ConstantineM writes "It's official: 'we are moving towards signed packages,' says Theo de Raadt on the misc@ mailing list. This is shortly after a new utility, signify, was committed into the base tree. The reason a new utility had to be written in the first place is that gnupg is too big to fit on the floppy discs, which are still a supported installation medium for OpenBSD. Signatures are based on the Ed25519 public-key signature system from D. J. Bernstein and co., and his public domain code once again appears in the base tree of OpenBSD, only a few weeks after some other DJB inventions made it into the nearby OpenSSH as well."

McGruber writes "During her testimony (PDF) at a Senate Committee on Commerce, Science, and Transportation hearing Wednesday about the data-broker industry, Pam Dixon, executive director of the World Privacy Forum, revealed that the Medbase200 unit of Integrated Business Services Incorporated had been offering a list of 'rape sufferers' on its website, at a cost of $79 for 1,000 names. The company, which sells marketing information to pharmaceutical companies, also offered lists of domestic violence victims, HIV/AIDS patients, and 'peer pressure sufferers.' In an interview with the Wall Street Journal, Integrated Business Services Incorporated President Sam Tartamella initially denied that his company maintained or sold databases of rape victims. After the Journal provided him a link to the 'rape sufferers' page, he said he would remove it from Medbase200's website and denied ever having sold such a list. The page was removed later Wednesday."

An anonymous reader writes "The Free Software Foundation announced today the first laptop they have been able to certify as-is that respects the user's freedoms. The laptop is free down to using Coreboot in place of a proprietary BIOS. The OS shipped on the laptop is Trisquel, the Ubuntu derived Linux OS that removes all traces of proprietary firmware, patented formats, etc. The only issue though for new customers is this endorsed laptop comes down to being a refurbished 2006 ThinkPad X60 with single or dual-core Intel CPU, 1GB+ of RAM, 60GB+ HDD, and a 1024x768 12.1-inch screen, while costing $320+ USD (200 GBP). The FSF-certified refurbished laptops are only offered for sale through the Gluglug UK shop. Are these outdated specs worth your privacy and freedom?"

New submitter krakman writes "The Washington Post has an interesting story about how the FBI can investigate and collect details from computers over the net, without knowing anything about the computer location. Here's an example of the FBI's network investigative techniques: 'The man who called himself "Mo" had dark hair, a foreign accent and — if the pictures he e-mailed to federal investigators could be believed — an Iranian military uniform. When he made a series of threats to detonate bombs at universities and airports across a wide swath of the United States last year, police had to scramble every time. Mo remained elusive for months, communicating via e-mail, video chat and an Internet-based phone service without revealing his true identity or location, court documents show. ... The FBI’s elite hacker team designed a piece of malicious software that was to be delivered secretly when Mo signed on to his Yahoo e-mail account, from any computer anywhere in the world, according to the documents. The goal of the software was to gather a range of information — Web sites he had visited and indicators of the location of the computer — that would allow investigators to find Mo and tie him to the bomb threats. ... Even though investigators suspected that Mo was in Iran, the uncertainty around his identity and location complicated the case. Had he turned out to be a U.S. citizen or a foreigner living within the country, a search conducted without a warrant could have jeopardized his prosecution. ...But, [a court document] said, Mo’s computer did send a request for information to the FBI computer, revealing two new IP addresses in the process. Both suggested that, as of last December, Mo was still in Tehran.'"

An anonymous reader writes "Best Buy and Barnes and Noble have a problem with showrooming — shoppers checking out the merchandise in their stores and then proceeding to order the goods at a discounted prices online. And Red Hat might have a similar problem with people (not just college kids and software professionals boning up on their skills at home, either) using the free-as-in-beer CentOS rather than licensing Red Hat Enterprise Linux and paying support fees. But according to CEO Jim Whitehurst, Red Hat's competitive position may actually be helped by CentOS in the same way that counterfeit Windows products sold on the streets in the Far East may have helped Microsoft — by cementing their position as the technology standard, in a marketplace that also includes entrants from SuSE, Debian, Oracle, and Ubuntu, just among Linux-based entrants. Who does Whitehurst consider to be Red Hat's most direct threat? VMWare."

grahamsaa writes "I work at medium sized company that offers a number of products that rely fairly heavily on backend databases, some of which are hundreds of gigabytes and deal with hundreds or thousands of queries per second. Currently, we're using a mix of Postgres, Oracle, and MySQL, though we're working hard to move everything to Postgres. The products that are still on MySQL and Oracle were acquisitions, so we didn't get to choose the RDBMS at the time these products were designed. So far, we've been very happy with Postgres, but I know next to nothing about Oracle. It's expensive and has a long history of use in large enterprises, but I'm curious about what it offers that Postgres might not — I'm not saying this because I think that sticking with Oracle would be a good idea (because in our case, it probably isn't), but I'm curious as to how some companies justify the cost — especially considering that EnterpriseDB makes transitioning from Oracle to Postgres feasible (though not painless) in most cases. For those that use Oracle — is it worth the money? What's keeping you from switching?"

An anonymous reader writes "A team of scientists says it has verified that quantum effects are indeed at work in the D-Wave processor, the first commercial quantum optimization computer processor. The team demonstrated that the D-Wave processor behaves in a manner that indicates that quantum mechanics has a functional role in the way it works. The demonstration involved a small subset of the chip's 128 qubits, but in other words, the device appears to be operating as a quantum processor."

Titus Andronicus writes "Scientific fraud has always been with us. But as stated or suggested by some scientists, journal editors, and a few studies, the amount of scientific 'cheating' has far outpaced the expansion of science itself. According to some, the financial incentives to 'cut corners' have never been greater, resulting in record numbers of retractions from prestigious journals. From the article: 'For example, the journal Nature reported that published retractions had increased tenfold over the past decade, while the number of published papers had increased by just 44 percent.'"

An anonymous reader writes "In 1955, John Nash sent an amazing letter (PDF) to the NSA in order to support an encryption design that he suggested. In it, he anticipates computational complexity theory as well as modern cryptography. He also proposes that the security of encryption can be based on computational hardness and makes the distinction between polynomial time and exponential time: 'So a logical way to classify enciphering processes is by the way in which the computation length for the computation of the key increases with increasing length of the key. This is at best exponential and at worst probably at most a relatively small power of r, ar^2 or ar^3, as in substitution ciphers.'"

hypnosec noted that Google has stepped up to try to help fundraising for Bletchley Park. From TFA: "The point is that all of us have heroes. At Google our heroes are Alan Turing and the people who worked on breaking the codes at Bletchley Park. It was probably the most inspiring and uplifting achievement in scientific technology over the last hundred years. I don't think it's an exaggeration to say that without Alan Turing, Google as we know it wouldn't exist."

OzPeter writes "Last week I won an Xbox 360 Pro. However, I am not a gamer, and after looking at the current MS offerings, I am not tempted to become one. But I am in the market for a Media Center PC that I can use for streaming TV shows off the 'net as well as general web browsing and displaying video through the HDMI port. With that in mind, I again looked at MS and saw they seemed to have positioned the Xbox as an adjunct to a separate Windows Media Center PC and not as a stand alone unit (which is not what I want). So, once again, I did some more research into the Xbox homebrew scene and discovered things like Xbox Linux. But after reading that site, it is apparent that MS is trying to beat down the homebrewers, and I am left wondering how much hassle it would be to go down that path. So my question is: how should I re-purpose my Xbox? Is it worthwhile doing the Homebrew/Linux option (and can anyone share any experiences)? Are there other ways of re-purposing the device that I haven't considered? Or should I just keep it boxed up as a Christmas present for a favorite nephew?"

zootropole alerts us to a press release issued today by Lawrence Livermore National Laboratory, announcing the production of 'billions of particles of anti-matter.' "Take a gold sample the size of the head of a push pin, shoot a laser through it, and suddenly more than 100 billion particles of anti-matter appear. The anti-matter, also known as positrons, shoots out of the target in a cone-shaped plasma 'jet.' This new ability to create a large number of positrons in a small laboratory opens the door to several fresh avenues of anti-matter research, including an understanding of the physics underlying various astrophysical phenomena such as black holes and gamma ray bursts." The press release doesn't characterize the laser used in this experiment, but it may have been this one.

CaryTheSane writes "After six years, it's finally time for my old Pentium 4 to retire to web browsing duties, and I want a new gaming PC. I'd like to build my own this time, and I've scoped out most of the parts I want for a moderately high-end system. Which online vendors have you used before that you trust for parts? I've dealt with NewEgg, and I like them, but I live in Tennessee, a state in which they have a presence. Unfortunately, this means they have to hit me up for 9.5% sales tax. That really eats into my system build budget, so I'm looking for alternatives. I'd like to use the fewest number of vendors (preferably only one), so that all the parts arrive at the same time and I don't have one part's 30-day return policy run out while I'm waiting for parts from another vendor to show up. So, which reliable and economical parts vendors do you recommend?" Conversely, are there any you'd recommend avoiding?