United States

Does US Have Right To Data On Overseas Servers? We're About To Find Out (arstechnica.com)

Long-time Slashdot reader quotes Ars Technica: The Justice Department on Friday petitioned the US Supreme Court to step into an international legal thicket, one that asks whether US search warrants extend to data stored on foreign servers. The US government says it has the legal right, with a valid court warrant, to reach into the world's servers with the assistance of the tech sector, no matter where the data is stored.

The request for Supreme Court intervention concerns a 4-year-old legal battle between Microsoft and the US government over data stored on Dublin, Ireland servers. The US government has a valid warrant for the e-mail as part of a drug investigation. Microsoft balked at the warrant, and convinced a federal appeals court that US law does not apply to foreign data.

According to the article, the U.S. government told the court that national security was at risk.
Open Source

Linus Explains What Surprises Him After 25 Years Of Linux (linux.com) 88

Linus Torvalds appeared in a new "fireside chat" with VMware Head of Open Source Dirk Hohndel. An anonymous reader writes: Linus explained what still surprises him about Linux development. "Code that I thought was stable continually gets improved. There are things we haven't touched for many years, then someone comes along and improves them or makes bug reports in something I thought no one used. We have new hardware, new features that are developed, but after 25 years, we still have old, very basic things that people care about and still improve... Our processes have not only worked for 25 years, we still have a very strong maintainer group... And as these maintainers get older and fatter, we have new people coming in."

Linus also says he's surprised by the widespread popularity of Git. "I expected it to be limited mostly to the kernel -- as it's tailored to what we do... In certain circles, Git is more well known than Linux." And he also shares advice if you want to get started as an open source developer. "I'm not sure my example is the right thing for people to follow. There are a ton of open source projects and, if you are a beginning programmer, find something you're interested in that you can follow for more than just a few weeks... If you can be part of a community and set up patches, it's not just about the coding, but about the social aspect of open source. You make connections and improve yourself as a programmer."

Linus also says that "I really like what I'm doing. I like waking up and having a job that is technically interesting and challenging without being too stressful so I can do it for long stretches; something where I feel I am making a real difference and doing something meaningful not just for me."
Privacy

State Legislators Want Surveillance Cameras To Catch Uninsured Drivers (arstechnica.com) 175

An anonymous reader quotes Ars Technica: A Rhode Island legislative committee has approved a bill that would greatly expand the surveillance state through the deployment of license plate readers. For the first time in the US, these devices would be attached along Rhode Island highways and roads for the stated purpose of catching uninsured motorists from any state... The legislation spells out that the contractor for the project would get 50 percent of the fines paid by uninsured motorists ensnared under the program. The state and the contractor would each earn an estimated $15 million annually. Fines are as high as $120.

Many police departments nationwide are using surveillance cameras tacked onto traffic poles and police vehicles to catch traffic violators and criminal suspects. The proceeds from traffic fines usually are divvied up with contractors. But according to the Rhode Island lawmaker sponsoring this legislation, it's time to put surveillance cameras to a new purpose -- fining uninsured motorists.

Bug

Researcher Finds Critical OpenVPN Bug Using Fuzzing (zdnet.com) 44

"Guido Vranken recently published 4 security vulnerabilities in OpenVPN on his personal blog," writes long-time Slashdot reader randomErr -- one of which was a critical remote execution bug. Though patches have been now released, there's a lesson to be learned about the importance of fuzzing -- bug testing with large amounts of random data -- Guido Vranken writes: Most of these issues were found through fuzzing. I hate admitting it, but...the arcane art of reviewing code manually, acquired through grueling practice, are dwarfed by the fuzzer in one fell swoop; the mortal's mind can only retain and comprehend so much information at a time, and for programs that perform long cycles of complex, deeply nested operations it is simply not feasible to expect a human to perform an encompassing and reliable verification.
ZDNet adds that "OpenVPN's audits, carried out over the past two years, missed these major flaws. While a handful of other bugs are found, perhaps OpenVPN should consider adding fuzzing to their internal security analysis in the future."

Guido adds on his blog, "This was a labor of love. Nobody paid me to do this. If you appreciate this effort, please donate BTC..."
United Kingdom

UK Parliament Emails Closed After 'Sustained And Determined' Cyber-Attack (theguardian.com) 40

An anonymous reader quotes the Guardian: Parliament has been hit by a "sustained and determined" cyber-attack by hackers attempting to gain access to MPs' and their staffers' email accounts. Both houses of parliament were targeted on Friday in an attack that sought to gain access to accounts protected by weak passwords... The estate's digital services team said they had made changes to accounts to block out the hackers, and that the changes could mean staff were unable to access their emails...

The international trade secretary, Liam Fox, told ITV News the attack was a "warning to everyone we need more security and better passwords. You wouldn't leave your door open at night." In an interview with the BBC, he added: "We know that there are regular attacks by hackers attempting to get passwords. We have seen reports in the last few days of even Cabinet ministers' passwords being for sale online. We know that our public services are attacked, so it is not at all surprising that there should be an attempt to hack into parliamentary emails."

One member of Parliament posted on Twitter "Sorry, no parliamentary email access today â" we're under cyber-attack from Kim Jong-un, Putin or a kid in his mom's basement or something." He added later, "I'm off to the pub."
Open Source

'Stack Clash' Linux Flaw Enables Root Access. Patch Now (threatpost.com) 109

msm1267 writes: Linux, BSD, Solaris and other open source systems are vulnerable to a local privilege escalation vulnerability known as Stack Clash that allows an attacker to execute code at root. Major Linux and open source distributors made patches available Monday, and systems running Linux, OpenBSD, NetBSD, FreeBSD or Solaris on i386 or amd64 hardware should be updated soon.

The risk presented by this flaw, CVE-2017-1000364, becomes elevated especially if attackers are already present on a vulnerable system. They would now be able to chain this vulnerability with other critical issues, including the recently addressed Sudo vulnerability, and then run arbitrary code with the highest privileges, said researchers at Qualys who discovered the vulnerability.

Books

Former Slashdot Contributor Jon Katz Believes He Can Talk To Animals (amazon.com) 158

Long-time Slashdot reader destinyland got a surprise when he visited his local bookstore: Jon Katz turns 70 this August, and he's published a new book called Talking to Animals: How You Can Understand Animals and They Can Understand You. Katz was a former newspaper reporter (and a contributing editor to Rolling Stone) who wrote for HotWired, the first online presence for Wired magazine in the mid-1990s, before becoming a controversial contributor to Slashdot during the site's early days. Katz left Manhattan in the 1990s to live on a farm "surrounded by dogs, cats, sheep, horses, cows, goats, and chickens," according to the book's description, an experience he writes about on his blog. His new book promises that Katz now "marshals his experience to offer us a deeper insight into animals and the tools needed for effectively communicating with them."
The Almighty Buck

The People GoFundMe Leaves Behind (theoutline.com) 211

citadrianne shares a report from The Outline: President Donald Trump's proposed budget seeks to slash $54 billion from social services including programs like Medicaid and Meals on Wheels. As these resources dry up, crowdfunding websites will further entrench themselves as extra-governmental welfare providers in order to fill the gap. For a lucky few, these sites are a lifeline. For most people, they are worthless. Crowdfunding's fatal flaw is that not every campaign ends up getting the money it needs. A recent study published in the journal Social Science & Medicine found that more than 90 percent of GoFundMe campaigns never meet their goal. For every crowdfunding success story, there are hundreds of failures. "As many happy stories as there are in charitable crowdfunding, there are a lot of really worthy causes when you browse these platforms that nobody has given a cent to," Rob Gleasure, professor at the business school of the National University of Ireland, Cork told The Outline. "People haven't come across them." Feller and Gleasure's report highlighted how fickle crowdfunding can be. Of all the Razoo campaigns started in 2013, they found, more than a third didn't receive any funding at all. According to their report, donors are more likely to give to campaigns that feature lots of pictures and accompanying text.
Piracy

Sci-Hub Ordered To Pay $15 Million In Piracy Damages (torrentfreak.com) 150

An anonymous reader quotes a report from TorrentFreak: Two years ago, academic publisher Elsevier filed a complaint (PDF) against Sci-Hub and several related "pirate" sites. It accused the websites of making academic papers widely available to the public, without permission. While Sci-Hub is nothing like the average pirate site, it is just as illegal according to Elsevier's legal team, who obtained a preliminary injunction from a New York District Court last fall. The injunction ordered Sci-Hub's founder Alexandra Elbakyan to quit offering access to any Elsevier content. However, this didn't happen. Instead of taking Sci-Hub down, the lawsuit achieved the opposite. Sci-Hub grew bigger and bigger up to a point where its users were downloading hundreds of thousands of papers per day. Although Elbakyan sent a letter to the court earlier, she opted not engage in the U.S. lawsuit any further. The same is true for her fellow defendants, associated with Libgen. As a result, Elsevier asked the court for a default judgment and a permanent injunction which were issued this week. Following a hearing on Wednesday, the Court awarded Elsevier $15,000,000 in damages, the maximum statutory amount for the 100 copyrighted works that were listed in the complaint. In addition, the injunction, through which Sci-Hub and LibGen lost several domain names, was made permanent.
Space

FCC Grants OneWeb Approval To Launch Over 700 Satellites For 'Space Internet' (theverge.com) 85

OneWeb has been granted approval from the FCC to launch a network of internet-beaming satellites into orbit. FCC chairman Ajit Pai said in a statement: "Humans have long sought inspiration from the stars, from the ancient Egyptians orienting the pyramids toward certain stars to the Greeks using constellations to write their mythology. In modern times, we've done the same, with over 1,000 active satellites currently in orbit. Today, the FCC harnesses that inspiration as we seek to make the promise of high-speed internet access a reality for more Americans, partly through the skies..." The Verge reports: OneWeb plans to launch a constellation of 720 low-Earth orbit satellites using non-geostationary satellite orbit (NGSO) technology in order to provide global, high-speed broadband. The company's goal has far-reaching implications, and would provide internet to rural and hard-to-reach areas that currently have little access to internet connectivity. Additionally, OneWeb has a targets of "connecting every unconnected school" by 2022, and "bridging the digital divide" by 2027. According to OneWeb, the company plans to launch an initial 10 production satellites in early 2018, which, pending tests, will then be followed by a full launch as early as 2019.
Businesses

'Chiropractors Are Bullshit' (theoutline.com) 278

From an article on The Outline, submitted by two readers: If you're one of the approximately 80 percent of Americans who have suffered from back pain, you may have been referred to a chiropractor for medical help. In the modern-day internet landscape, you'll find chiropractic celebrities like Dr. Josh Axe (1.7 million Facebook followers), Dr. Billy DeMoss (20,000 Facebook followers), and Dr. Eric Berg (472,000 YouTube subscribers) giving advice that goes beyond managing spinal issues. Both in their offices and on social media, chiropractors have adapted to a marketplace that's demanding more than just pain management: they extol the virtues of an "alkaline diet," tell you how to manage stress with detoxing, and wax scientific about the adrenal gland. [...] Chiropractic care, I'm sorry to say, is little more than the buffoonery of a 19th-century lunatic who derived most of his medical theory from seances. It has not evolved much since its creation. Chiropractic beliefs are dangerously far removed from mainstream medicine, and the vocation's practices have been linked to strokes, herniated discs, and even death. Chiropractors can't replace your doctor, and I'm amazed that they're still even allowed to practice. [...] Though some chiropractors are now making an effort to introduce evidence-based practices into their treatment, chiropractic as a whole hasn't evolved like other areas of medicine -- with hypotheses, experimentation, and peer review. Instead, it was birthed by a strange combination of hocus pocus, guesswork, and strongly held religious beliefs.
Cellphones

Texting While Driving Now Legal In Colorado -- In Some Cases (kdvr.com) 89

Fines for texting and driving in Colorado have jumped to $300, but according to the fine print, the increased fine only applies to drivers who are texting in "a careless or imprudent manner." Therefore, drivers who are texting in any other manner are still within the law. FOX31 Denver reports: Before the new legislation, any texting while driving was illegal. Tim Lane of the Colorado District Attorney's Office confirmed the softening crackdown on all texting and driving. "The simple fact is that if you are texting while driving but not being careless, it's no longer illegal," he said. What constitutes "careless" driving is up to the discretion of each individual law enforcement officer. Cellphone use of any kind is still banned for drivers younger than 18. Teens caught with a phone in hand while driving will be slapped with a $50 fine.
Youtube

YouTube Claims 1.5 Billion Monthly Users (cnbc.com) 55

An anonymous reader shares a report: Google's YouTube unit says it now reaches 1.5 billion viewers every month -- and its users watch more than an hour of mobile videos per day -- as it expands its video programming to sell more digital ads. YouTube CEO Susan Wojcicki also wrote that YouTube Red, the company's foray into original videos, has launched 37 series that have generated "nearly a quarter billion views." YouTube Red has 12 new projects in the works, she said.
Businesses

Gwyneth Paltrow's Goop $120 'Bio-Frequency Healing' Sticker Packs Get Shot Down by NASA (fastcompany.com) 208

From a report: Goop had claimed the costly "Body Vibes" stickers were "made with the same conductive carbon material NASA uses to line space suits so they can monitor an astronaut's vitals during wear" and because of that were able to "target imbalances" of the human body's energy frequencies when they get thrown out of whack, reports Gizmodo. The thing is, NASA confirmed to Gizmodo that they "do not have any conductive carbon material lining the spacesuits" of astronauts. Further reading: The unbearable wrongness of Gwyneth Paltrow - The Outline.
Google

Google Will Stop Reading Your Emails For Gmail Ads (bloomberg.com) 67

Google will soon stop scanning emails received by some Gmail users, a practice that has allowed it to show them targeted advertising but which stirred privacy worries. From a report: The decision didn't come from Google's ad team, but from its cloud unit, which is angling to sign up more corporate customers. Alphabet's Google Cloud sells a package of office software, called G Suite, that competes with market leader Microsoft. Paying Gmail users never received the email-scanning ads like the free version of the program, but some business customers were confused by the distinction and its privacy implications, said Diane Greene, Google's senior vice president of cloud. "What we're going to do is make it unambiguous," she said. Ads will continue to appear inside the free version of Gmail, as promoted messages. But instead of scanning a user's email, the ads will now be targeted with other personal information Google already pulls from sources such as search and YouTube.
Businesses

Trump Plans To Dismantle Obama-Era 'Startup Visa' (arstechnica.com) 316

An anonymous reader quotes a report from Ars Technica: A regulation from the Obama administration that would have allowed foreign-born entrepreneurs who raise investor cash to build their startups in the U.S. won't be allowed to go into effect. The Department of Homeland Security will file an official notice to delay the International Entrepreneur Rule for eight months. The intention is to eliminate the rule entirely, according to sources briefed on the matter who spoke to The Wall Street Journal. The decision isn't final, and a DHS spokesperson told the WSJ that the department "cannot speculate" on the outcome of the review. The International Entrepreneur Rule, signed by former President Obama days before he left office in January, doesn't offer a visa but rather a type of "parole" that would allow immigrants to stay in the U.S. temporarily as long as they meet certain requirements. In order to qualify, a foreign entrepreneur has to raise at least $250,000 from well-known U.S. investors. The rule grants a stay in the U.S. of 30 months, which can be extended for an additional 30 months. Founders can't apply for a green card during that time. DHS has estimated about 3,000 entrepreneurs would qualify under the rule.
Space

ESA Approves Gravitational-Wave Hunting Spacecraft For 2034 (newscientist.com) 48

The European Space Agency has approved the Laser Interferometer Space Antenna mission designed to study gravitational waves in space. The spacecraft is slated for launch in in 2034. New Scientist reports: LISA will be made up of three identical satellites orbiting the sun in a triangle formation, each 2.5 million kilometers from the next. The sides of the triangle will be powerful lasers bounced to and fro between the spacecraft. As large objects like black holes move through space they cause gravitational waves, ripples which stretch and squeeze space-time. The LISA satellites will detect how these waves warp space via tiny changes in the distance the laser beams travel. In order to detect these minuscule changes, on scales less than a trillionth of a meter, LISA will have to shrug off cosmic rays and the particles and light from the sun. The LISA Pathfinder mission, a solo probe launched in December 2015, proved that this sensitivity was possible and galvanized researchers working to realize the full LISA mission.
Businesses

McDonald's Hits All-Time High As Wall Street Cheers Replacement of Cashiers With Kiosks (cnbc.com) 612

McDonald's is expected to increase its sales via new digital ordering kiosks that will replace cashiers in 2,500 restaurants. As a result, the company's shares hit an all-time high, rallying 26 percent this year through Monday. CNBC reports: Andrew Charles from Cowen cited plans for the restaurant chain to roll out mobile ordering across 14,000 U.S. locations by the end of 2017. The technology upgrades, part of what McDonald's calls "Experience of the Future," includes digital ordering kiosks that will be offered in 2,500 restaurants by the end of the year and table delivery. "MCD is cultivating a digital platform through mobile ordering and Experience of the Future (EOTF), an in-store technological overhaul most conspicuous through kiosk ordering and table delivery," Charles wrote in a note to clients Tuesday. "Our analysis suggests efforts should bear fruit in 2018 with a combined 130 bps [basis points] contribution to U.S. comps [comparable sales]." He raised his 2018 U.S. same store sales growth estimate for the fast-food chain to 3 percent from 2 percent.
Government

The US Government Wants To Permanently Legalize the Right To Repair (vice.com) 150

An anonymous reader quotes a report from Motherboard: In one of the biggest wins for the right to repair movement yet, the U.S. Copyright Office suggested Thursday that the U.S. government should take actions to make it legal to repair anything you own, forever -- even if it requires hacking into the product's software. Manufacturers -- including John Deere, Ford, various printer companies, and a host of consumer electronics companies -- have argued that it should be illegal to bypass the software locks that they put into their products, claiming that such circumvention violated copyright law. Thursday, the U.S. Copyright Office said it's tired of having to deal with the same issues every three years; it should be legal to repair the things you buy -- everything you buy -- forever. "The growing demand for relief under section 1201 has coincided with a general understanding that bona fide repair and maintenance activities are typically non infringing," the report stated. "Repair activities are often protected from infringement claims by multiple copyright law provisions." "The Office recommends against limiting an exemption to specific technologies or devices, such as motor vehicles, as any statutory language would likely be soon outpaced by technology," it continued.
Businesses

Wireless and Drone Execs Praised President Trump as He Pledged To Cut Down Regulations (recode.net) 86

U.S. President Donald Trump offered support for emerging technologies including unmanned aerial vehicles and next-generation wireless networks in a meeting on Thursday with the chiefs of AT&T and General Electric and other business leaders. From a report: For the likes of AT&T CEO Randall Stephenson, the public audience with Trump offered an opportunity to continue nudging the U.S. government -- including in a scheduled, private session with the leader of the Federal Communications Commission earlier Thursday -- to cut back on restrictions that make it difficult for AT&T and other telecom giants to grow their footprint and deploy the new technologies, such as 5G wireless. Speaking with Recode later Thursday, Marcelo Claure, the chief executive of Sprint, said that he and others in his industry had emphasized to Trump that the government must help them deploy new tools like small cells -- essentially, mini cell towers that improve wireless connectivity. Trump, for his part, promised Thursday to cut down on "too many years of excessive government regulation" to enable innovators and investments to offer new cutting-edge tools in health care, science, medicine and communication. "We have had regulation that's been so bad, so out of line that it's really hurt our country," he said.

Slashdot Top Deals