Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 17 submissions in the queue.

Log In

Log In

Create Account  |  Retrieve Password

Gift a Subscription
Why Gift

Site News

Join our Folding@Home team:
Main F@H site
Our team page

Funding Goal
For 6-month period:
2022-07-01 to 2022-12-31
 (All amounts are estimated)
Base Goal:
$3500.00
Currently:
$438.92
12.5%

Covers transactions:
2022-07-02 10:17:28 ..
2022-10-05 12:33:58 UTC
(SPIDs: [1838..1866])
Last Update:
2022-10-05 14:04:11 UTC --fnord666

Support us: Subscribe Here
and buy SoylentNews Swag

We always have a place for talented people, visit the Get Involved section on the wiki to see how you can make SoylentNews better.

Do you put ketchup on the hot dog you are going to consume?

  • Yes, always
  • No, never
  • Only when it would be socially awkward to refuse
  • Not when I'm in Chicago
  • Especially when I'm in Chicago
  • I don't eat hot dogs
  • What is this "hot dog" of which you speak?
  • It's spelled "catsup" you insensitive clod!

[ Results | Polls ]
Comments:83 | Votes:230

Maple Tree "RFC" Patches Sent Out as New Data Structure to Help with Linux Performance

posted by Fnord666 on Saturday December 19 2020, @11:18PM   Printer-friendly
from the branching-out dept.
Code

MrPlow writes:

Submitted via IRC for TheMightyBuzzard

For over the past year there has been work on the new "Maple Tree" data structure led by Oracle for the Linux kernel and this week marked the patches being sent out in "request for comments" (RFC) form with the aim still on helping the kernel performance.

Maple Tree amounts to a data structure that works well on modern CPUs and in an RCU-safe[*]manner for storing index ranges that map to a single pointer. Oracle's Liam Howlett sums up the Maple Tree data structure as "an RCU-safe range based B-tree designed to use modern processor cache efficiently. There are a number of places in the kernel that a non-overlapping range-based tree would be beneficial, especially one with a simple interface. The first user that is covered in this patch set is the vm_area_struct rbtree in the mm_struct with the long term goal of reducing the contention of the mmap_sem. The tree has a branching factor of 10 for non-leaf nodes and 16 for leaf nodes. With the increased branching factor, it is significantly short[er] than the rbtree so it has fewer cache misses."

This code is still a work-in-progress with some known regressions and not yet supporting 32-bit or MMU-less kernel builds. But even as it stands now there are scaling benchmarks where the Maple Tree usage can help by 1~17% or in the malloc1-threads micro-benchmark where it can help the performance by 29~71%.

Source: https://www.phoronix.com/scan.php?page=news_item&px=Maple-Tree-Linux-RFC

[*] RCU: Read-Copy-Update.

Original Submission

Water Futures Set to Join Likes of Gold and Oil and Trade on Wall Street for First Time Ever

posted by Fnord666 on Saturday December 19 2020, @06:33PM   Printer-friendly
from the so-it-has-come-to-this dept.
Business

upstart writes in with an IRC submission for c0lo:

Water futures set to join likes of gold and oil and trade on Wall Street for first time ever:

The CME Group is set to launch futures contracts tied to the spot price of water for the first time ever this week.

The contracts will allow investors and farmers alike to bet on the future price of water. The contracts are tied to the $1.1 billion California spot water market.

While water will officially join the likes of gold, oil, and other commodities in being traded on Wall Street, the contracts will be financially settled. This means buyers of the contracts who hold on through expiration won't be greeted by a delivery of millions of gallons of water like they would for other commodity based futures like oil and grain.

The water contracts are tied to the Nasdaq Veles California Water Index which was launched two years ago. The index is driven by the volume-weighted average of the transaction prices in California's five largest and most actively traded water markets.

[...] "With nearly two-thirds of the world's population expected to face water shortages by 2025, water scarcity presents a growing risk for businesses and communities around the world, and particularly for the $1.1 billion California water market," said Tim McCourt, CME Group Global Head of Equity Index and Alternative Investment Products.

Original Submission

Tech Hidden in Plain Sight: the Ballpoint Pen

posted by Fnord666 on Saturday December 19 2020, @01:48PM   Printer-friendly
from the roll-on-deodorant dept.
Hardware

upstart writes in with an IRC submission:

Tech Hidden In Plain Sight: The Ballpoint Pen:

On a crisp fall morning in late October 1945, approximately 5,000 shoppers rushed the 32nd street Gimbel's department store in New York City like it was Black Friday at Walmart. Things got so out of hand that fifty additional NYPD officers were dispatched to the scene. Everyone was clamoring for the hottest new technology – the ballpoint pen.

This new pen cost $12.50, which is about $180 today. For many people, the improved experience that the ballpoint promised over the fountain pen was well worth the price. You might laugh, but if you've ever used a fountain pen, you can understand the need for something more rugged and portable.

Ballpoint pens are everywhere these days, especially cheap ones. They're so ubiquitous that we don't have to carry one around or really think about them at all. Unless you're into pens, you've probably never marveled at the sheer abundance of long-lasting, affordable, permanent writing instruments that are around today. Before the ballpoint, pens were a messy nuisance.

Original Submission

An AI Co-Pilot Called ‘ARTUµ’ Just Took Command of a U-2’s Sensor Systems on a Recon Mission

posted by Fnord666 on Saturday December 19 2020, @09:03AM   Printer-friendly
from the here-comes-Skynet dept.
/dev/random

upstart writes in with an IRC submission for c0lo:

An AI Co-Pilot Called 'ARTUµ' Just Took Command of A U-2's Sensor Systems On A Recon Mission:

During a test flight from Beale Air Force Base, California on Monday, an artificial intelligence agent named ARTUµ assumed control and direction of a radar on a U.S. Air Force U-2S Dragon Lady spy plane and assumed responsibility for tactical navigation while a USAF pilot flew the aircraft and coordinated with the AI agent.

According to the Air Force, the test sortie was a reconnaissance mission during a simulated missile strike. ARTUµ was tasked with finding enemy launchers (surface to air missiles) while the U-2 pilot scanned for adversary aircraft, sharing the U-2's radar with the AI co-pilot.

The Air Force characterized the test flight as a "major leap forward for national defense in the digital age" referring to ARTUµ as a "working aircrew member." The service claims that this test is the first time that artificial intelligence has been "safely" put in charge of any U.S. military system.

Live flight experiments by other militaries with indirect AI command-control haven't been acknowledged publicly but have likely taken place. Israel has acknowledged AI-enabled target identification capabilities for weapons like its Spice 250 bombs which can be carried on its F-16s.

Original Submission

Battery Prices Have Fallen 88 Percent Over the Last Decade

posted by martyb on Saturday December 19 2020, @04:18AM   Printer-friendly
from the economy-of-scale dept.
Techonomics

Freeman writes:

Battery prices have fallen 88 percent over the last decade:

The average cost of a lithium-ion battery pack fell to $137 per kWh in 2020, according to a new industry survey from BloombergNEF. That's an inflation-adjusted decline of 13 percent since 2019. The latest figures continue the astonishing progress in battery technology over the last decade, with pack prices declining 88 percent since 2010.

[...] BloombergNEF estimates that battery-pack prices will fall to $100 per kWh by 2024. That's roughly the level necessary for BEVs to be price-competitive with conventional cars without subsidies. Given that electric vehicles are cheap to charge and will likely require less maintenance than a conventional car, they will be an increasingly compelling option over the next decade.

[...] Economists define the "learning rate" as the percentage decrease in price for every doubling of output. BloombergNEF estimates that the learning rate for batteries is about 18 percent: every time global battery output doubles, prices fall by 18 percent.

Battery prices declined 13 percent between 2018 and 2019 and another 13 percent by 2020. These are certainly significant improvements, but the rate of progress seems to be slowing. Battery prices declined at an average annual rate of 19 percent between 2010 and 2018.

BloombergNEF attributes the slowing pace of progress to slowing growth of volume in the battery industry. In absolute terms, battery shipments are growing faster than ever. But now that the industry is much bigger—BloombergNEF estimates it grew by a factor of 264 between 2010 and 2020—it will be difficult for the industry to match earlier growth rates in percentage terms. And that's likely to translate to a slower—but still significant—percentage decline in battery prices.

Sadly, this has not translated to cheaper AA batteries, rechargeable batteries or otherwise.

Original Submission

China Recovers Chang’e-5 Moon Samples after Complex 23-Day Mission

posted by martyb on Friday December 18 2020, @11:33PM   Printer-friendly
from the rock-on! dept.
Science

coolgopher writes:

China recovers Chang'e-5 moon samples after complex 23-day mission:

China has recovered precious lunar samples after a successful reentry and landing of the Chang'e-5 return capsule.

The roughly 300-kilogram Chang'e-5 return capsule performed a ballistic skip reentry at 12:33 p.m. Eastern Dec. 16, effectively bouncing off the atmosphere over the Arabian Sea before reentry.

The capsule containing around 2 kilograms of drilled and scooped lunar material landed in the grasslands of Siziwang Banner at 12:59 p.m. Recovery vehicles located the capsule shortly after.

Original Submission

States Next Week's Vaccine Allocation Cut, But Millions of Pfizer's Await Delivery Instructions

posted by martyb on Friday December 18 2020, @08:44PM   Printer-friendly
from the operation-warp-the-speed dept.
/dev/random

c0lo writes:

States say federal government cutting COVID-19 vaccine allocations"

Officials in several states have said the federal government told them to expect fewer doses of Pfizer's COVID-19 vaccine next week than originally anticipated.

[...] Washington Gov. Jay Inslee (D) tweeted Thursday that the Centers for Disease Control and Prevention "has informed us that WA's vaccine allocation will be cut by 40 percent next week — and that all states are seeing similar cuts."

[...] Illinois Gov. J.B. Pritzker (D) said Wednesday that per "the direction of Operation Warp Speed's General Perna, that estimate was tightened significantly down to 4.3 million doses shipped nationally next week. The following week, originally projected for another 8.8 million, is also now also scheduled to be 4.3 million," NBC 5Chicago reported.

[...] A spokesperson for Michigan's Department of Health and Human Services told Axios that the state is expected to received fewer doses next week than it originally anticipated. "We were not provided an explanation," Lynn Sutfin said in an emailed statement.

[...] [and the list goes on]

Meanwhile Pfizer Says It Has Millions Of Vaccine Doses 'Sitting In Our Warehouse'—But Hasn't Been Told Where To Send Them

In a press release issued Thursday, Pfizer said that the company has millions of doses of its Covid-19 vaccines sitting in warehouses that have not been delivered because the company has not received shipping instructions from the federal government.

Somebody may have taken some stock market bets on Moderna, ummm?

Original Submission

Meta: Answers, Operations, and Finances

posted by martyb on Friday December 18 2020, @06:00PM   Printer-friendly
/dev/random

The year is winding to a close so I thought it would be a good opportunity to catch up on a few things:

  1. Milestones
  2. Community questions answered
  3. Background on site operations
  4. Story Cadence
  5. Site finances

For details, read on below the fold.

Milestones

First off, I'd like to acknowledge an amazing milestone: Fnord666 has now edited and pushed out over 6,000 stories Thanks, Fnord666!

Another milestone of note: our Folding@Home team just reached 2.3 Billion points. Here's a different view of the stats. Out of all the teams in the world, we are in 348th place! And our very own Runaway1956 is currently at 2,077th place in the world with over 630 million points! Go Team!

We had a couple story submissions by Anonymous Cowards that raised some concerns about SoylentNews. I see some misunderstandings here, and wanted to address them publicly.

Story Submissions Queue

The first one concerns the story submissions queue:

upstart hogs the subs queue. Perhaps there should be a way to filter out the subs queue by name so that I can either omit or include specific names and scan through stuff that's not by upstart. Especially since this seems to be 'generated bot-o-matically!', maybe I want to see articles by non-bots without being overly cluttered with bot generated submissions.

Interesting suggestion. Editors also see the — complete — list of story submissions: Nexus, Date/Time Stamp, Title, and Nickname. We, too, have no mechanism for filtering based on nickname. (There are, of course, some additional controls provided us for processing story submissions.)

From the Create Account page:

(Note: only the characters a-zA-Z0-9$_.+!*'(),-, plus space, are allowed in nicknames, and all others will be stripped out.)

It seems far from trivial to design a clear interface for enumerating nicknames to include or exclude. Said UI would need to be designed, implemented, and tested. It is an interesting idea and will be considered when we have freed up some time for development in the future.

It should also be noted that perhaps the massive number of submissions by upstart shouldn't reduce the number of listed submissions at any given time by others because upstart 'bumped' them off the queue list. If the queue list has a max queue count (and not a max number of days before being bumped off) then upstart probably shouldn't contribute to that max count and it should have its own separate max count allowing for the submissions of others to persist on the subs queue even if those submissions have been there before some of upstart's prior posts.

See above, no stories are omitted from the subs queue. If it's in the queue, we see them!

Here, I'm speaking only for myself (but I invite other editors to chime in if they do things otherwise). The first thing I do is scan the entire subs queue. I look specifically for non-bot submissions and also to get a feel for the current zeitgeist. Only then do I select a story to open for consideration. If someone made the effort to submit a story, I believe it is incumbent on me to respect that effort and give it a priority. Having reviewed the entire queue, I've also noticed if the same story has been submitted by someone else (human or bot). A bot sub is often the source for the "See also" links you see in a story.)

Oh! Bot subs still require a person to submit them. But, instead of using the Submit Story link from the "Navigation" Slashbox, they've provided a link in IRC to one of the bots that are resident there. In all cases, an actual person had to manually initiate the submission.

Soylentnews, Timestamps, and Timezones

Next up is a question about time on this site.

Soylentnews posts the timestamps of articles and comments but it doesn't post the time zone. So when I submit a comment or read an article it says 5:34 PM for example but that doesn't really mean much to me if the time zone isn't mentioned.

I suggest the time zone should be next to the comment or article. 5:34 PM PT or 5:34PM UTC or whatever. That way I (anyone) can conveniently stick that into google and have it translate what that means in my time zone without having to think/jump through hoops to figure it out.

This one is easier to address. If you have created an account, you can select what time zone you want used as the basis for the time presented throughout the UI. In no case does SoylentNews explicitly state a time zone; it is implied. So, if you are accessing the site without having logged in (i.e. an "Anonymous Coward", aka "AC") it defaults to UTC (Coordinated Universal Time). NB: Occasionally that is (incorrectly) referred to as GMT (Greenwich Mean Time). Read the link for details.

tl;dr: The time zone is always implied and never made explicit in the site UI. Either it is UTC (the default), or what you set it to in your account preferences.

What do you guys DO, anyway?

I invited TMB (The Mighty Buzzard) to write in with some info on what the site sysadmins do here. In his own words:

So, martyb wants me to let yall know that us admins actually occasionally do stuff around these parts. The thing is, if you do your job well as an admin, you end up not having to do a whole lot of day-to-day stuff. So I'll just tell you about what I've done this past week since it's not a blank page or "everything's working fine". Gentoo system updates and firewalling off the IP addresses of automated hack attempts on our email server.

Firewalling first. Been seeing a lot of identical SMTP attempts from some script-kiddie noobs. Audioguy was forward-thinking enough to write us a just-add-address blocking script so it's just a matter of grepping the logs, doing a little awk to snag the addresses, piping through uniq, and running `lockout 1.2.3.4` or `lockout 1.2.3.0/24` or what have you. Yeah, we could do the same without even having to pay attention via snort but I can't currently be arsed to set snort up and I kind of like paying attention.

Gentoo system updates are pretty routine if you don't get lazy and let six months of them build up. We use a chroot environment on our dev box as a build box for all the Gentoo boxes so we don't have to have the CPUs pegged for extended periods on production boxes or have to install every package on the real root of the dev box. Which means we set it as BINHOST, compile world+dog just once in the chroot environment, and let all the Gentoo servers pull the binary packages they need from it over rsync.

Well, that's all you generally have to do right up until you get one of those fun days when they decide to deprecate the profile you're using and force you to update profiles if you want stuff to keep building correctly. That's what I've been monkeying with the past couple days. On and off, mind you. It doesn't take days to do if you're have time and are willing to sit in front of a terminal emulator the whole time. This time around that means you get this message and have to back up each server and do an annoying extra rain dance:

!!! Your current profile is deprecated and not supported anymore.
!!! Use eselect profile to update your profile.
!!! Please upgrade to the following profile if possible:

default/linux/amd64/17.1

...

The amd64 17.1 profiles switch to a more standard 'no SYMLINK_LIB' multilib layout, and require an explicit migration. The migration is performed using the app-portage/unsymlink-lib tool.

Basically that means you get to cross your fingers, run their tool, recompile gcc and any 32bit libs you have on your system, switch profiles, reboot, and test everything you want running correctly to make sure it still does. So far we've lucked out and had no issues but I still have the least likely to go smoothly box to go. Luckily it's also the one slated to replace our IRC/mail/etc... box and not yet any form of critical since it's not set up to do those jobs singlehandedly yet.

Anyway, that's today's peek into the exciting and glamorous world of an admin. We now return you to your regularly scheduled arguments.

Thanks, buzz, for the info and for all the work you do behind the scenes to keep things running! Also, a shoutout to Deucalion, mechanicj, and audioguy for all you do to keep us going!

Story Cadence

It has been a pleasure working with our editing team. They toil many hours 24/7 to keep the stories coming. One of our staff has experienced reduced availability taking care of a loved one who is ill. And, well he should! With the reduced staffing, it is increasingly obvious that something has to give. I have invited a member of the community to join our ranks as an editor, but this will take some time. In the interim, we have moved to a reduced story cadence. Story spacing going forward is approximately 4 3/4 hours on weekends and 2 1/2 hours on weekdays (UTC). Please join me in thanking Fnord666, chromas, and takyon for their continued selfless service to the community! Teamwork++!

Finances

This is not a topic I like to discuss, but it needs to be done, so here goes.

At last check, we had raised $1,317.17 towards a goal of $3,500.00 for this half of the year (July 1 through December 31). So, that puts us at 36.6% of our goal.

We realize times are tough for all of us. If your finances are tight right now, please take care of yourself and your loved ones, first. But, if you find we provide a useful service, we'd very much appreciate any help you can provide. Go to our Subscription page and whatever amount you can offer will be most appreciated! We had a successful drive in the first half of the year which helped make up for a running deficit, but we're still down from the initial amounts put in to get the site off the ground and incorporated. Every bit helps. FYI: we do not see your account information. You choose PayPal or Stripe as the payment processor and then you are provided a form on their service. They handle all the processing and deposit the net amount in our PayPal or Stripe account for us to then deposit in our bank account.

Please accept my deepest thanks for anything you can contribute. NB: The amounts indicated are the minimum for the stated duration. For example, $20.00 for a one year subscription. You can increase that suggested amount to whatever value you'd like. Gift subscriptions are also welcome!

The largest portion of the funds go towards the cost of our servers. Next up are required fees, taxes, and the cost of a CPA to do our taxes.

It bears mentioning that nobody at SoylentNews has ever been paid anything for their work on the site. Everyone on staff are volunteers and freely give of their free time and energy to keep things running. It's also important to note that we have never run advertisements of any kind, nor has any user information ever been sold.

There are some downsides to this. Should the site go down for any reason, we do not have things staffed 24/7/365 constantly monitoring all services and poised to leap at a moment's notice should anything go toes up. We did have a couple periods of downtime this half. First, when our redundant servers got out of sync and brought things to a halt. Which is good, because when things started coming back up, the older copy of the database was trying to claim it should be the primary. Thanks, TMB, for sorting things out so we suffered no loss of data! A few days later, our site certificate expired and had the site unavailable for a few hours. It's a Catch-22 situation. How can you use expired certs to get access to a site so you can install new certs? I've done cert updates a couple times on SoylentNews, but this had me baffled. Thanks TMB for sorting things out!

Original Submission #1Original Submission #2

Code isn't a Language?

posted by martyb on Friday December 18 2020, @01:51PM   Printer-friendly
from the metalanguage dept.
Code

hendrikboom writes:

It seems that the language processing areas of the brain aren't much involved in reading computer code:

There are two schools of thought regarding how the brain learns to code, [Anna Ivanova, an MIT graduate student and the lead author of the study] says. One holds that in order to be good at programming, you must be good at math. The other suggests that because of the parallels between coding and language, language skills might be more relevant. To shed light on this issue, the researchers set out to study whether brain activity patterns while reading computer code would overlap with language-related brain activity.

The two programming languages that the researchers focused on in this study are known for their readability — Python and ScratchJr, a visual programming language designed for children age 5 and older. The subjects in the study were all young adults proficient in the language they were being tested on. While the programmers lay in a functional magnetic resonance (fMRI) scanner, the researchers showed them snippets of code and asked them to predict what action the code would produce.

The researchers saw little to no response to code in the language regions of the brain. Instead, they found that the coding task mainly activated the so-called multiple demand network. This network, whose activity is spread throughout the frontal and parietal lobes of the brain, is typically recruited for tasks that require holding many pieces of information in mind at once, and is responsible for our ability to perform a wide variety of mental tasks.

[...] Previous studies have shown that math and logic problems seem to rely mainly on the multiple demand regions in the left hemisphere, while tasks that involve spatial navigation activate the right hemisphere more than the left. The MIT team found that reading computer code appears to activate both the left and right sides of the multiple demand network, and ScratchJr activated the right side slightly more than the left. This finding goes against the hypothesis that math and coding rely on the same brain mechanisms.

Maybe learning C shouldn't be accepted for a foreign-language requirement in university.

-- hendrik

Journal Reference:
Anna A Ivanova, Shashank Srikant, Yotaro Sueoka, et al. Comprehension of computer code relies primarily on domain-general executive brain regions, (DOI: 10.7554/eLife.58906)

Original Submission

Google Staff Demand Exec Step Aside after Ethicist's Firing

posted by Fnord666 on Friday December 18 2020, @11:27AM   Printer-friendly
/dev/random

c0lo writes:

Google staff demand exec step aside after ethicist's firing:

Staff on Google's Ethical AI research team on Wednesday demanded the company sideline a vice president and commit to greater academic freedom, escalating a confrontation with management following this month's termination of scientist Timnit Gebru.

The personnel called on Vice President Megan Kacholia to be removed from the team's management chain after she allegedly excluded Gebru's boss from the decision to fire her, according to an internal document seen by Reuters.

[...] The document also demanded an explanation of the dismissal, transparency into reviews of staff papers, and an investigation into how Google handles employee complaints about working conditions, like those Gebru raised while at the company.

Separately, U.S. Representative Yvette Clarke, Senator Elizabeth Warren and seven other members of Congress wrote a public letter on Wednesday to Google-parent Alphabet Inc Chief Executive Sundar Pichai asking about plans to review Gebru's firing and policies for publishing research.

[...] It was unclear how many people authored the demands, which followed a prior petition for academic freedom that garnered signatures from more than 2,600 people at the company.

In other new Google hires new personnel head amid rising worker tensions:

Google has hired a top executive from pharmaceutical company AstraZeneca to oversee its personnel policies amid ongoing tensions with many employees who are upset with the company's policies.

The hiring of Fiona Cicconi also comes while Google sets up plans to allow people to continue to work from home for at least eight more months.

The Mountain View, California, internet search giant announced late Tuesday that Cicconi is leaving AstraZeneca to become its head of people operations during a meeting with employees.

[...] Google has decided to allow its roughly 130,000 employees to continue to work from home until Sept. 1 if they want, extending a previous plan to allow people to stay away from the office until July.

Cicconi will face the challenge of making sure those workers have their needs met while remaining productive, and then oversee the eventual transition to their return to Google offices scattered throughout the world, in addition to its Silicon Valley hub.

The company currently envisions relying on a system that designates certain days that workers on the same teams will come into the office while remaining at home or other remote locations on other days.

Original Submission

The Year-Round Joys and Benefits of Open Source Software

posted by Fnord666 on Friday December 18 2020, @09:03AM   Printer-friendly
Digital Liberty

fliptop writes:

Over at ACM.org Yegor Bugayenko reviews how companies benefit from open source:

'Tis the season to be jolly, and many people around the world are getting those warm, fuzzy holiday feels. One of the things that makes us programmers feel warm and fuzzy is open source software. With open source, you can easily see the code and documentation, and better yet, you can use it too. A lot of companies support open source as well, providing funding, labor power, and code for free.

Why give something away for free? A lot of individuals contribute open source code out of a genuine sense of altruism. Yet when it comes to companies, it's often a strategic choice, and one they expect to benefit from.

[...] Why go through all the trouble? Let's take a look at the tangible benefits of supporting open source, especially from the perspective of tech giants like Google. Let's start by looking at how companies support open source.

The author goes on to list benefits for companies that support open source, citing Google, Microsoft, IBM and Adobe as examples. He also mentions how Red Hat benefited from its acquisition by IBM. He concludes:

So what's the take away for all of this? Open source is a great resource for the community, sure, but it's also a valuable resource for companies. Open source provides sales, influence, branding, retaining and training opportunities, among others, for companies. And for individual programmers, open source projects offer a way to build skills, increase knowledge, and make connections.

Previously:
CentOS Linux 8 Will End in 2021
Open Source's Eric Raymond: Windows 10 Will Soon be Just an Emulation Layer on Linux Kernel
Microsoft Releases Open-Source Process Monitor for Linux
Google Takes Down Repositories that Circumvent its Widevine DRM

Original Submission

What We Know About Russia's Latest Alleged Hack of the U.S. Government

posted by Fnord666 on Friday December 18 2020, @06:39AM   Printer-friendly
Security

DeathMonkey writes:

Russian government hackers are believed to be responsible for infiltrating computer systems at multiple U.S. agencies in recent months, including the Pentagon, the Department of Homeland Security and the Department of the Treasury, according to government agencies and media reports. Russia has denied the accusations.

The hack hinged on a vulnerability on a software monitoring product from SolarWinds, a company based in Austin, Texas. The company works widely with the federal government and hundreds of large U.S. companies. Many use SolarWinds' Orion software to monitor their computer networks.

SolarWinds has some 300,000 customers but says "fewer than 18,000" installed the version of its Orion products earlier this year that now appears to have been compromised.

So far, the list of affected U.S. government entities includes the Commerce Department, Department of Homeland Security, the Pentagon, the Treasury Department, the U.S. Postal Service and the National Institutes of Health.

The incident is the latest in what has become a long list of suspected Russian electronic incursions into other nations – particularly the U.S. – under President Vladimir Putin. Multiple countries say Russia was previously found to have used hackers, bots and other means in attempts to influence elections in the U.S. and elsewhere.

Also at Krebs on Security, BBC, Mashable, and cnet.

What We Know About Russia's Latest Alleged Hack Of The U.S. Government

Original Submission

Solar-Based Electronic Skin Generates its Own Power

posted by Fnord666 on Friday December 18 2020, @04:15AM   Printer-friendly
Science

fliptop writes:

Scientists demonstrate an innovative e-skin with touch and proximity-sensing capabilities without using dedicated touch sensors:

Replicating the human sense of touch is complicated—electronic skins need to be flexible, stretchable, and sensitive to temperature, pressure and texture; they need to be able to read biological data and provide electronic readouts. Therefore, how to power electronic skin for continuous, real-time use is a big challenge.

To address this, researchers from Glasgow University have developed an energy-generating e-skin made out of miniaturized solar cells, without dedicated touch sensors. The solar cells not only generate their own power—and some surplus—but also provide tactile capabilities for touch and proximity sensing. An early-view paper of their findings was published in IEEE Transactions on Robotics.

When exposed to a light source, the solar cells on the s-skin generate energy. If a cell is shadowed by an approaching object, the intensity of the light, and therefore the energy generated, reduces, dropping to zero when the cell makes contact with the object, confirming touch. In proximity mode, the light intensity tells you how far the object is with respect to the cell. "In real time, you can then compare the light intensity...and after calibration find out the distances," says Ravinder Dahiya of the Bendable Electronics and Sensing Technologies (BEST) Group, James Watt School of Engineering, University of Glasgow, where the study was carried out. The team used infra-red LEDs with the solar cells for proximity sensing for better results.

Originally spotted on The Eponymous Pickle.

Original Submission

Google Reportedly Could be Hit With Second Antitrust Lawsuit This Week

posted by Fnord666 on Friday December 18 2020, @01:51AM   Printer-friendly
Business

upstart writes in with an IRC submission for Runaway1956_:

Google reportedly could be hit with second antitrust lawsuit this week:

A group of states is preparing to file a second antitrust lawsuit against Google this week — setting the tech titan up for a tough court battle, according to new reports.

The coalition of states, led by Colorado and Nebraska, is putting the finishing touches on the antitrust complaint against Google that could be filed as soon as Thursday, Politico reported, citing two people close to the investigation.

The suit is expected to focus on Google's dominance in the online search market, particularly changes it has made to the designs of its signature search engine that put rivals at a disadvantage, according to the outlet.

[...] The states will bring their lawsuit in the same Washington, DC federal court where the feds filed theirs, according to Politico. The state attorneys general hope to eventually consolidate their case with the Justice Department's, Reuters reported.

Also at:
Google Hit With 2nd Lawsuit Testing Its Monopoly Power — This One Over Digital Ads
The latest multistate antitrust lawsuit targets Google's ad business
Ten States Sue Google, Alleging Deal With Facebook to Rig Online Ad Market

Original Submission

Third Party Browser Extensions for Instagram, Facebook, Vimeo and Others Infected with Malware

posted by martyb on Thursday December 17 2020, @11:06PM   Printer-friendly
Code

fliptop writes:

In a press release, security firm Avast has said around 3 million people are affected worldwide:

Threat Intelligence researchers from Avast (LSE:AVST), a global leader in digital security and privacy products, have identified malware hidden in at least 28 third party Google Chrome and Microsoft Edge extensions associated with some of the world's most popular platforms. The malware has the functionality to redirect user's traffic to ads or phishing sites and to steal people's personal data, such as birth dates, email addresses, and active devices. According to the app stores' download numbers, around three million people may be affected worldwide.

The extensions which aid users in downloading videos from these platforms include Video Downloader for Facebook, Vimeo Video Downloader, Instagram Story Downloader, VK Unblock, and other browser extensions on the Google Chrome Browser, and some on Microsoft Edge Browser. The researchers have identified malicious code in the Javascript-based extensions that allows the extensions to download further malware onto a user's PC.

[...] The Avast Threat Intelligence team started monitoring this threat in November 2020, but believe that it could have been active for years without anyone noticing. There are reviews on the Chrome Web Store mentioning link hijacking from as far back as December 2018. Rubín added, "The extensions' backdoors are well-hidden and the extensions only start to exhibit malicious behavior days after installation, which made it hard for any security software to discover."

[...] At this moment, the infected extensions are still available for download. Avast has contacted the Microsoft and Google Chrome teams to report them. Both Microsoft and Google confirmed they are currently looking into the issue. In the meantime, Avast recommends users disable or uninstall the extensions for now until the problem is resolved and then scan for and remove the malware.

Original Submission