Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
Get HideMyAss! VPN, PC Mag's Top 10 VPNs of 2016 for 55% off for a Limited Time ×

Submission + - T-Mobile CEO: "Who the fuck are you anyway, EFF?"

An anonymous reader writes: After T-Mobile's opt-out "Binge On" was revealed as across-the-board throttling of all video downloads, the CEO of T-Mobile, John Legere, held a Twitter Q&A to calm the outrage and to redefine "throttling" so he could deny doing it. In answering a question from the EFF, he added "who the fuck are you anyway, EFF"? Things went downhill from there and partners are now at least one video company is dropping out of Binge On (but is still getting throttled)

Submission + - PostgreSQL 9.5 released

iamvego writes: Later than the typical release cadence, PostgreSQL 9.5 has finally been released, and brings with it a slew of new features including UPSERT functionality, row-level security, and some big data features (CUBE/ROLLUP, join pushdown for foreign data wrappers, TABLESAMPLE, BRIN indexing and more). The previous release had brought about some new JSON functions and operators, but they only queried the data; 9.5 comes with new operators which now allow modification of JSON values, so it no longer has to be manipulated outside of the database. PostgreSQL's wiki has a more detailed overview of the new features.

Submission + - DMV Releases Draft Requirements for Public Deployment of Autonomous Vehicles

kheldan writes: The California DMV will be allowing so-called 'autonomous cars' on the roads — with some restrictions. Namely: There must be a licensed driver behind the wheel at all times, alert and ready to take over on a moments notice, who additionally will be requried to obtain special training in the operation of the 'autonomous' vehicle they'll be driving; there must be extensive certification of the vehicle itself, subject to a three-year 'deployment permit', and re-evaluation of the vehicles' performance after that time; and there must be proof from the manufacturer that the vehicle is safe from cyber-attack. Those are the highlights; the full text of the press release is here, on the Calfornia DMV website, and the DMV is encouraging the public to attend workshops in January to discuss the draft regulations.

Submission + - Facebook Threatens Researcher Over Instagram Hack (securityweek.com)

wiredmikey writes: A researcher claims he was threatened by Facebook after he responsibly disclosed a series of vulnerabilities and configuration weaknesses that allowed him to gain access to sensitive information stored on Instagram servers, including source code and the details of users and employees.

Wesley Wineberg says he discovered a remote code execution (RCE) vulnerability that allowed him to read a configuration file containing credentials needed to access database, which revealed roughly 60 accounts belonging to Facebook and Instagram employees. Wineberg also discovered that the server had been running on Amazon’s EC2 service and a list of more than 1,400 systems had been hardcoded into the /etc/hosts file.

While Facebook confirmed the existence of the RCE vulnerability and promised a $2500 reward, Facebook later agued that he violated user privacy when he accessed the data. Furthermore, Wineberg claims Facebook’s CSO, Alex Stamos, contacted him via the CEO of Synack, the vulnerability research firm he works for.

“Alex informed my employer (as far as I am aware) that I had found a vulnerability, and had used it to access sensitive data. He then explained that the vulnerability I found was trivial and of little value, and at the same time said that my reporting and handling of the vulnerability submission had caused huge concern at Facebook,” Wineberg said. “Alex then stated that he did not want to have to get Facebook's legal team involved, but that he wasn't sure if this was something he needed to go to law enforcement over.”

Stamos allegedly attempted to convince the researcher and his employer to keep the existence of the security holes private and delete all data obtained from Instagram systems.

“In my opinion, the best course of action was to simply be transparent with all of my findings and interactions. I am not looking to shame any individuals or companies, but I do believe that my treatment in this situation was completely inappropriate,” Wineberg said.

Handhelds

Submission + - First iphone 3GS software jailbreak released (purplera1n.com)

yoshac writes: George Hotz has released purplera1n, the first publicly released software-only exploit for jail breaking the Apple iphone 3GS.
Details were posted on his blog 3rd July:

FRIDAY, JULY 3, 2009
I make it ra1n
Yes, this is what you've all been waiting for. A jailbreak for the iPhone 3GS. And it's awesome. To get started right now, go to purplera1n.com. Download it. Make sure you have windows(but not 7), the latest iTunes installed, and an iPhone 3GS with 3.0 firmware. Connect your iPhone normally. Click "make it ra1n". Wait. On bootup, run Freeze, the purplera1n installer app. Hopefully you'll figure out what to do from there.

Image

Obese Woman Told To Get MRI At the Zoo 15

5-foot tall, 275-pound Carolyn Ragan is upset with the University of Kansas Hospital after she was told to have an MRI of her spinal tumor done at a zoo because the hospital's machine could not accommodate her. "(a medical assistant)...suggested the Kansas City Zoo," Ragan said. "I thought, I know I'm big, but I'm not as big as an elephant. And my husband got mad." The University of Kansas Hospital would not comment on Ragan's claim, but said its MRI department does not know of any animal MRI in the Kansas City area that would scan a human. You know it's time to put down the burger and go for a walk when you have to go to the large mammal exhibit for health care.
The Courts

Hacker Admits To Scientology DDoS Attack 275

lbwbl writes with news that a New Jersey man will plead guilty to one felony count of 'unauthorized impairment of a protected computer' for his distributed denial of service attacks on Scientology websites as part of 'Anonymous' earlier this year. From Wired: "He faces a likely sentence of 12 to 18 months in prison based on stipulations in his plea agreement, which also obliges him to pay $37,500 in restitution. ... Friday's case, in US District Court in Los Angeles, marks the first prosecution of an Anonymous member for a series of attacks against the Church of Scientology that began in mid-January. The secretive religious group strayed into Anonymous' sights after trying to suppress the publication of a creepy Tom Cruise video produced for Scientology members."
Music

Submission + - Radiohead's In Rainbows - Is The Album Dead? (theseminal.com) 1

Snocrash23 writes: "Last week, Radiohead released their latest album, In Rainbows, for free, asking fans to pay whatever they liked for the full length downloadable work. A week later, the "sales" numbers for In Rainbows are starting to leak. By my calculations, Radiohead made out with a ton of money."
Operating Systems

Submission + - Adobe to move all its apps to run on the web (reuters.com)

E1ven writes: "Adobe today announced they they will be transitioning their entire suite of apps, including Photoshop, Illustrator and After Effects to run as web-based applications.
This is a strong bet on the future of web applications, and if successful puts Adobe in a strong position to control the API for the next generation of development.
Perhaps the most intriguing part is that it will make Desktop OS almost irrelevant, allowing Photoshop and it's ilk on Linux without compatibility woes."

Music

Submission + - Slashdot Reverses Facts about Radiohead 1

Apro+im writes: The popular news aggregation website, Slashdot today reported that the new Radiohead album, In Rainbows was pirated more than it was procured via legitimate means, setting off a flurry of speculation on their online discussion board as to the implications of this "fact". Strangely overlooked in much of the discussion, however, was the fact that the article they linked contained the exact opposite information, stating:

"The file was downloaded about 100,000 more times each day — adding up to more than 500,000 total illegal downloads. That's less than the 1.2 million legitimate online sales of the album reported by the British Web site Gigwise.com"
Questions about what this implies about Slashdot's editorial practices and readership remain unanswered.

Slashdot Top Deals

Somebody ought to cross ball point pens with coat hangers so that the pens will multiply instead of disappear.

Working...