Feed aggregator

Canonical Releases Ubuntu 18.04 LTS Kernel Security Update for Raspberry Pi 2

LXer - Sun, 06/17/2018 - 01:20
Canonical released on Friday a new Linux kernel update for its Ubuntu 18.04 LTS (Bionic Beaver) operating system series addressing three security vulnerabilities affecting the kernel for Raspberry Pi 2 devices.

3.5-inch Apollo Lake SBC is loaded with options

LXer - Sat, 06/16/2018 - 22:51
DFI is prepping an Ubuntu friendly 3.5-inch “AL551” SBC with an Apollo Lake SoC, triple display support, up to 2x GbE and SATA III ports, and mini-PCIe, M.2, and optional “expansion I/O” connectors. We discovered the AL551 while reporting on DFI’s Linux-ready, 15.6-inch KS-156AL panel PC...

'The Word Hack is Meaningless and Should Be Retired'

Slashdot - Sat, 06/16/2018 - 22:34
An anonymous reader quotes The Next Web: The word 'hack' used to mean something, and hackers were known for their technical brilliance and creativity. Now, literally anything is a hack -- anything -- to the point where the term is meaningless, and should be retired. The most egregious abuse of the term "hack" comes from the BBC's Dougal Shaw. In a recent video of his, called "My lunch hack," Shaw demonstrates that it's cheaper to make your own sandwich each day than it is to buy a pre-packaged sandwich from the supermarket. Shaw calls that a hack. I call it common sense. And that's not nearly the worst example. I haven't touched on "life hacks" yet. This term is nebulous. It means nothing and anything. It's used to describe arts and crafts... That said, the worst dilution of the term "hack" comes from growth hackers... Anyway, I regret to inform you that the word "hack" is now bad, and should be avoided. A request for alternative words first went up on Slashdot back in 1999 -- but nothing's been settled. Back in 2014 a Gizmodo reporter wrote an impassioned plea titled "Please stop calling everything a hack" -- while others have argued the opposite. in 2015 the editorial director of Make magazine cited hack's definition in The New Hacker's Dictionary as "an appropriate application of ingenuity," arguing that "my and other Make contributors' use of the term for clever shop techniques, ingeniously simple projects, and epic 'kluges' (i.e. Rube Goldberg-level hacks and fixes) is entirely appropriate."

Read more of this story at Slashdot.

Deepin 15.6 Linux OS Launches with Improved HiDPI Support, Light and Dark Themes

LXer - Sat, 06/16/2018 - 20:23
The Deepin Project announced today the release of Deepin 15.6, a new maintenance update of the Debian-based GNU/Linux distribution targeted at x86_64 personal computers and laptops.

America's Nuclear Reactors Can't Survive Without Government Handouts

Slashdot - Sat, 06/16/2018 - 19:34
Slashdot reader Socguy shares an article from FiveThirtyEight: There are 99 nuclear reactors producing electricity in the United States today. Collectively, they're responsible for producing about 20% of the electricity we use each year. But those reactors are, to put it delicately, of a certain age. The average age of a nuclear power plant in this country is 38 years old (compared with 24 years old for a natural gas power plant). Some are shutting down. New ones aren't being built. And the ones still operational can't compete with other sources of power on price... without some type of public assistance, the nuclear industry is likely headed toward oblivion.... [I]t's the cost of upkeep that's prohibitive. Things do fall apart -- especially things exposed to radiation on a daily basis. Maintenance and repair, upgrades and rejuvenation all take a lot of capital investment. And right now, that means spending lots of money on power plants that aren't especially profitable... Combine age and economic misfortune, and you get shuttered power plants. Twelve nuclear reactors have closed in the past 22 years. Another dozen have formally announced plans to close by 2025. A professor of engineering and public policy at Carnegie Mellon University points out that nuclear power is America's single largest source of carbon emissions-free electricity -- though since 1996, only one new plant has opened in America, and at least 10 other new reactor projects have been canceled in the past decade. The article also describes two more Illinois reactors that avoided closure only after the state legislature offered new subsidies. "But as long as natural gas is cheap, the industry can't do without the handouts."

Read more of this story at Slashdot.

Trump-Kim Meeting Was a Magnet For Russian Cyberattacks

LXer - Sat, 06/16/2018 - 18:11
What was new with the Singapore attacks was the targeting of VoIP phones via port SIP 5060 attacks. "This is an indication that the attackers have found a way to exploit VoIP phones that the industry doesn’t know about yet," Boddy speculates. "If that is true, it would also speak to the level of sophistication of the attackers."

After a Decade, 77-Year-Old Gets Back $110,000 Lost In 'Nigerian Prince' Scam

Slashdot - Sat, 06/16/2018 - 17:34
Slashdot reader grep -v '.*' * shares a surprising story. The Kansas City Star profiles the victim of a three-year con that started with an email to a Yahoo inbox back in 2005. A decade ago, Fred Haines was wandering the Wichita airport looking for a Nigerian man hauling two chests full of cash. After an hour of waiting and asking around, he finally came to the realization that the $65 million Nigerian fortune he thought he was inheriting was not coming after all. What is now coming, though, is the $110,000 he had been scammed out of, thanks to the work of the Kansas Attorney General's Office. From 2005 to 2008, swindlers hoodwinked Haines, a self-employed handyman in Wichita, into spending thousands in pursuit of an imaginary inheritance from a Nigerian government official -- a con known as the Nigerian Prince Scam. Haines re-mortgaged his house three times in the process. Last year, in a settlement with the Department of Justice, Western Union admitted it knew some of its employees had conspired with scam artists to bilk people out of money and had failed to fix the problem. The company set aside $586 million to create a fund to refund victims across the U.S. and Canada... All victims who'd sent money to hucksters using the service were able to request refunds, but only those who had complained to law enforcement or Western Union were notified directly of the settlement. "It got to the point where they were showing me that the president of Nigeria had sent me a letter. It had his picture on it and everything," Haines said. "I looked it up on the computer to see what the Nigerian president looked like, and it was him." Once, he received an email claiming to be from Robert Mueller, who was then the FBI director. The email was addressed to Haines, code-name "B-DOG," and it was signed with the FBI's address and official seal. "I wish you can remove doubt and suspicious and go ahead I assured you that you will never regret this fund release," the email said in part. Haines is one of 344 victims who recovered a total of $1,758,988 through the Kansas Attorney General's office -- though when the office sent out 25,000 letters to possible scam victims, many of them were now skeptical of the promise of unclaimed money, and "Some were even angry when employees called to follow up on those who hadn't responded."

Read more of this story at Slashdot.

Prosecution of UK News Photographer Collapses After Recording Disproves Police Testimony

Slashdot - Sat, 06/16/2018 - 16:34
Slashdot reader Andy Smith writes: Slashdot reported last September how I was arrested while standing in a field near a road accident, as I photographed the scene for a newspaper. I was initially given a police warning for "obstruction", but the warning was then cancelled and I was prosecuted for resisting arrest and breach of the peace. These are serious charges and I was facing a prison sentence. Fortunately we had one very strong piece of evidence: A recording of my arrest. Not only did the recording prove that two police officers' testimony was false, but it caught one of them boasting about how he had conspired with a prosecutor to arrest and prosecute me. Yesterday the case was dropped, and now the two police officers and the prosecutor face a criminal investigation.

Read more of this story at Slashdot.

How To: Manage NTFS File System on CentOS 7 / RHEL 7

LXer - Sat, 06/16/2018 - 16:00
Having a problem on managing partition with NTFS File System on RHEL7 / CentOS 7 !! You are in the right place. Here we will go through how to mount partitions with NTFS file systems, format NTFS partitions as well.

America's Former CTO Remembers Historic Coders

Slashdot - Sat, 06/16/2018 - 15:34
Long-time Slashdot reader theodp writes: In her Bard College commencement speech, ex-Google VP and former U.S. CTO Megan Smith revealed to graduates that she gave President Obama a computing history lesson on the same day he learned to code in 2014. "I walked into the Oval Office to do coding with President Obama, and, interestingly, Prince William had just stepped out," Smith explained (YouTube). "They had just had a meeting. I said to President Obama, you know what you and I are about to do is related to Prince William, and he said, how's that. Well, the Prince's wife Kate, her mother and grandmother were codebreakers at Bletchley Park, where they cracked the Nazi Enigma codes...." [Presumably Smith meant to say Kate's great-aunt, not mother — Carole Middleton wasn't born until 1955.] To be fair to the President, Smith once confessed to not knowing much about computing history herself, explaining in a 2012 Official Google Blog post that she and other visiting tech luminaries were embarrassingly clueless about who Ada Lovelace was in a 2011 visit to England. "Last year, a group of us were lucky enough to visit the U.K. Prime Minister's residence at 10 Downing Street, as part of the Silicon Valley Comes to the U.K. initiative," Smith wrote. "While there, we asked about some of the paintings on the wall. When we got to a large portrait of a regally dressed woman, our host said 'and of course, that's Lady Lovelace'... You can imagine our surprise when we learned she was considered by some to be the world's first computer programmer -- having published the first algorithm intended for use on Charles Babbage's Analytical Engine." One imagines Smith might also have been surprised to learn that many programmers older than Smith were already very aware of Lady Ada at that time thanks to the Department of Defense, who tried in vain to make Ada a household name for decades, but had little success popularizing the Ada programming language, which was named after Augusta Ada King, Countess of Lovelace.

Read more of this story at Slashdot.

'Open Source Security' Loses in Court, Must Pay $259,900 To Bruce Perens

Slashdot - Sat, 06/16/2018 - 14:34
Bruce Perens co-founded the Open Source Initiative with Eric Raymond -- and he's also Slashdot reader #3872. Now he's just won a legal victory in court. "Open Source Security, maker of the grsecurity Linux kernel patches, has been directed to pay Bruce Perens and his legal team almost $260,000 following a failed defamation claim," reports The Register. Slashdot reader Right to Opine writes: The order requires Spengler and his company to pay $259,900.50, with the bill due immediately rather than allowing a wait for the appeal of the case. The Electronic Frontier Foundation's attorneys will represent Perens during OSS/Spengler's appeal of the case. Perens was sued for comments on his blog and here on Slashdot that suggested that OSS's Grsecurity product could be in violation of the GPL license on the Linux kernel. The court had previously ruled that Perens' statements were not defamatory, because they were statements by a non-attorney regarding an undecided issue in law. It is possible that Spengler is personally liable for any damages his small company can't pay, since he joined the case as an individual in order to preserve a claim of false light (which could not be brought by his company), removing his own corporate protection.

Read more of this story at Slashdot.

How to Automatically Deploy Laravel Applications with Deployer on Ubuntu 16.04

LXer - Sat, 06/16/2018 - 14:05
Laravel is a popular, open-source PHP web application framework. It has an expressive, elegant syntax and provides tools needed for large, robust applications. Deployer is a modular open-source PHP deployment tool packed with time-saving features and optimizations. It supports deployment of many popular frameworks, including Laravel, Symfony, Zend Framework and CodeIgniter. In this tutorial, we will show you how to deploy a Laravel application with Deployer on Ubuntu 16.04.

Why OpenStreetMap Should Be a Priority for the Open Source Community

Slashdot - Sat, 06/16/2018 - 13:34
"Despite its low profile, OpenStreetMap is arguably one of the most important projects for the future of free software," argues Glyn Moody, author of Rebel Code: Linux And The Open Source Revolution, in a new Linux Journal article shared by long-time Slashdot reader carlie: The rise of mobile phones as the primary computing device for billions of people, especially in developing economies, lends a new importance to location and movement. Many internet services now offer additional features based on where users are, where they are going and their relative position to other members of social networks. Self-driving cars and drones are two rapidly evolving hardware areas where accurate geographical information is crucial. All of those things depend upon a map in critical ways, and they require large, detailed datasets. OpenStreetMap is the only truly global open alternative to better-known, and much better-funded geodata holdings, such as Google Maps. The current dominance of the latter is a serious problem for free software -- and freedom itself. The data that lies behind Google Maps is proprietary. Thus, any open-source program that uses Google Maps or other commercial mapping services is effectively including proprietary elements in its code. For purists, that is unacceptable in itself. But even for those with a more pragmatic viewpoint, it means that open source is dependent on a company for data that can be restricted or withdrawn at any moment.... Although undoubtedly difficult, creating high-quality map-based services is a challenge that must be tackled by the Open Source community if it wants to remain relevant in a world dominated by mobile computing. The bad news is that at the moment, millions of people are happily sending crucial geodata to proprietary services like Waze, as well as providing free bug-fixes for Google Maps. Far better if they could be working with equal enthusiasm and enjoyment on open projects, since the resulting datasets would be freely available to all, not turned into corporate property. The good news is that OpenStreetMap provides exactly the right foundation for creating those open map-based services, which is why supporting it must become a priority for the Open Source world.

Read more of this story at Slashdot.

Eric Raymond Shares 'Code Archaeology' Tips, Urges Bug-Hunts in Ancient Code

Slashdot - Sat, 06/16/2018 - 12:34
Open source guru Eric Raymond warned about the possibility of security bugs in critical code which can now date back more than two decades -- in a talk titled "Rescuing Ancient Code" at last week's SouthEast Linux Fest in North Carolina. In a new interview with ITPro Today, Raymond offered this advice on the increasingly important art of "code archaeology". "Apply code validators as much as you can," he said. "Static analysis, dynamic analysis, if you're working in Python use Pylons, because every bug you find with those tools is a bug that you're not going to have to bleed through your own eyeballs to find... It's a good thing when you have a legacy code base to occasionally unleash somebody on it with a decent sense of architecture and say, 'Here's some money and some time; refactor it until it's clean.' Looks like a waste of money until you run into major systemic problems later because the code base got too crufty. You want to head that off...." "Documentation is important," he added, "applying all the validators you can is important, paying attention to architecture, paying attention to what's clean is important, because dirty code attracts defects. Code that's difficult to read, difficult to understand, that's where the bugs are going to come out of apparent nowhere and mug you." For a final word of advice, Raymond suggested that it might be time to consider moving away from some legacy programming languages as well. "I've been a C programmer for 35 years and have written C++, though I don't like it very much," he said. "One of the things I think is happening right now is the dominance of that pair of languages is coming to an end. It's time to start looking beyond those languages for systems programming. The reason is we've reached a project scale, we've reached a typical volume of code, at which the defect rates from the kind of manual memory management that you have to do in those languages are simply unacceptable anymore... think it's time for working programmers and project managers to start thinking about, how about if we not do this in C and not incur those crazy downstream error rates." Raymond says he prefers Go for his alternative to C, complaining that Rust has a high entry barrier, partly because "the Rust people have not gotten their act together about a standard library."

Read more of this story at Slashdot.

How to Setup Passwordless SSH Login

LXer - Sat, 06/16/2018 - 12:11
In this tutorial we will show you how to setup a SSH key-based authentication and connect to your Linux servers without entering a password.

Killer Robots Will Only Exist If We Are Stupid Enough To Let Them

Slashdot - Sat, 06/16/2018 - 11:34
Heritype quotes the Guardian's science correspondent: The idea of killer robots rising up and destroying humans is a Hollywood fantasy and a distraction from the more pressing dilemmas that intelligent machines present to society, according to one of Britain's most influential computer scientists. Sir Nigel Shadbolt, professor of computer science at the University of Oxford, predicts that AI will bring overwhelming benefits to humanity, revolutionising cancer diagnosis and treatment, and transforming education and the workplace. If problems arise, he said, it will not be because sentient machines have unexpectedly gone rogue in a Terminator-like scenario. "The danger is clearly not that robots will decide to put us away and have a robot revolution," he said. "If there [are] killer robots, it will be because we've been stupid enough to give it the instructions or software for it to do that without having a human in the loop deciding...." However, Prof Shadbolt is optimistic about the social and economic impact of emerging technologies such as machine learning, in which computer programmes learn tasks by looking for patterns in huge datasets. "I don't see it destroying jobs grim reaper style," he said. "People are really inventive at creating new things for humans to do for which will pay them a wage. Leisure, travel, social care, cultural heritage, even reality TV shows. People want people around them and interacting with them."

Read more of this story at Slashdot.

Two Teenaged Gamers Plead 'Not Guilty' For Fatal Kansas Swatting Death

Slashdot - Sat, 06/16/2018 - 10:34
Two more men entered pleas in federal court for their roles in a SWAT call that led to a fatal police shooting in Kansas: not guilty. An anonymous reader quotes Reuters: Shane Gaskill, 19, of Wichita, Kansas, and Casey Viner, 18, from a suburb of Cincinnati, pleaded not guilty on Wednesday and remained free on $10,000 bond, court records showed. Both of the suspects live with their parents, local media reported. In the so-called "swatting" incident, in which someone falsely reports an emergency requiring a police response, Viner got upset at Gaskill over a video game they played online, federal prosecutors said, and Viner contacted a known "swatter"...and asked him to make the false report to police at an address that had been provided by Gaskill. Viner did not know that Gaskill no longer lived at the address, but Gaskill knew, prosecutors said. After media reports of the shooting, Gaskill urged [swatter Tyler] Barriss to delete their communications and Viner wiped his phone, according to the indictment... Barriss and Viner face federal charges of conspiracy and several counts of wire fraud. Viner and Gaskill were charged with obstruction of justice and conspiracy to obstruct justice, and Gaskill was also charged with wire fraud and additional counts of obstruction of justice. In a jailhouse interview in January, Barriss told a local news team that "Whether you hang me from a tree, or you give me 5, 10, 15 years... I don't think it will ever justify what happened... I hope no one ever does it, ever again. I hope it's something that ceases to exist." In April, while still in jail, Barriss gained access to the internet then posted "All right, now who was talking shit? >:) Your ass is about to get swatted."

Read more of this story at Slashdot.

LTE-equipped automotive gateway runs Ubuntu on Bay Trail

LXer - Sat, 06/16/2018 - 10:17
Kontron’s rugged “EvoTrac G102” is an in-vehicle cellular gateway that runs Ubuntu on a quad-core Atom E3845, and offers 64GB eMMC, GbE, CAN, 2x USB, and a 3G/4G module with GPS. Kontron unveiled the EvoTrac G102 last month, and earlier this month announced that it will act as the control box for Hyliion’s 6X4HE “intelligent electric hybrid system for Class 8 trucks and trailers.”

Microsoft Program Manager Mistakenly Tweets Office 365 Will Be Rewritten in JavaScript

Slashdot - Sat, 06/16/2018 - 09:34
"A Microsoft employee claimed publicly that 'all of Office 365' was being 'completely rewritten' in JavaScript," writes Paul Thurrott, adding "And then all hell broke loose." First things first. It's not true. So if you were freaking out that Microsoft was somehow abandoning C# and C++ for its most mission-critical offerings, freak out no more. It's not happening. So what is happening? A Microsoft program manager named Sean Larkin perhaps got a little overly-exuberant on Monday... he tried to clarify things in follow-up tweets when his original missive exploded intro controversy. Which shouldn't have been a surprise. And yet, somehow, it was... [H]e finally corrected himself on Reddit, blaming Twitter's character limitations for his many factual errors. "We are not abandoning C++, C#, or any of the other awesome languages, APIs, and toolings that we use across Microsoft," he clarifies. "Nothing [in Office 365] is converting to 'all/completely' JavaScript/TypeScript." Thurrott, a long-time Windows blogger, concludes that "getting something this big this wrong is inexcusable."

Read more of this story at Slashdot.

Firefox's Pocket Tries to Build a Facebook-Style Newsfeed That Respects Your Privacy

Slashdot - Sat, 06/16/2018 - 08:34
An anonymous reader quotes Ars Technica: Pocket, which lets you save articles and videos you find around the web to consume later, now has a home inside Firefox as the engine powering recommendations to 50 million people a month. By analyzing the articles and videos people save into Pocket, [Pocket founder and CEO Nate] Weiner believes the company can show people the best of the web -- in a personalized way -- without building an all-knowing, Facebook-style profile of the user. "We're testing this really cool personalization system within Firefox where it uses your browser history to target personalized [recommendations], but none of that data actually comes back to Pocket or Mozilla," Weiner said. "It all happens on the client, inside the browser itself. There is this notion today... I feel like you saw it in the Zuckerberg hearings. It was like, 'Oh, users. They will give us their data in return for a better experience.' That's the premise, right? And yes, you could do that. But we don't feel like that is the required premise. There are ways to build these things where you don't have to trade your life profile in order to actually get a good experience." Pocket can analyze which articles and videos from around the web are being shared as well as which ones are being read and watched. Over time, that gives the company a good understanding of which links lead to high-quality content that users of either Pocket or Firefox might enjoy. I use Firefox, but I don't use Pocket. Are there any Slashdot readers who want to share their experiences with read-it-later services, or thoughts about what Firefox is attempting?

Read more of this story at Slashdot.

Syndicate content