Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Trust the World's Fastest VPN with Your Internet Security & Freedom - A Lifetime Subscription of PureVPN at 88% off. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. ×

Submission + - Trump chooses Scott Pruitt, climate change denier, to head the EPA (theguardian.com)

Victor_0x53h writes: Scott Pruitt, attorney general of Oklahoma and a sceptic of climate science, has been chosen by Donald Trump as the next administrator of the Environmental Protection Agency. He is part of legal action waged by 28 states against the EPA to halt the Clean Power Plan, an effort by Barack Obama’s administration to curb greenhouse gas emissions from coal-fired power plants and has sided with Exxon Mobil in investigations by the attorneys general in Massachusetts and New York over claims that it misled investors by covering up its knowledge of climate change.

Submission + - 5-Year-Old Critical Linux Vulnerability Patched (threatpost.com)

msm1267 writes: A critical, local code-execution vulnerability in the Linux kernel was patched more than a week ago, continuing a run a serious security issues in the operating system, most of which have been hiding in the code for years.

Details on the vulnerability were published Tuesday by researcher Philip Pettersson, who said the vulnerable code was introduced in August 2011. A patch was pushed to the mainline Linux kernel Dec. 2, four days after it was privately disclosed. Pettersson has developed a proof-of-concept exploit specifically for Ubuntu distributions, but told Threatpost his attack could be ported to other distros with some changes.

The vulnerability is a race condition that was discovered in the af_packet implementation in the Linux kernel, and Pettersson said that a local attacker could exploit the bug to gain kernel code execution from unprivileged processes. He said the bug cannot be exploited remotely.

Submission + - Trade Secrets Stolen From ThyssenKrupp In Major Hack

An anonymous reader writes: German steel manufacturer ThyssenKrupp has been hacked in a major cyberattack, coordinated by unnamed malicious actors based in south-east Asia. The large-scale attack was targeted at the German firm to steal its technical trade secrets. Martin Hölze, CIO at ThyssenKrupp said that the company had been the target of a ‘very professional hacker attack since February.’ The breach was executed through hidden backdoors in the IT systems which were used to gain access to the steel giant’s valuable intellectual property. ThyssenKrupp said that the attack was uncovered in April by its own in-house computer emergency response team (CERT), which has since cleaned and re-secured the infected systems. State and federal cyber security and data protection agencies were informed of the hack. A criminal complaint was also lodged with police in the state of North Rhine-Westphalia.

Submission + - Apache Zeppelin open-source analytics startup reveals new name, fresh funding (networkworld.com)

alphadogg writes: The team behind the Apache Zeppelin open-source notebook for big data analytics visualization has renamed itself ZEPL and announced $4.1M in Series A funding. ZEPL, which swears a certain professional football organization had nothing to do with it ditching its former name (NFLabs), is one of numerous companies smelling blood in the water around Tableau, the $3.5 billion business intelligence and analytics software vendor that has stumbled financially in recent quarters and seen its stock price plummet accordingly.

Submission + - Announced: Independent OpenVPN Security Audit (helpnetsecurity.com)

Orome1 writes: OpenVPN is an open source software application that implements various VPN techniques, and is used by millions of people. VPN service Private Internet Access has just announced that they have contracted noted and well-reputed cryptographer Dr. Matthew Green to perform a security audit of OpenVPN. Once the audit is finished, OpenVPN will get a first look at it. The results will be publicly released only after the OpenVPN project has had a chance to fix them.

Submission + - Ask Slashdot: Google Maps speed limit - how accurate is it for you? 1

An anonymous reader writes: I have lived a ways down a back country road since before there was any such thing as Google Maps. In the last few months, I have noticed a very rapid increase in the number of drivers going 35 mph on a road that has a posted speed limit of 45 mph and most people travel 55 mph. I couldn't for the life of me figure out why until one day, when I was testing out some new equipment, I observed that Google has a new feature of displaying what it thinks is the posted speed limit for where users are driving.

My biggest concern is that my local government really, really loves to lower speed limits so it can set speed traps. This road, which is long and straight with large shoulders and only a few driveways (more like gravel roads), used to be 55 mph (an "End 35 MPH" zone), but has, over the years, been taken down to 45 mph, and a similar nearby road from 50 mph to 40 mph. I have never in my life seen a road that gets surveyed as frequently as these roads, so I'm concerned that the increased flow of drivers going 10 mph below the speed limit is going to result in a further reduced posted speed limit.

My second concern is the number of tailgaters that get jammed up behind these people. This will eventually result in an accident, as the road-sign-ignorant artery-cloggers likely are going to slam on their brakes because Google also has the destination driveway in the wrong place or wrong side of the road, or they spot a deer near the road, or a squirrel jumps in front of them, etc.

I suppose if I want to do anything about this, then I should figure out how to help Google with the development of their product, else suffer the consequences. Always obliged to do Google's ground-level product development for them.

I was just curious if anyone else has this problem of the speed limits in Google Maps being too low? For me, it isn't just the one road that is inaccurate. I drove around and found that Google likes to give speed limits that are 5-15 mph below the posted speed limit, except in the most heavily trafficked areas.

Submission + - Microsoft Signature PCs block linux installs (reddit.com)

jbernardo writes: Seems like your favourite convicted monopolist is back at its usual tactics, despite all the "we are friends of open source" propaganda. The "Signature program" seems to be the reason that you can't install Linux on Lenovo laptops on the program.

Lenovo has already blocked the thread and seems to have engaged "damage control mode", but it is already on the wayback machine, at least according to BaronHK at reddit, the source of the story.

Submission + - "HP pre-programmed failure date of non-HP ink cartridges in its printers" (myce.com)

An anonymous reader writes: HP has programmed a failure date for non-HP / private label ink cartridges in its printers. Users around the world started to complain on the 13th of September this year that their printer rejected their non-HP cartridges. HP claimed that a firmware update was the culprit, but also printers who never received an update since they were unpacked rejected the cartridges starting at that particular date.

Submission + - Oldest-ever proteins extracted from 3.8-million-year-old ostrich shells (sciencemag.org)

sciencehabit writes: Scientists have smashed through another time barrier in their search for ancient proteins from fossilized teeth and bones, adding to growing excitement about the promise of using proteins to study extinct animals and humans that lived more than 1 million years ago. Until now, the oldest sequenced proteins are largely acknowledged to come from a 700,000-year-old horse in Canada’s Yukon territory, despite claims of extraction from much older dinosaurs. Now geneticists report that they have extracted proteins from 3.8-million-year-old ostrich egg shells in Laetoli, Tanzania, and from the 1.7-million-year-old tooth enamel of several extinct animals in Dmanisi, Georgia. The teeth, buried at the fossil site that houses the earliest hominin remains outside Africa, came from extinct horses, rhinos, and deer. One team has also extracted proteins from 3.8-million-year-old ostrich eggshells from the site of some of the world’s earliest human footprints.

Submission + - Vanity Fair Publishes Expose Article on Theranos

PvtVoid writes: In a new article, Vanity Fair examines the Theranos disaster, from origins to aftermath. It's a compelling story of hubris, glamour and secrecy about the unicorn Silicon Valley company that turned out to be founded on bullshit. While not the only unicorn company founded on bullshit, Theranos had the distinction of actually putting its customers' lives in danger: "[The Centers for Medicare and Medicaid Services] soon discovered that some of the tests Theranos was performing were so inaccurate that they could leave patients at risk of internal bleeding, or of stroke among those prone to blood clots. The agency found that Theranos appeared to ignore erratic results from its own quality-control checks during a six-month period last year and supplied 81 patients with questionable test results." At least Elizabeth Holmes is going to be played by Jennifer Lawrence in an upcoming movie.

Comment Re:lightweight? (Score 1) 54

Nope, in the first post on that reddit is only what he describes is what he feels were the shortcomings of Arch previous init system. The real reason for choosing systemd is below:

So why systemd over all those alternatives?

First, we don't know if the other systems were really alternatives (at least I don't know).

The answer is boring: Systemd solved many problems, it was there, it worked and we already used many of its tools in our initscripts at the time. There is no specific reason why we did not use $WHATEVER over systemd.

So, basically, they chose systemd just because they were using it. No evaluation of advantages/disadvantages, impact assessment, nothing.

Submission + - Be nice to Hillary Clinton online — or risk a confrontation with her super (latimes.com)

geek writes: According to the LA Times, Hillary Clinton's well-heeled backers have opened a new frontier in digital campaigning, one that seems to have been inspired by some of the Internet's worst instincts. Correct the Record, a super PAC coordinating with Clinton's campaign, is spending some $1 million to find and confront social media users who post unflattering messages about the Democratic front-runner.

Submission + - Microsoft Outlook injecting advertisement and URL into personal email

mr_diags writes: Recently GoDaddy's iPhone email client was retired and they aggressively encouraged users to migrate to Microsoft Outlook client. I detest most Microsoft products and ended up migrating to Spark. My wife took the path of least resistance and migrated to Outlook for iPhone. Yesterday I received a short email from her and noticed a live hypertext link “Get Outlook for iOS” in her email. I asked her why she wrote that and she said she did not. Examining the email source it clearly shows the email sent from her Outlook client has text embedded in the body of her email in both the plain text and HTML sections of the payload – including a live URL.

Yes, she needs to check if Outlook client had some default configuration when installed that embedded the advertisement, maybe a default signature. And who knows what the EULA she blindly accepted allowed MS to do, but isn’t this effectively a hack of a person’s personal email to inject an advertisement?

Content of the email, scrubbed of personal addresses:

------=_Part_13617_1251458795.1470690450092
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

It's a white 6.

Get Outlook for iOS

Received: (qmail 23638 invoked by uid 30297); 8 Aug 2016 21:07:31 -0000
Received: from unknown (HELO p3plibsmtp02-14.prod.phx3.secureserver.net) ([72.167.218.25])
(envelope-sender <xxxxx@xxxxx.com>)
by p3plsmtp01-05.prod.phx3.secureserver.net (qmail-1.03) with SMTP
for <yyyy@yyyyy.us>; 8 Aug 2016 21:07:31 -0000
Received: from p3plsmtpa12-02.prod.phx3.secureserver.net ([68.178.252.231])
by p3plibsmtp02-14.prod.phx3.secureserver.net with bizsmtp
id Uku71t01H50JyDQ01l7WVW; Mon, 08 Aug 2016 14:07:31 -0700
Received: from mail.outlook.com ([52.32.165.217])
by p3plsmtpa12-02.prod.phx3.secureserver.net with
id Ul7W1t00A4hkzKG01l7Wm9; Mon, 08 Aug 2016 14:07:30 -0700
Date: Mon, 8 Aug 2016 21:07:30 +0000 (UTC)
From: xxxxx < xxxxx@xxxxx.com >
To: yyyy@yyyyy.us
Message-ID: <42D594FBB05BB1EC.2A5FFCE7-7B0A-44C6-8158-660A799F2AC9@mail.outlook.com>
In-Reply-To: <20160807214047.a3cf85ee342f91baffbcbe5e7a33596d.19fe9dae3e.wbe@email01.godaddy.com>
References: <20160807214047.a3cf85ee342f91baffbcbe5e7a33596d.19fe9dae3e.wbe@email01.godaddy.com>
Subject: Re: iPhone screens
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_Part_13617_1251458795.1470690450092"
X-Mailer: Outlook for iOS and Android
X-Nonspam: Whitelist

------=_Part_13617_1251458795.1470690450092
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

It's a white 6.

Get Outlook for iOS

On Mon, Aug 8, 2016 at 12:40 AM -0400, <yyyy@yyyyy.us> wrote:

=C2=A0 =C2=A0Your screen parts shipped and ETA is Wednesday delivery.=C2=A0=
=C2=A0For your friends iPhone6 I've searched and found iPhone 6 — not 6plu=
s — screen repair kits for under $30, so depending on their model it may be=
reasonably priced to get the parts.

------=_Part_13617_1251458795.1470690450092
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit

<html><head></head><body><div>It's a white 6.<br><br><div class="acompli_signature">Get <a href="https://www.microsoft.com/en-us/outlook-com/mobile/?WT.mc_id=outlook_app_signature_1">Outlook for iOS</a></div><br></div><br><br><br>
<div class="gmail_quote">On Mon, Aug 8, 2016 at 12:40 AM -0400, <span dir="ltr">&lt;<a href="mailto:yyyy@yyyyy.us" target="_blank">yyyy@yyyyy.us</a>&gt;</span> wrote:<br>
<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div dir="3D&quot;ltr&quot;">
<span style="font-family:Verdana; color:#000000; font-size:10pt;"><div>&nbsp; &nbsp;Your screen parts shipped and ETA is Wednesday delivery.</div><div>&nbsp; &nbsp;For your friends iPhone6 I've searched and found iPhone 6 — not 6plus — screen repair kits for under $30, so depending on their model it may be reasonably priced to get the parts.</div></span>

</div>

</blockquote>
</div>
</body></html>
------=_Part_13617_1251458795.1470690450092--

Slashdot Top Deals

Executive ability is deciding quickly and getting somebody else to do the work. -- John G. Pollard

Working...