farooge - Slashdot User

Submission + - Fedora 41 to retire Python 2.7 (fedoraproject.org)

Submitted by slack_justyb on Wednesday July 03, 2024 @01:50AM

slack_justyb writes: After sixteen years since the introduction of Python 3, the Fedora project announces that Python 2.7, the last of the Python 2 series will be retired. From the announcement on the Fedora changes page:

The python2.7 package will be retired without replacement from Fedora Linux 41. There will be no Python 2 in Fedora 41+ other than PyPy. Packages requiring python2.7 on runtime or buildtime will have to deal with the retirement or be retired as well.
This also comes with the announcement that GIMP 3 will be coming to Fedora 41 to remove any last Python 2 dependencies. GIMP 2 was originally released on March 23, 2004.
GIMP will be updated to GIMP 3 with Python 3 support. Python 2 dependencies of GIMP will be retired.
Python 2's end of life was originally 2015, but was extended to 2020. The Python maintainers close with:
The Python maintainers will no longer regularly backport security fixes to Python 2.7 in RHEL, due to the the end of maintenance of RHEL 7 and the retirement of the Python 2.7 application stream in RHEL 8. We provided this obsolete package for 5 years beyond its retirement date and will continue to provide it until Fedora 40 goes end of life. Enough has been enough.

Submission + - Over 14 Million Servers May Be Vulnerable To OpenSSH's RegreSSHion RCE Flaw (zdnet.com)

Submitted by Anonymous Coward on Tuesday July 02, 2024 @07:37PM

An anonymous reader writes: Hold onto your SSH keys, folks! A critical vulnerability has just rocked OpenSSH, Linux's secure remote access foundation, causing seasoned sysadmins to break out in a cold sweat. Dubbed "regreSSHion" and tagged as CVE-2024-6387, this nasty bug allows unauthenticated remote code execution (RCE) on OpenSSH servers running on glibc-based Linux systems. We're not talking about some minor privilege escalation here — this flaw hands over full root access on a silver platter. For those who've been around the Linux block a few times, this feels like deja vu. The vulnerability is a regression of CVE-2006-5051, a bug patched back in 2006. This old foe somehow snuck back into the code in October 2020 with OpenSSH 8.5p1. Thankfully, the Qualys Threat Research Unit uncovered this digital skeleton in OpenSSH's closet. Unfortunately, this vulnerability affects the default configuration and doesn't need any user interaction to exploit. In other words, it's a vulnerability that keeps security professionals up at night.

It's hard to overstate the potential impact of this flaw. OpenSSH is the de facto standard for secure remote access and file transfer in Unix-like systems, including Linux and macOS. It's the Swiss Army knife of secure communication for sysadmins and developers worldwide. The good news is that not all Linux distributions have the vulnerable code. Old OpenSSH versions earlier than 4.4p1 are vulnerable to this signal handler race condition unless they are patched for CVE-2006-5051 and CVE-2008-4109. Versions from 4.4p1 up to, but not including, 8.5p1 are not vulnerable. The bad news is that the vulnerability resurfaced in OpenSSH 8.5p1 up to, but not including, 9.8p1 due to the accidental removal of a critical component. Qualys has found over 14 million potentially vulnerable OpenSSH server internet instances. The company believes that approximately 700,000 of these external internet-facing instances are definitely vulnerable. A patch, OpenSSH 9.8/9.8p1 is now available. Many, but not all, Linux distributions have made it available. If you can get it, install it as soon as possible.

Submission + - Nybolt 35kWh Li-ion battery charged from 10% to 80% in just over 4.5 min. (cnn.com)

Submitted by fahrbot-bot on Tuesday July 02, 2024 @04:54PM

fahrbot-bot writes: CNN reports that Nybolt, based in Cambridge, has developed a new 35kWh lithium-ion battery that was charged from 10% to 80% in just over four and a half minutes in its first live demonstration last week.

Nyobolt’s technology builds on a decade of research led by University of Cambridge battery scientist Clare Grey and Cambridge-educated Shivareddy, the company said. Key to its batteries’ ability to be charged super-fast without a big impact on their longevity is a design that means they generate less heat. It also makes them safer as overheating can cause a lithium-ion battery to catch fire and explode. In addition, the materials used to make the batteries’ anodes allow for a faster transfer of electrons.

Nyobolt is currently in talks to sell its batteries to eight electric car manufacturers. At 35 kWh, the battery is much smaller than the 85 kWh in a more typical American electric vehicle (EV). Yet the technology may be used in larger battery packs in the future.

Independent testing of Nyobolt’s batteries by what it called a leading global manufacturer found that they can achieve over 4,000 fast-charge cycles, equivalent to 600,000 miles (965,600 kilometers), while retaining more than 80% of capacity, Nyobolt said in its Friday statement.

A crucial chemical element in Nyobolt’s batteries is niobium but, as Kephart pointed out, last year only an estimated 83,000 tonnes (94,500 tons) was mined worldwide. Compare that with graphite, commonly used as anode material in lithium-ion batteries: an estimated 1.6 million tonnes (1.8 million tons) was produced in 2023.

In addition, there are currently “a lot of unknowns” with the niobium battery technology, he told CNN. “The industry will work it out (but) it’s not seen by the industry as a scalable technology just yet,” he added.

Comment Re:As simple as possible ... (Score 0) 427

by farooge on Wednesday September 23, 2009 @01:15PM (#29517919) Attached to: Judge Rejects Approval of Engineered Sugar Beets

>>Caution is appropriate here

No, it's really not needed at all.

The precautionary principle is awful, no matter how eloquent its proponents are.

Comment What a dink (Score 0) 427

by farooge on Wednesday September 23, 2009 @12:37PM (#29517199) Attached to: Judge Rejects Approval of Engineered Sugar Beets

>There's still hope, isn't there? That we can at least get this stuff labeled properly?

It already is - and your tinfoil is showing.

Comment Re:Maybe the measurements are wrong or incomplete (Score 0) 436

by farooge on Thursday August 27, 2009 @11:13AM (#29217261) Attached to: Astrophysicists Find "Impossible" Planet

>"This is how science works: based on past observations, you construct a theory of how things should work."

I don't think you've been paying attention to what 'they' have actually been doing lately.

The correct version of that assertion would be followed by:

And when it does not fit, adjust the math, invent something undetectable, and hope nobody connects the dots

Comment Re:Hot Jupiter (Score 0) 436

by farooge on Thursday August 27, 2009 @10:38AM (#29216793) Attached to: Astrophysicists Find "Impossible" Planet

same thing

Comment Re:I thought this was settled science! (Score 0) 436

by farooge on Thursday August 27, 2009 @10:24AM (#29216613) Attached to: Astrophysicists Find "Impossible" Planet

:-)

That was my first thought too

Comment Congratulations Wasp-18! (Score 0) 436

by farooge on Thursday August 27, 2009 @10:15AM (#29216485) Attached to: Astrophysicists Find "Impossible" Planet

It's a baby!

I wonder if [big round celestial bodies] have a 'sex'? Probably, though I have no idea how to tell. .. I'm not being sarcastic folks, it's new, really.

Comment Re:I hate the word "consensus" (Score 0) 1100

by farooge on Wednesday August 26, 2009 @11:08AM (#29202111) Attached to: Global Warming To Be Put On Trial?

heh

I've got some homework for you:

Look up irrational.

Comment Wow! Wow! (Score 0) 1100

by farooge on Wednesday August 26, 2009 @10:59AM (#29201983) Attached to: Global Warming To Be Put On Trial?

"Environmentalists say the chamber's strategy is an attempt to sow political discord by challenging settled science â" and note that in the famed 1925 Scopes trial"

Arrogance, hubris, contempt. I am appalled at what passes for science these days (or maybe that should be 'science journalism')

I bet you heard the same reasoning used to defend this theory:

http://www.nationalcenter.org/Time-Ice-Age-06-24-1974-Sm.jpg

Al Gore isn't a scientist

Comment Heh (Score 0) 553

by farooge on Friday August 21, 2009 @09:25AM (#29145467) Attached to: Initial Tests Fail To Find Gravitational Waves

At what point will everyone realize how silly all these imaginary mathematical constructs are?

Gravity waves do not exist, strings do not exist, dark matter/energy does not exist, redshift does not = distance, black holes do not exist and the sun is EXTERNALLY powered.

Eddington was wrong.

Comment Re:Redshift (Score 0) 178

by farooge on Friday September 08, 2006 @06:13PM (#16069419) Attached to: No Shadow From the Big Bang?

... let's see if you're interested in lecturing me or having a discussion

>>"First, redshifting is not about distance, it's about how fast things are moving away from you"
it would take me too long to reply to that statement

>>"Second, light waves don't stretch out as they age, so age isn't really at issue here either"
not what I meant

>>(your) "if and only if" (meme)
I think I have a firm grasp on causative associations of the standard model; I stand by that statement

>>" Don't worry, it's a common mistake among people who haven't actually studied reasoning, logic, mathematics, or computer science "
I'm pretty used to this type of brow-beating. Question: Does that imply (that) because I am a programmer and Carl Popper is one of the people I most admire that I'm am idiot? (it's ok, I won't be offended if that's where you were going)

So the question remains - are you really interested in discussing this? I'll do it here, in email, on the phone, or in person.

email is (farooge) over (at) (Yahoo)

Slashdot Top Deals