By Tuesday morning Mastodon had gained 123,562 new users since October 27 (the site told TechCrunch) and had 528,607 active users. But by Saturday the number of new users had nearly doubled, to 230,000, reports CNN — with 655,000 active users.

In fact, for every 363 active users on Twitter, there's now one on Mastodon, CNN's figures suggest (since Twitter has nearly "238 million daily active monetizable users"). Exploring the recent spike, they note that Mastodon "has a similar look to Twitter, with a timeline of short updates sorted chronologically rather than algorithmically. It lets users join a slew of different servers run by various groups and individuals, rather than one central platform controlled by a single company like Twitter, Instagram, or Facebook." Unlike larger social networks, Mastodon is both free to use and free of ads. It's operated by a nonprofit run by Mastodon creator Eugen Rochko, and is supported via crowdfunding... "It is not as large as Twitter, obviously, but it is the biggest that this network has ever been," said Rochko, who originally created Mastodon as more of a project than a consumer product (and, yes, its name was inspired by the heavy metal band Mastodon)....

A lot of Mastodon's features and layout (particularly in its iOS app) will look and feel familiar to current Twitter users, though with some slightly different verbiage; you can follow others, create short posts (there's a 500 character limit, and you can upload images and videos), favorite or repost other users' posts, and so on.... There are some key differences, particularly in how the network is set up. Because Mastodon users' accounts are hosted on a slew of different servers, the costs of hosting users is spread among many different people and groups. But that also means users are spread out all over the place, and people you know can be hard to find.
CNN also notes the problem with signing up for a Mastodon server: "some of which are open to anyone, some of which require an invitation (you can also run your own server). There is a server operated by the nonprofit behind Mastodon, Mastodon.social, but it's not accepting more users."

The newest stable version of Rust, 1.65.0 includes generic associated types (GATs) — the ability to declare lifetime, type, and const generics on associated types. "It's hard to put into few words just how useful these can be," writes the official Rust blog.

An earlier post pointed out that "There have been a good amount of changes that have had to have been made to the compiler to get GATs to work," noting that the request-for-comments for this feature was first opened in 2016.

And Rust's types team also created a blog post with more detail: Note that this is really just rounding out the places where you can put generics: for example, you can already have generics on freestanding type aliases and on functions in traits. Now you can just have generics on type aliases in traits (which we just call associated types)....

In general, GATs provide a foundational basis for a vast range of patterns and APIs. If you really want to get a feel for how many projects have been blocked on GATs being stable, go scroll through either the tracking issue: you will find numerous issues from other projects linking to those threads over the years saying something along the lines of "we want the API to look like X, but for that we need GATs" (or see this comment that has some of these put together already). If you're interested in how GATs enable a library to do zero-copy parsing, resulting in nearly a ten-fold performance increase, you might be interested in checking out a blog post on it by Niko Matsakis.

All in all, even if you won't need to use GATs directly, it's very possible that the libraries you use will use GATs either internally or publically for ergonomics, performance, or just because that's the only way the implementation works.... [A]ll the various people involved in getting this stabilization to happen deserve the utmost thanks. As said before, it's been 6.5 years coming and it couldn't have happened without everyone's support and dedication.
Rust 1.65.0 also contains let-else statements — a new kind of let statement "with a refutable pattern and a diverging else block that executes when that pattern doesn't match," according to the release announcement.

And it highlights another new feature: Plain block expressions can now be labeled as a break target, terminating that block early. This may sound a little like a goto statement, but it's not an arbitrary jump, only from within a block to its end. This was already possible with loop blocks, and you may have seen people write loops that always execute only once, just to get a labeled break.

Now there's a language feature specifically for that! Labeled break may also include an expression value, just as with loops, letting a multi-statement block have an early "return" value.

"An Apple archivist has had his YouTube account disabled after Apple filed multiple takedown requests against his account," reports the blog Apple Insider: Brendan Shanks, owner of the Apple WWDC Videos channel on YouTube, tweeted that Apple had filed a series of copyright removal requests against his channel. The videos in question were decades-old recordings of WWDC events.
"I still have all the original files (and descriptions, which were a lot of work!), and I'll be moving things over to the Internet Archive," Shanks posted on Twitter. "It'll take time though, and unfortunately videos get a lot less visibility when you're not on YouTube.

"I wasn't super surprised this happened (there were a few takedowns a couple years ago)," Shanks mused in an earlier tweet. "I'm honestly more annoyed that it wiped out my personal YoutTube account and even YouTube TV, which I was just billed real money for.

"A cease and desist in the mail would be much friendlier."

America's federal government "is planning a post-midterms push for antitrust legislation that would rein in the power of the world's largest tech companies," reports Bloomberg, "a last-ditch effort to get a stalled pair of bills through Congress before a predicted Republican takeover in January." The lame-duck period after Tuesday's U.S. election may be the last shot to pass the landmark legislation, the American Innovation and Choice Online Act and Open App Markets Act. The bills, which would prevent the tech companies from using their platforms to thwart competitors, would be the most significant expansion of antitrust law in over a century.... Republicans have made it clear that they won't support the bills if they retake control of either chamber of Congress. That has supporters urging the White House to mount a push in the final weeks before a new Congress is seated early next year.

Advocates have criticized the White House for failing to prioritize the legislation, which major tech companies have spent more than $100 million to defeat. Alphabet's Google, Amazon, Apple and Meta all oppose the bill. "There is bipartisan support for antitrust bills, and no reason why Congress can't act before the end of the year," said White House spokesperson Emilie Simons. "We are planning on stepping up engagement during the lame duck on the president's agenda across the board, antitrust included." Versions of both bills have made it through committees but await action by the full House and Senate.

If Congress doesn't act before the end of the year, it will likely be years before U.S. lawmakers pass any legislation to crack down on the power of the tech giants.

Slashdot reader thedarklaser writes: A chemical engineering professor at Utah's BYU has created a nuclear reactor design that could produce enough energy for 1000 homes in the space of 4 feet by 7 feet. And there's a bonus: potentially no nuclear waste or risk of melt down.

They use molten salt that bonds with the dissolved fuel. Then, very valuable Molybdenum-99 (as in $30 million per gram) can be extracted from that salt and sold for use in medical imaging.

Additionally, this system is very inexpensive, at a cost of around 3 cents per kilowatt hour.
The professor (who led a larger team on the project) tells a local TV station it's important because nuclear energy is "the only baseload or controllable, 100% on-power that has no emissions at all."

And since all the radioactive byproducts are dissolved into molten salt with this technique, he believes it's "a system that's impossible to melt down. There's nothing to melt, and it's not likely to cause any release problems because there's no pressure and there's nothing to push it out."

The Associated Press reports that Pfizer's updated COVID-19 booster "significantly revved up adults' virus-fighting antibodies, the company said Friday, releasing early findings from a rigorous study of the new shots." Booster doses tweaked to target the most common omicron strain rolled out in early September, and the Food and Drug Administration said the latest data should spur more Americans to get one — especially before another expected wave of cases as people travel for Thanksgiving. Pfizer said people 55 and older who got the omicron-targeting booster had four-fold higher antibody levels than those given an extra dose of the original vaccine....

A month after receiving the new booster, antibody levels in people 55 and older had jumped 13 times higher than before the extra dose. Younger adults saw a 9.5-fold jump, Pfizer and its partner BioNTech said. It had been about 11 months since the study participants' last vaccination....

The new data "reassures us that this was a good decision to move to this bivalent vaccine," FDA vaccine chief Dr. Peter Marks told The Associated Press. "Right now is the time for people to consider going out and get the updated" booster.... The updated doses are combination shots, tailored to offer a boost of protection against both the original coronavirus strain and the dominant BA.5 strain.

Linux magazine explores how to breath fresh life into old Android devices: Every mobile device needs its own Android build because of numerous drivers that are not available in the source code. The need to maintain every version of Android for every mobile device means that many manufacturers eventually stop supporting updates. Often, smartphones or tablets that still work perfectly can no longer be used without worry because the manufacturer has simply ceased to offer bug fixes and security updates....

The LineageOS project, the successor to the CyanogenMod project, which was discontinued in 2016, proves that it is not impossible to keep these devices up-to-date. Unpaid volunteers at LineageOS do the work that many manufacturers do not want to do: They combine current Android releases with the required device-specific drivers.

The LineageOS project (Figure 1) provides Android systems with a fresh patch status every month for around 300 devices. The builds are released weekly, unless there is a problem during the build. The Devices page on the LineageOS Wiki provides the details of whether a LineageOS build is available for your smartphone or tablet....

I recommend the LineageOS project as the first port of call for anyone who wants to protect an older smartphone or tablet that is no longer maintained and doesn't receive Google security patches. The LineageOS derivatives LineageOS for MicroG and /e/OS make it even easier to enjoy a Google-free smartphone without too many restrictions.
The article also describes how to use TWRP to flash a manufacturer-independent recovery system (while also creating a restoreable backup of the existing system) as an alternative to LineageOS's own recovery tools.

And it even explains how to unlock the bootloader — although there may be other locks set up separately by the manufacturer. "Some manufacturers require you to register the device to unlock it, and then — after telling you that the warranty is now void — they hand over a code. Others refuse to unlock the device altogether."

Thanks to Slashdot reader DevNull127 for submitting the article.

The Intercept reports that protesters in Iran "have often been left wondering how the government was able to track down their locations or gain access to their private communications — tactics that are frighteningly pervasive but whose mechanisms are virtually unknown."

But The Intercept now has evidence of a new possibility: While disconnecting broad swaths of the population from the web remains a favored blunt instrument of Iranian state censorship, the government has far more precise, sophisticated tools available as well. Part of Iran's data clampdown may be explained through the use of a system called "SIAM," a web program for remotely manipulating cellular connections made available to the Iranian Communications Regulatory Authority. The existence of SIAM and details of how the system works, reported here for the first time, are laid out in a series of internal documents from an Iranian cellular carrier that were obtained by The Intercept.

According to these internal documents, SIAM is a computer system that works behind the scenes of Iranian cellular networks, providing its operators a broad menu of remote commands to alter, disrupt, and monitor how customers use their phones. The tools can slow their data connections to a crawl, break the encryption of phone calls, track the movements of individuals or large groups, and produce detailed metadata summaries of who spoke to whom, when, and where. Such a system could help the government invisibly quash the ongoing protests — or those of tomorrow — an expert who reviewed the SIAM documents told The Intercept.

"SIAM can control if, where, when, and how users can communicate," explained Gary Miller, a mobile security researcher and fellow at the University of Toronto's Citizen Lab. "In this respect, this is not a surveillance system but rather a repression and control system to limit the capability of users to dissent or protest."
Thanks to long-time Slashdot reader mspohr for submitting the article.

"Microsoft's GitHub Copilot is being sued in a class action lawsuit that claims the AI product is committing software piracy on an unprecedented scale," reports IT Pro.

Programmer/designer Matthew Butterick filed the case Thursday in San Francisco, saying it was on behalf of millions of GitHub users potentially affected by the $10-a-month Copilot service: The lawsuit seeks to challenge the legality of GitHub Copilot, as well as OpenAI Codex which powers the AI tool, and has been filed against GitHub, its owner Microsoft, and OpenAI.... "By training their AI systems on public GitHub repositories (though based on their public statements, possibly much more), we contend that the defendants have violated the legal rights of a vast number of creators who posted code or other work under certain open-source licences on GitHub," said Butterick.

These licences include a set of 11 popular open source licences that all require attribution of the author's name and copyright. This includes the MIT licence, the GNU General Public Licence, and the Apache licence. The case claimed that Copilot violates and removes these licences offered by thousands, possibly millions, of software developers, and is therefore committing software piracy on an unprecedented scale.

Copilot, which is entirely run on Microsoft Azure, often simply reproduces code that can be traced back to open-source repositories or licensees, according to the lawsuit. The code never contains attributions to the underlying authors, which is in violation of the licences. "It is not fair, permitted, or justified. On the contrary, Copilot's goal is to replace a huge swath of open source by taking it and keeping it inside a GitHub-controlled paywall...." Moreover, the case stated that the defendants have also violated GitHub's own terms of service and privacy policies, the DMCA code 1202 which forbids the removal of copyright-management information, and the California Consumer Privacy Act.
The lawsuit also accuses GitHub of monetizing code from open source programmers, "despite GitHub's pledge never to do so."

And Butterick argued to IT Pro that "AI systems are not exempt from the law... If companies like Microsoft, GitHub, and OpenAI choose to disregard the law, they should not expect that we the public will sit still." Butterick believes AI can only elevate humanity if it's "fair and ethical for everyone. If it's not... it will just become another way for the privileged few to profit from the work of the many."

Reached for comment, GitHub pointed IT Pro to their announcement Monday that next year, suggested code fragments will come with the ability to identify when it matches other publicly-available code — or code that it's similar to.

The article adds that this lawsuit "comes at a time when Microsoft is looking at developing Copilot technology for use in similar programmes for other job categories, like office work, cyber security, or video game design, according to a Bloomberg report."

An anonymous reader quotes a report from BleepingComputer: The United Kingdom's National Cyber Security Centre (NCSC), the government agency that leads the country's cyber security mission, is now scanning all Internet-exposed devices hosted in the UK for vulnerabilities. The goal is to assess UK's vulnerability to cyber-attacks and to help the owners of Internet-connected systems understand their security posture. "These activities cover any internet-accessible system that is hosted within the UK and vulnerabilities that are common or particularly important due to their high impact," the agency said. "The NCSC uses the data we have collected to create an overview of the UK's exposure to vulnerabilities following their disclosure, and track their remediation over time."

NCSC's scans are performed using tools hosted in a dedicated cloud-hosted environment from scanner.scanning.service.ncsc.gov.uk and two IP addresses (18.171.7.246 and 35.177.10.231). The agency says that all vulnerability probes are tested within its own environment to detect any issues before scanning the UK Internet. "We're not trying to find vulnerabilities in the UK for some other, nefarious purpose," NCSC technical director Ian Levy explained. "We're beginning with simple scans, and will slowly increase the complexity of the scans, explaining what we're doing (and why we're doing it)." The NCSC says it will "take steps to remove [any sensitive or personal data] and prevent it from being captured again in the future."

British organizations can opt out of having their servers scanned by emailing a list of IP addresses they want to be excluded at scanning@ncsc.gov.uk.

Google has announced an ambitious new project to develop a single AI language model that supports the world's "1,000 most spoken languages." The Verge reports: As a first step towards this goal, the company is unveiling an AI model trained on over 400 languages, which it describes as "the largest language coverage seen in a speech model today." [...] Google's "1,000 Languages Initiative" is not focusing on any particular functionality, but instead on creating a single system with huge breadth of knowledge across the world's languages.

Speaking to The Verge, Zoubin Ghahramani, vice president of research at Google AI, said the company believes that creating a model of this size will make it easier to bring various AI functionalities to languages that are poorly represented in online spaces and AI training datasets (also known as "low-resource languages"). "By having a single model that is exposed to and trained on many different languages, we get much better performance on our low resource languages," says Ghahramani. "The way we get to 1,000 languages is not by building 1,000 different models. Languages are like organisms, they've evolved from one another and they have certain similarities. And we can find some pretty spectacular advances in what we call zero-shot learning when we incorporate data from a new language into our 1,000 language model and get the ability to translate [what it's learned] from a high-resource language to a low-resource language."

Access to data is a problem when training across so many languages, though, and Google says that in order to support work on the 1,000-language model it will be funding the collection of data for low-resource languages, including audio recordings and written texts. The company says it has no direct plans on where to apply the functionality of this model -- only that it expects it will have a range of uses across Google's products, from Google Translate to YouTube captions and more. "One of the really interesting things about large language models and language research in general is that they can do lots and lots of different tasks," says Ghahramani. "The same language model can turn commands for a robot into code; it can solve maths problems; it can do translation. The really interesting things about language models is they're becoming repositories of a lot of knowledge, and by probing them in different ways you can get to different bits of useful functionality."

The first crewed launch of Boeing's Starliner has been delayed again, this time being pushed back to April 2023 from an earlier planned launch date of February. The Register reports: The change came with little announcement from NASA, which tweeted out the new date as a scheduling update without any additional details. In an accompanying blog post, NASA said the change was being made to eliminate conflicts between "visiting spacecraft traffic at the space station," but the agency didn't elaborate much beyond that.

Starliner has been a drag on Boeing since the company unveiled the capsule in 2010. According to Boeing's Q3 2022 filing, Starliner has lost the company $883 million since 2019. That was the year Starliner made its first attempt at an uncrewed launch and docking with the International Space Station, which failed due to a pair of software errors that left it unable to dock and saw it returned to Earth early under less-than-ideal circumstances. Attempts at a second launch in 2021 also failed when 13 of the Calamity Capsule's propulsion system valves failed pre-flight checks. Starliner only made it to the ISS for the first time this past May, but even that launch wasn't without issues as two of the craft's 12 thrusters failed once in orbit.