPN as its victim can forward traffic through a certain port, which exposes the unsuspecting user’s IP address. This issue persists even if the victim has disabled port forwarding. PP discovered that five out of nine prominent VPN providers that offer port forwarding were vulnerable to the attack.
MarkWhittington writes: Back in October, findings from the Kepler Space Telescope suggested that something strange was going on around a star called KIC 8462852. Kepler was built to detect exoplanets by measuring the cycles of dimming light from other stars, indicating that a large object was passing between them and Earth. But the dimming light cycle from KIC 8462852 seemed to suggest a lot of smaller objects swarming around it. Scientists narrowed down the explanations to either a swarm of comets or alien megastructures. NASA announced evidence garnered by two other telescopes that pointed to the comet explanation.
An anonymous reader writes: Viber is the latest communications app to offer the facility to erase content that we sent to other people from the recipient's inbox, whether they like it or not. But unlike similar functionality in Line and WeChat, there are no time restrictions imposed, and users can erase old messages from all inboxes at will. 'Unsending' a message is the dream of anyone who ever forgot to BCC properly. But while we are keen to protect our communications from government interference, do we not perhaps have some responsibility to history as well?
An anonymous reader writes: Research from an Estonian startup claims that Li-Fi, which uses light to transmit data, can operate at 100 times the speed of conventional Wi-Fi connectivity. In laboratory conditions speeds of up to 224 gigabytes per second were recorded, with the added security benefit that the data stops exactly where walls stop the light.
Halo1 writes: Twenty-three years ago, development started on the first version of the Turbo Pascal and later also Delphi-compatible Free Pascal Compiler, for OS/2 no less. Two decades and change later, the new Free Pascal Compiler 3.0.0 release still supports OS/2, along with a host of older and newer platforms ranging from MS-DOS on an 8086 to the latest Linux and iOS running on AArch64. On the language front, the new features include support for type helpers, codepage-aware strings and a utility to automatically generate JNI bridges for Pascal code. In the mean time, development on the next versions continues, with support for generic functions, an optional LLVM code generator backend and full support for ISO and Extended Pascal progressing well.
An anonymous reader writes: According to a Google report the company has evaluated 1,234,092 URLs from 348,085 requests since the EU's May 2014 "right to be forgotten" ruling, and has removed 42% of those URLs. Engadget reports: "To show how it comes to its decisions, the company shared some of the requests it received and its decisions. For example: a private citizen that was convicted of a serious crime, but had that conviction overturned during appeal, had search results about the crime removed. Meanwhile a high ranking public official in Hungary failed to get the results squelched of a decades-old criminal conviction. Of course, that doesn't mean the system is perfect and the company has already been accused of making mistakes."
An anonymous reader writes: Mozilla has released its annual financial report for 2014, and how the company's reliance on Google is finally ending: Revenue increased less than 5 percent, 90 percent of which came from Google and Yahoo. Every November, Mozilla releases its financial report for the previous year, but the 2014 version is a particularly complex one.
Mark Wilson writes: It's around this time of year, with Black Friday looming and Christmas just around the corner, that online sales boom. Today security firm High-Tech Bridge has issued a warning to retailers and shoppers about a critical vulnerability in the popular Zen Cart shopping management system.
High-Tech Bridge has provided Zen Cart with full details of the security flaw which could allow remote attackers to infiltrate web servers and gain access to customer data. Servers running Zen Cart are also at risk of malware, meaning that hundreds of thousands of ecommerce sites pose a potential danger.
Technical details of the vulnerability are not yet being made public, but having notified Zen Cart of the issue High-Tech Bridge says the date of full public disclosure is 16 December.
StewBeans writes: In this lighthearted article for the holiday, IT executives were asked, if they could invite any technologist living or deceased to their Thanksgiving dinner, who would they invite and why? One CTO said that he'd invite the CTO of Amazon, Werner Vogels, so he could hear his thoughts on the future of cloud computing. Another would invite Ratan Tata, who he calls the "Bill Gates of India." Other responses range from early visionaries like Grace Hopper and Vint Cerf to the mysterious inventors/designers of the Roland TR-808.
An anonymous reader writes: IEEE Spectrum reports on progress in the development of vacuum tube technology, which remains surprisingly relevant in 2015. "In the six decades since vacuum tubes lost out to solid-state devices in computers, receivers, and power supplies, vacuum technology has continued to evolve and branch out into new terrain, sustaining a small but skilled corps of engineers and scientists around the world, as well as a multibillion-dollar industry. That’s because the traveling-wave tube and other vacuum devices continue to serve one purpose extremely well: as powerful sources of microwave, millimeter-wave, and submillimeter-wave radiation. And now, ongoing research into a new and potentially revolutionary kind of traveling-wave tube—the ultracompact and ultraefficient cold-cathode TWT—looks poised to deliver the first practical device by the end of this decade."
Recently, on one Devuan box, I noticed that KDE power management (Powerdevil) no longer supported suspend and hibernate. Since pm-utils was still there, for a while, I resorted to call pm-suspend directly, hoping it would get fixed at some point. But it did not. So I wrote a report myself. I was not expecting much. But neither was I expecting it to be immediately marked as RESOLVED and DOWNSTREAM, with a comment accusing the "Debian fork" I'm using to "ripe out" systemd without "coming with any of the supported solutions Plasma provides". I searched beforehand about the issue so I knew that the problem also occurred on some other Debian-based systems and that the bug seemed entirely tied to upower, an upstream software used by Powerdevil. So if anything, at least this bug should have been marked as UPSTREAM.
While no one dares (yet) to claim to write software only for systemd based operating system, it is obvious that it is now getting quite hard to get support otherwise. At the same time, bricks that worked for years without now just get ruined, since, as pointed out by Edmunson, adding systemd as "optional extra defeats its main benefit". So, is it likely that we'll still have in 2016 a modern desktop environment, without recent regressions, running without systemd?
An anonymous reader writes: Benedict Evans has an interesting post about where television hardware is headed. In the 1990s and early 2000s, the tech industry made a huge push to invade the living room, trying to make the internet mesh with traditional TV broadcasts. As we all know, their efforts failed. Now, we periodically see new waves of devices to attach to the TV, but none have been particularly ambitious. The most successful devices of the recent wave, like the Chromecast and Apple TV, are simply turning the TV into a dumb screen for streamed content. Meanwhile, consumption of all types of video content is growing on smaller screens — tablets, phones, etc. Even game consoles are starting to see their market eroded by boxes like the Steam Link, which acts as a pipe for a game being played elsewhere on a PC. It raises an intriguing question: where is the television headed? What uses and functions does one giant screen serve that can't be cleverly redistributed to smaller screens? Evans concludes, "The web's open, permissionless innovation beat the closed, top-down visions of interactive TV and the information superhighway."
MarkWhittington writes: In an interview published in The Verge, celebrity astrophysicist and media personality Neil deGrasse Tyson touched off a firestorm when he suggested that commercial space was not going to lead the way to open up the high frontier. Tyson has started a live show that he calls "Delusions of Space Enthusiasts” in which he touched on, among other things, why the Apollo program did not lead to greater things in space exploration such as going to Mars. Tyson repeats conventional wisdom about Apollo and the Cold War. In any case, it is his remarks on commercial space that has caused the most irritation.