Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×

Comment Re:Security through Obscurity? (Score 3, Interesting) 595

by taviso (#29058125) Attached to: Local Privilege Escalation On All Linux Kernels

Actually, it is possible to map at NULL in Windows, which is just as plagued by NULL pointer dereferences as Linux is.

Try this:

BaseAddress = (PVOID) 0x00000001; // (1 & ~PAGE_SIZE) == NULL
RegionSize = 0x1000;
NtAllocateVirtualMemory(GetCurrentProcess(), &BaseAddress, 0, &RegionSize, MEM_COMMIT | MEM_RESERVE, PAGE_EXECUTE_READWRITE);
Privacy

Questionable Data Mining Concerns IRC Community 306

Posted by CmdrTaco from the that-eliza-can't-keep-her-mouth-shut dept.
jessekeys writes "Two days ago an article on TechCrunch about IRSeeK revealed to the community that a service logs conversations of public IRC channels and put them into a public searchable database. What is especially shocking for the community is that the logging bots are very hard to identify. They have human-like nicks, connect via anonymous Tor nodes and authenticate as mIRC clients. IRSeeK never asked for permission and violates the privacy terms of networks and users. A lot of chatters were deeply disturbed finding themselves on the search engine in logs which could date back to 2005. As a result, Freenode, the largest FOSS IRC network in existence, immediately banned all tor connections while the community gathered and set up a public wiki page to share knowledge and news about IRSeeK. The demands are clear: remove all existing logs and stop covert operations in our channels and networks. Right now, the IRSeeK search is unavailable as there are talks talking place with Freenode Staff."
Announcements

Submission + - SDF Public Access UNIX System Celebrates 20 Years (lonestar.org)

Submitted by
Stephen Jones
Stephen Jones writes: "The SDF Public Access UNIX System Celebrates 20 Years!
http://sdf.lonestar.org/

It was on June 16th, 1987 that the SDF-1 received its first caller at
300bps. This little Apple ][e BBS of the late 80s turned into a Public
Access UNIX System with the demise of "killer.dallas.tx.us" during the
"Operation Sundevil" raids. Since then it has grown to become the oldest
and largest continually operating PUBNIX on the planet."
Google

Submission + - The Math behind PageRank

Submitted by anaesthetica
anaesthetica writes: The American Mathematical Society is featuring an article with an in-depth explanation of the type of mathematical operations that power PageRank. Because about 95% of the text on the 25 billion pages indexed by Google consist of the same 10,000 words, determining relevance requires an extremely sophisticated set of methods. And because the links constituting the web are constantly changing and updating, the relevance of pages needs to be recalculated on a continuous basis.
Mars

Submission + - NASA reveals signs of recent flowing water on Mars

Submitted by
192939495969798999
192939495969798999 writes: ""NASA photographs have revealed bright new deposits seen in two gullies on Mars that suggest water carried sediment through them sometime during the past seven years. "These observations give the strongest evidence to date that water still flows occasionally on the surface of Mars," said Michael Meyer, lead scientist for NASA's Mars Exploration Program, Washington." More from TFA: "The shapes of these deposits are what you would expect to see if the material were carried by flowing water," said Michael Malin of Malin Space Science Systems, San Diego. "They have finger-like branches at the downhill end and easily diverted around small obstacles.""
Security

Submission + - Severe security flaw discovered in GnuPG

Submitted by
An anonymous reader writes: A critical security flaw has been discovered in the processing of encrypted data packets by GnuPG. This is a remotely exploitable bug and affects any use of GnuPG where an attacker can control the data processed by GnuPG, it is not necessarilyy limited to encrypted data, also signed data may be affected. No workaround is known. Everyone is advised to update as soon as possible to GnuPG 1.4.6 (dont forget to check signatures).
Communications

Submission + - Cellphones don't raise cancer risk?

Submitted by
emor8t
emor8t writes: "Turns out cell phones don't cause a cancer increase. All these years people have been worrying about getting brain cancer, I guffawed, I was more worried about testicular cancer. Think about it people, where is your cell phone 90% of the time.

"Using a cell phone does not increase a person's risk of cancer, according to a broad study released on Tuesday involving more than 400,000 Danish cell phone users. A team of researchers used data on the entire population of Denmark to determine that neither short-term nor long-term use of cell phones, was linked to a greater risk of tumors of the brain and nervous system, salivary gland or eyes, leukemia or cancer overall. It is estimated that more than 2 billion people worldwide use cell phones. " http://news.com.com/Study+Cell+phones+dont+raise+c ancer+risk/2100-11393_3-6141319.html?tag=nefd.top"
Operating Systems

Submission + - ReactOS runs on Intel Macs, plans to go to Beta

Submitted by
fireballrus
fireballrus writes: "ReactOS, the open source implementation of a Windows XP/2003 compatible operating system, thanks to effort of Michael Steil now boots on Intel Mac computers (such as MacMini) with Bootcamp installed. As a nice side effect, it works in Parallels' virtual machine after those changes.

Also, ReactOS team revealed a bit of information about future development. The switch to beta stage, which means a usable system, is scheduled to 0.5.0 release."
Slashback

Submission + - Why Google De-indexd Talk.Origins

Submitted by
Pro-SEO
Pro-SEO writes: "There was recently a story on slashdot claiming Google de-indexed Talk.Origins and wouldn't say why.

Matt Cutt, Googles captain spam, Read the post on slashdot and various other forums and posted a full frank account of the reasons why talk.origins was de-indexed by google.

Okay, ready for my side of the story? Here's the timeline of how things happened:
— talkorigins.org was hacked on November 18th. I know this because Wesley says so in his blog post.
— By November 27th, Google had detected spammy links and text on talkorigins.org.

It turns out the reason talk.origins was removed from the google index is because thier site was hacked and the person who done it put many many hidden links to rape and beastiality porn, Which of course google wouldn't like."
Graphics

Submission + - Linux Overclocking Software

Submitted by Anonymous Coward
An anonymous reader writes: Phoronix has posted an article that covers the basics of GPU and CPU overclocking utilities available for GNU/Linux. From the article: "In 2005 we had featured several articles on the state of NVIDIA graphics card overclocking under Linux. In early 2005 the only option for Linux users was NVClock. The open-source NVClock was started by Roderick Colenbrander in 2001 and since then has been evolving. However, coming out in June of 2005 from the NVIDIA camp was CoolBits support for their alternative operating system drivers."
Google

Submission + - Google kills open source earth api.

Submitted by
lixao
lixao writes: "It looks like Google is only the nice company when we don't touch any of their software. They've just succeded in closing an open source project that aimed to provide a richer and open API to Google Earth. Nice guys? I think not, just another big corporation abusing of their power...

From the article:
25 November 2006, we've got the letter from Michael Jones, the Chief Technologist of Google Earth, Google Maps, and Google Local search, requesting us to cease reverse engineering..."
Software

Submission + - 4DOS now OpenSource

Submitted by amix
amix writes: As reported on the FreeDOS homepage JP Software's old school 4DOS, a text mode command processor for DOS, Windows 3.x, and Windows 95/98/ME has been released OpenSource under a modified MIT license. Remember 'descript.ion' ? This was it. 4DOS was written by Rex Conn and Tom Rawson as a COMMAND.COM replacement; it was first released in 1989

From the announcement:
The source to 4DOS (less a few non-DOS things) is now available from ibiblio, distributed under a modified MIT license (the additions are in the readme.txt). The new zip file archive is labeled "7.50.1" to distinguish itself from the previous "7.50" release. Find it at: http://www.ibiblio.org/pub/micro/pc-stuff/freedos/ files/util/user/4dos/7.50.1/4dos7501.zip


With FreeDOS 1.0 and now this, things are getting warm and comfy for those still in need of DOS.
SuSE

Submission + - Ballmer and more news about the Novell-SuSE Deal

Submitted by yorugua
yorugua writes: According to Ballmer in a recent interview available at http://www.computerworld.com.au/index.php/id;83959 3139;fp;16;fpid;1 , "Novell pays us some money for the right to tell customers that anybody who uses SUSE Linux is appropriately covered,". Ballmer added that this "is important to us, because [otherwise] we believe every Linux customer basically has an undisclosed balance-sheet liability." So, are the remaining distros and its users at any risk of being pressured by M$ sometime down the road ? Do Linux users OWE M$, well, $ ?
Hardware Hacking

Submission + - Open Source MP3 player kit, the ZUNE KILLER!

Submitted by
ptorrone
ptorrone writes: "Tired of iPods and Zunes? Well, we at MAKE are taking on the billion dollar music cartels, consumer electronics companies and introducing our own open source MP3 player — that's right, you can make your own player from scratch, everything is open sourced, you can improve it, hook it in to anything, hack it, whatever you want. We wanted to call it the iPodZUNEkiller, but the MAKE Open Source MP3 (Daisy) is what we settled on..."

Slashdot Top Deals

Genetics explains why you look like your father, and if you don't, why you should.

Close