Follow Slashdot stories on Twitter

 



Forgot your password?
typodupeerror

Submission + - Fifteen Years Later, Citizens United Defined the 2024 Election (brennancenter.org)

NewYorkCountryLawyer writes: The influence of wealthy donors and dark money was unprecedented. Much of it would have been illegal before the Supreme Court swept away long-established campaign finance rules. Citizens United v. Federal Election Commission, the Supreme Court’s controversial 2010 decision that swept away more than a century’s worth of campaign finance safeguards, turns 15 this month. The late Justice Ruth Bader Ginsburg called it the worst ruling of her time on the Court. Overwhelming majorities of Americans have consistently expressed disapproval of the ruling, with at least 22 states and hundreds of cities voting to support a constitutional amendment to overturn it. Citizens United reshaped political campaigns in profound ways, giving corporations and billionaire-funded super PACs a central role in U.S. elections and making untraceable dark money a major force in politics. And yet it may only be now, in the aftermath of the 2024 election, that we can begin to understand the full impact of the decision.

Submission + - Anti-Trump Searches Appear Hidden on TikTok (ibtimes.com)

AmiMoJo writes: Searches for anti-Trump content are now appearing hidden on TikTok for many users after the app came back online in the U.S. TikTok users have taken to Twitter to share that when they search for topics negatively related to President Donald Trump, a message pops up saying "No results found" and that the phrases may violate the app's guidelines. One user said that when they tried to search "Donald Trump rigged election" on a U.S. account, they were met with blocked results. Meanwhile, the same phrase searched from a U.K. account prompted results. Another user shared video of them switching between a U.S. and U.K. VPN to back up the user's viral claims, which has since amassed more than 187,000 likes.
Crime

Silk Road Creator Ross Ulbricht Pardoned (bbc.com) 339

Slashdot readers jkister and databasecowgirl share the news of President Donald Trump issuing a pardon to Silk Road creator Ross Ulbricht. An anonymous reader shares a report from the BBC: US President Donald Trump says he has signed a full and unconditional pardon for Ross Ulbricht, who operated Silk Road, the dark web marketplace where illegal drugs were sold. Ulbricht was convicted in 2015 in New York in a narcotics and money laundering conspiracy and sentenced to life in prison. Trump posted on his Truth Social platform that he had called Ulbricht's mother to inform her that he had granted a pardon to her son. Silk Road, which was shut down in 2013 after police arrested Ulbricht, sold illegal drugs using Bitcoin, as well as hacking equipment and stolen passports.

"The scum that worked to convict him were some of the same lunatics who were involved in the modern day weaponization of government against me," Trump said in his post online on Tuesday evening. "He was given two life sentences, plus 40 years. Ridiculous!" Ulbricht was found guilty of charges including conspiracy to commit drug trafficking, money laundering and computer hacking. During his trial, prosecutors said Ulbricht's website, hosted on the hidden "dark web", sold more than $200 million worth of drugs anonymously.

Submission + - Trump Pardons Silk Road Founder (nypost.com)

databasecowgirl writes: President Trump announced Tuesday night that he had granted a âoefull and unconditionalâ pardon to Ross Ulbricht, founder of the notorious dark web site Silk Road.

Submission + - Decentralized Social Media Is the Only Alternative to the Tech Oligarchy (404media.co)

An anonymous reader writes: If it wasn’t already obvious, the last 72 hours have made it crystal clear that it is urgent to build and mainstream alternative, decentralized social media platforms that are resistant to government censorship and control, are not owned by oligarchs and dominated by their algorithms, and in which users own their follower list and can port it elsewhere easily and without restriction. [...] Mastodon’s ActivityPub and Bluesky’s AT.Protocol have provided the base technology layer to make this possible, and have laid important groundwork over the last few years to decorporatize and decentralize the social internet.

The problem with decentralized social media platforms thus far is that their user base is minuscule compared to platforms like TikTok, Facebook, and Instagram, meaning the cultural and political influence has lagged behind them. You also cannot directly monetize an audience on Bluesky or Mastodon—which, to be clear, is a feature, not a bug—but also means that the value proposition for an influencer who makes money through the TikTok creator program or a small business that makes money selling chewing gum on TikTok shop or a clothes brand that has figured out how to arbitrage Instagram ads to sell flannel shirts is not exactly clear. I am not advocating for decentralized social media to implement ads and creator payment programs. I’m just saying that many TikTok influencers were directing their collective hundreds of millions of fans to follow them to Instagram or YouTube, not a decentralized alternative.

This doesn’t mean that the fediverse or that a decentralized Instagram or TikTok competitor that runs on the AT.Protocol is doomed. But there is a lot of work to do. There is development work that needs to be done (and is being done) to make decentralized protocols easier to join and use and more interoperable with each other. And there is a massive education and recruitment challenge required to get the masses to not just try out decentralized platforms but to earnestly use them. Bluesky’s growing user base and rise as a legitimately impressive platform that one can post to without feeling like it’s going into the void is a massive step forward, and proof that it is possible to build thriving alternative platforms. The fact that Meta recently blocked links to a decentralized Instagram alternative shows that big tech sees these platforms, potentially, as a real threat.

Submission + - TikTok is censoring anti-Trump content (newsweek.com)

smooth wombat writes: After going dark for 12 hours in response to a U.S. law saying it must divest from Chinese ownership, TikTok came back on line when the new administration took office. However, once up and running, users found one unexpected change. Anti-Trump content is now being censored. Words, phrases, and videos which were readily accessible pre-blackout were now unavailable or being removed entirely.

A post on X, formerly Twitter, which has received 4.5 million views at the time of reporting, claims that "TikTok is now region locking Americans from looking up things like "fascism" and "Donald Trump rigged election"."

The post includes two screenshots of the TikTok app. The screenshot is of the search page, and in both the search term is "Donald Trump rigged election." The post states that: "On the left are results from a device in America, and on the right are results from one in the UK."

The post on the left shows a results page stating "No results found," while on the left it shows two videos of the President.

Another post from the account Dustin Genereux said that, "Censorship on TikTok is at an all time high with accounts being deleted, posts going back years being flagged, people losing access to the creator fund for saying anything Anti-Trump, MAGA, Elon, etc. But free speech and all that right?"

Earth

Great Barrier Reef Hit By Its Most Widespread Coral Bleaching, Study Finds (theguardian.com) 15

More than 40% of individual corals monitored around a Great Barrier Reef island were killed last year in the most widespread coral bleaching outbreak to hit the reef system, a study has found. The Guardian: Scientists tracked 462 colonies of corals at One Tree Island in the southern part of the Great Barrier Reef after heat stress began to turn the corals white in early 2024. Researchers said they encountered "catastrophic" scenes at the reef.

Only 92 coral colonies escaped bleaching entirely and by July, when the analysis for the study ended, 193 were dead and a further 113 were still showing signs of bleaching. Prof Maria Byrne, a marine biologist at the University of Sydney and lead author of the study, has been researching and visiting the island for 35 years.

Communications

Brendan Carr is Officially in Charge of the FCC (theverge.com) 71

An anonymous reader shares a report: Brendan Carr is now formally the chair of the Federal Communications Commission, giving him the power to set the agency's agenda and usher through a host of regulations with major implications for the tech and media industries as soon as he has a Republican majority. In a statement, Carr named a few areas of focus: "issues ranging from tech and media regulation to unleashing new opportunities for jobs and growth through agency actions on spectrum, infrastructure, and the space economy."

Carr's priorities might also be gleaned from a document you might have already heard about: Project 2025. That's because he authored the FCC chapter of the Heritage Foundation's wishlist for a Donald Trump presidency. In that chapter, Carr proposes actions including: limiting immunity for tech companies under Section 230 of the Communications Decency Act, requiring disclosures about how platforms prioritize content, requiring tech companies to pay into a program that funds broadband access in rural areas, and more, quickly approving applications to launch satellites from companies like Elon Musk's Starlink.

AI

Authors Seek Meta's Torrent Client Logs and Seeding Data In AI Piracy Probe (torrentfreak.com) 15

An anonymous reader quotes a report from TorrentFreak: Meta is among a long list of companies being sued for allegedly using pirated material to train its AI models. Meta has never denied using copyrighted works but stressed that it would rely on a fair use defense. However, with rightsholders in one case asking for torrent client data and 'seeding lists' for millions of books allegedly shared in public, the case now takes a geeky turn. [...] A few weeks ago, the plaintiffs asked for permission to submit a third amended complaint (PDF). After uncovering Meta's use of BitTorrent to source copyright-infringing training data from pirate shadow library, LibGen, the request was justified, they argued. Specifically, the authors say that Meta willingly used BitTorrent to download pirated books from LibGen, knowing that was legally problematic. As a result, Meta allegedly shared copies of these books with other people, as is common with the use of BitTorrent.

"By downloading through the bit torrent protocol, Meta knew it was facilitating further copyright infringement by acting as a distribution point for other users of pirated books," the amended complaint notes. "Put another way, by opting to use a bit torrent system to download LibGen's voluminous collection of pirated books, Meta 'seeded' pirated books to other users worldwide." Meta believed that the allegations weren't sufficiently new to warrant an update to the complaint. The company argued that it was already a well-known fact that it used books from these third-party sources, including LibGen. However, the authors maintained that the 'torrent' angle is novel and important enough to warrant an update. Last week, United States District Judge Vince Chhabria agreed, allowing the introduction of these new allegations. In addition to greenlighting the amended complaint, the Judge also allowed the authors to conduct further testimony on the "seeding" angle. "[E]vidence about seeding is relevant to the existing claim because it is potentially relevant to the plaintiffs' assertion of willful infringement or to Meta's fair use defense," Judge Chhabria wrote last week.

With the court recognizing the relevance of Meta's torrenting activity, the plaintiffs requested reconsideration of an earlier order, where discovery on BitTorrent-related matters was denied. Through a filing submitted last Wednesday, the plaintiffs hope to compel Meta to produce its BitTorrent logs and settings, including peer lists and seeding data. "The Order denied Plaintiffs' motion to compel production of torrenting data, including Meta's BitTorrent client, application logs, and peer lists. This data will evidence how much content Meta torrented from shadow libraries and how much it seeded to third parties as a host of this stolen IP," they write. While archiving lists of seeders is not a typical feature for a torrent client, the authors are requesting Meta to disclose any relevant data. In addition, they also want the court to reconsider its ruling regarding the crime-fraud exception. That's important, they suggest, as Meta's legal counsel was allegedly involved in matters related to torrenting. "Meta, with the involvement of in-house counsel, decided to obtain copyrighted works without permission from online databases of copyrighted works that 'we know to be pirated, such as LibGen," they write. The authors allege that this involved "seeding" files and that Meta attempted to "conceal its actions" by limiting the amount of data shared with the public. One Meta employee also asked for guidance, as "torrenting from a corporate laptop doesn't feel right."

Comment Re:Monolithic practices (Score 1) 81

No, it's not broken. In fact, I'll argue that the differences here make distros more resilient. If everything was done the same way under all distros, then we'll see a surge in malware, (successful) exploits/script kiddie shit, etc..

The differences between distros in fact break scripts that need to refer to these tools by their absolute paths, which includes anything called from cron where the value of PATH can be anything and systemd services, or any script where use of relative paths is risky for security reasons, exactly to avoid malware in /home/user/.local/bin, for example.

So for all sense and purposes, the current state is broken. Your suggestion that will foil script kiddies, while in theory plausible and potentially having occurred some times, is ridiculous and is an example of security through pseudo-obscurity. If your security relies on your script kiddie not knowing where update-alternatives is, your system lacks any security.

On the other hand, the fix will temporarily make things more broken, as now people referring to tools with absolute path and using Fedora (or Arch) will not know where the tools are supposed to be, even for tools where the path was previously consistent across distros and will hardcode /usr/bin/fsck, which in Debian would be in /usr/sbin/fsck (and if someone hasn't yet performed their /usr merge, even /sbin/fsck). Which means Arch and Fedora will be compatible, but not Debian, and Debian will be forced to also merge them eventually.

Comment Re:All UI file managers should be dual-pane (Score 1) 45

I did mention phones, because Nautilus is usable devices like tablets as it has touch-friendly navigation, with an adaptive interface that hides the sidebar on small screens like a phone. They've recently almost fixed the constant issue where the window would become too big to fit on a screen by adding a lot of ellipses, though some other parts of GNOME (the file picker, for example), would become too wide to fit any screen by simply navigating into a directory whose name is too long.

Comment Re:All UI file managers should be dual-pane (Score 2) 45

As an avid user of orthodox dual-pane file managers (far2l, Midnight Commander, Double Commander, and Krusader when using KDE), I am not sure of it. Allow us to have file managers that are best suited for the task at hand and best fulfilling the preferences and needs of the user.

Some tasks --- editing files, watching video files, managing files on a phone screen, rarely even some file organisation within subdirectories --- are best accomplished with a single directory view, without a second pane taking up your real estate. Opening a second window to take the job of a second pane is a minor hassle if suddenly required, and can be much more flexible --- sometimes you might need three of four, or to close and open more of them as needed. Some single-pane file managers even offer opening a second pane with F3 (Dolphin and pcmanfm, for example), and this is valuable, but it is neither that much significant improvement over opening a second window, nor does it offer the power of a primarily dual-pane manager like the ones I mentioned.

It might be prudent to have such mode in all file managers, but even when everything in my life is dual-pane I seldom use it, because every operation in a truly dual-pane manager is aimed at the presence of exactly two panes. Copy, move, symlink are aimed at the opposite pane (as opposed to drag & drop with windows, or with an F3 split), macro actions can be created that reference the active and inactive pane, or left and right pane (useful for making diffs), comparison and directory synchronisation features may be also provided. That's the true value of the design, so simply splitting the view does little to give you that.

On the other hand, single views --- splitable or not --- are great for what they do. Sometimes you just need smaller window, sometimes you just need independent views where a dual pane wouldn't be the best fit, sometimes you even more than two. I've even been in a situation where I needed to run multiple instances of a certain dual-pane FM (because of the macros I had in them, or the ability to use them over SSH), and all operated in a single directory, the second pane sitting there eating screen space for no reason.

Comment Re:Hmmmm (Score 2) 18

Perhaps you forgot to check that argumentum ad populatum is still a logical fallacy in 2021.

My company makes up some of those 80% powered by PHP, I make my salary supporting PHP web sites and coding PHP code myself, I even like some of the overall language, and PHP happens to be the first language in which I coded any non-toy programs.

Yet it is still pretty much THE shitty language. A primer on how you DO NOT create a programming language, from security hell to just absurd language features that trip you on every step. You wouldn't need to look past what kind of absolute crap has to be fixed with breaking changes in each major release that's came out in recent years. For example, the recently released PHP 8 fixes the absolute insanity of PHP comparison operators: https://www.php.net/manual/en/...

Before this change (and since PHP 8 compatibility is not here yet in popular libraries, you can say it is still the case), you would struggle with BASIC things like checking for an empty string:
if ($s == '') // WRONG, if someone passes 0, it will evaluate to true, yet result in non-empty string
if ($s === '') // WRONG, if someone passes false or null, it will evaluate to false yet result in empty string
if (!$s) // WRONG, if someone passes "0" or 0, it will evaluate to true yet result in non-empty string
if ((string) $s == '') // CORRECT (though it could probably result in an error in a number of cases, good by me)

That's what we're fixing in 2020/2021. In the decades, it's a language that brought absolute wonders like magic quotes, which would any mangle any input string with C-style escapes, in the false belief that this protected you from SQL injections. SQL injections resulted from this, yet it also brought the joy of web sites in which passwords containing " or ' or \ would not work, because they would be “escaped”, and your password would differ from what you actually typed.

Mind you, when that was happening, the default MySQL library didn't even contain the ability to pass parameters to queries. And when parameters were added with MySQLi, it happened with an over-engineered complicated system that totally discourages you from using it. Now, to add query parameters, you individually bind each of your query parameters to a variable, which it now references, and can set to whatever value you want. That's powerful, but complicates code for passing simple parameters, thus discouraging people from doing so, and still writing vulnerable code. To this day.

And if you're going to say that these are things of the distant past, think again. MySQL has been fixed, but shell commands still haven't been - on POSIX, there's no way to safely run a command composed out of execl() arguments, it always goes through the shell. Not only that invoked shell vulnerabilities like shellshock in the past, it means you have to carefully escape every argument, individually, with escapeshellarg(), which breaks badly on different locales, and is still prone to the programmer forgetting an argument, as with SQL queries without parameters.

To make it all harder, changes brought to fix these gaping holes of the language have been done in ways that would be disruptive to existing code, and done so often, all the while support for earlier releases have been made short. In other words, we break your code, and break it often. When magic quotes was removed, so was the ability to turn it off, making attempts to do so a fatal error, and complicating the upgrade between two versions that both lack the stupid thing.

Or, along with wanted fixes to the comparison operators, PHP 8 decided to make the signatures of methods during inheritance mandatory. Now, that technically makes sense, but in a language where you can dynamically take and pass the arguments, the new PHP version rejects code that does so with a fatal error, thereby breaking scripts that are correct. It's probably still the correct change, but add that to the fixes for outstanding issues that are also breaking, you're looking at a never-ending stream of breaking changes. And all code needs to be updated within a couple of years, because support for the PHP versions without the breakage is dropped fast. It's better than the Python 2 to 3 transition, which was one big pain in the ass, but at least that one you could put behind you. The PHP breakage is an ongoing process, and I have no confirmation it is done yet.

And let's not forget that the majority of GNU/Linux malware happens on PHP installations. And while the bad security of PHP scripts is not a fault of the language (except when it is, see above), and while the tendency of PHP users to download outdated unauthorized copies of commercial software even less so, PHP has become nesting grounds for malware. That's on top of the database leaks in which it has been complicit.

Slashdot Top Deals

The last thing one knows in constructing a work is what to put first. -- Blaise Pascal

Working...