Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×

Submission + - UAC Bypass Attack On Windows 10 Allows Malicious DLL Loading (helpnetsecurity.com)

Orome1 writes: Security researchers Matt Graeber and Matt Nelson have discovered a way to run a malicious DLL on Windows 10 without the User Account Control (UAC) springing into action and alerting users of the potential danger. By modifying a default scheduled task (“SilentCleanup”) associated with the Disk Cleanup utility, they were able to trigger the running of a specially crafted DLL file without triggering UAC. That’s because SilentCleanup on Windows 10 is configured “to be launchable by unprivileged users but to run with elevated/high integrity privileges.”

Submission + - Solar Impulse completes solar-powered flight around the world

MikeChino writes: After 558 hours of total flight time, a solar-powered airplane just finished a record-shattering trip around the world. The Solar Impulse landed in Abu Dhabi at 4:05 am this morning, completing the final leg of an adventure spanning 43,041 kilometers. Upon landing and exiting the cockpit, Piccard said: “This is not only a first in the history of aviation; it’s before all a first in the history of energy. I’m sure that within 10 years we’ll see electric airplanes transporting 50 passengers on short to medium haul flights."

Comment From where does the FAA get power to regulate it? (Score 1) 29

I'm curious:

Where does the FAA claim it gets the power to regulate drones which are only engaged in INTRA-state commerce and flying too low to interfere with interstate air traffic? Seems to me that's the state's job.

(Similarly with the FCC and radio signals that are too weak to be decoded outside the state of origin or substantially interfere with reasonable interstate services. Sure "radio goes on forever". But so does sound - with the same inverse-square law and similar interference characteristics - and we get along just fine without federal regulation of speech and bullhorns.)

Comment Re:Even if it is money, I get it.... (Score 1) 109

I believe the correct answer is not only do you not change the money, you are obliged to contact the police and report the person.

Yes and no respectively. But if the cops ask you, you have to answer honestly or you're an accessory... unless they're asking about your spouse, then you don't have to answer. Whee!

Submission + - UK To Let Amazon Test Drone Deliveries (usatoday.com)

An anonymous reader writes: The U.K. Civil Aviation Authority gave Amazon permission to test several key drone delivery parameters. They include sending drones beyond the line of sight of their operator in rural and suburban areas, testing sensor performance to make sure the drones can identify and avoid obstacles and allowing a single operator to manage multiple highly-automated drones. U.S. rules are outlined in a 624-page rulebook from the Federal Aviation Administration. They allow commercial drones weighing up to 55 pounds to fly during daylight hours. The aircraft must remain within sight of the operator or an observer who is in communication with the operator. The operators must be pass an aeronautics test every 24 months for a certificate as well as a background check by the Transportation Security Administration. The rules govern commercial flights, such as for aerial photography or utilities inspection. Amazon’s goal is to use drones to deliver packages up to 5 pound to customers in 30 minutes or less.

Submission + - Feds To Deploy Anti-Drone Software Near Wildfires (thehill.com)

An anonymous reader writes: Federal officials are launching a new “geofencing” program to alert drone pilots when they’re flying too close to wildfire prevention operations. The Department of Interior said Monday it would deploy software warnings to pilots when their drones pose a risk to the aircraft used by emergency responders fighting wildfires. The agency said there have been 15 instances of drones interfering with firefighter operations this year, including several leading to grounded aircraft. Drone-related incidents doubled between 2014 and 2015, the agency said. Officials built the new warning system with the drone industry, and the agency said manufacturers could eventually use it to build drones that automatically steer away from wildfire locations. The program is in its pilot phase, the agency said; officials hope to have a full public release in time for next year’s wildfire season.

Submission + - Vine's Source Code Was Accidentally Made Public For 5 Minutes (theregister.co.uk)

An anonymous reader writes: Vine, the six-second-video-loop app acquired by Twitter in 2012, had its source code made publicly available by a bounty-hunter for everyone to see. The Register reports: "According to this post by @avicoder (Vjex at GitHub), Vine's source code was for a while available on what was supposed to be a private Docker registry. While docker.vineapp.com, hosted at Amazon, wasn't meant to be available, @avicoder found he was able to download images with a simple pull request. After that it's all too easy: the docker pull https://docker.vineapp.com/lib... request loaded the code, and he could then open the Docker image and run it. 'I was able to see the entire source code of Vine, its API keys and third party keys and secrets. Even running the image without any parameter, [it] was letting me host a replica of Vine locally.' The code included 'API keys, third party keys and secrets,' he writes. Twitter's bounty program paid out – US$10,080 – and the problem was fixed in March (within five minutes of him demonstrating the issue)."

Submission + - NIST Prepares to Ban SMS-Based Two-Factor Authentication (softpedia.com)

An anonymous reader writes: The US National Institute for Standards and Technology (NIST) has released the latest draft version of the Digital Authentication Guideline that contains language hinting at a future ban of SMS-based Two-Factor Authentication (2FA).

The NIST DAG draft argues that SMS-based two-factor authentication is an insecure process because the phone may not always be in possession of the phone, and because in the case of VoIP connections, SMS messages may be intercepted and not delivered to the phone.

The guideline recommends the usage of tokens and software cryptographic authenticators instead. Even biometrics authentication is considered safe, under one condition: "Biometrics SHALL be used with another authentication factor (something you know or something you have)," the guideline's draft reads.

Submission + - Chinese State Company Unveils World's Largest Seaplane (theguardian.com)

An anonymous reader writes: China has completed production of the world’s largest amphibious aircraft, state media has said, the latest effort in the country’s program to wean itself off dependence on foreign aviation firms. The state-owned Aviation Industry Corporation of China (AVIC) unveiled the first of the new planes, dubbed the AG600, Saturday in the southern port city of Zhuhai, the official Xinhua news agency reported. The aircraft, which has a maximum range of 4,500 km (2,800 miles), is intended for fighting forest fires and performing marine rescues, it said. At around the size of a Boeing 737, it is far larger than any other plane built for marine take off and landing, Xinhua quoted AVIC’s deputy general manager Geng Ruguang as saying. The AG600 could potentially extend the Asian giant’s ability to conduct a variety of operations in the South China Sea, where it has built a series of artificial islands featuring air strips, among other infrastructure with the potential for either civilian or military use.

Comment Re:Pegg's Star Trek is an abortion (Score 1) 103

Science fiction is a reflection of today's society.

So why is there so little gay crew?

ST:TOS made TV history in the 1960's with the first interracial kiss when the civil rights movement was ongoing. I'm sure critics called that pandering as well.

I'm sure they did. But the difference is that Trek isn't breaking any ground here whatsoever, and they're going against the wishes of both the original, revered creator (who envisioned the character as straight) and the actor who made the role famous. Put it all together, and it spells fail.

I am not offended by gay characters. I am offended by this senseless pandering. Not because it's gay, but because it's senseless.

Comment Re:Please (Score 1) 103

Obviously 99% of the crews of Star Trek ships could've been automated away, but who wants to watch a TV series about machines?

It's not that obvious, if you take the Trek universe as a given. There's a bunch of times when the people kept working when the machines didn't, so they clearly were not redundant.

Comment Re:Ok, so what? (Score 2) 217

Just curious, did you defend Microsoft as a private Monopoly? Do you realize that Facebook has over 1 billion people on their platform and that they effectively have a monopoly on social media? Do you think it's okay for a monopoly to abuse their position to promote a particular ideology? Would you feel the same way if they promoted right wing content instead?

Comment The fix is in (Score 4, Insightful) 217

When will people wake up and realize the fix is in? You know those ties between the media and the Democrats that the right complained about for years? Have you realized yet that the question about using facebook to prevent a Trump presidency wasn't rhetorical?

Bernie's supporters have started to wake up and realize that they are just as excluded as the right. The only difference now is that things are being exposed in plain text for the world to see. Only big business and congress have worse credibility ratings that the media.

http://www.gallup.com/poll/159...

Wake up sheeple.

Slashdot Top Deals

Nondeterminism means never having to say you are wrong.

Working...