By msmash from Slashdot's how-about-that department
An anonymous reader writes: Stuxnet is the most sophisticated piece of software ever written, given the difficulty of the objective: Deny Iran's efforts to obtain weapons grade uranium without need for diplomacy or use of force, John Byrd, CEO of Gigantic Software (formerly Director of Sega and SPM at EA), argues in a blog post, which is being widely shared in developer circles, with most agreeing with Byrd's conclusion. He writes, "It's a computer worm. The worm was written, probably, between 2005 and 2010. Because the worm is so complex and sophisticated, I can only give the most superficial outline of what it does. This worm exists first on a USB drive. Someone could just find that USB drive laying around, or get it in the mail, and wonder what was on it. When that USB drive is inserted into a Windows PC, without the user knowing it, that worm will quietly run itself, and copy itself to that PC. It has at least three ways of trying to get itself to run. If one way doesn't work, it tries another. At least two of these methods to launch itself were completely new then, and both of them used two independent, secret bugs in Windows that no one else knew about, until this worm came along." "Once the worm runs itself on a PC, it tries to get administrator access on that PC. It doesn't mind if there's antivirus software installed -- the worm can sneak around most antivirus software. Then, based on the version of Windows it's running on, the worm will try one of two previously unknown methods of getting that administrator access on that PC. Until this worm was released, no one knew about these secret bugs in Windows either. At this point, the worm is now able to cover its tracks by getting underneath the operating system, so that no antivirus software can detect that it exists. It binds itself secretly to that PC, so that even if you look on the disk for where the worm should be, you will see nothing. This worm hides so well, that the worm ran around the Internet for over a year without any security company in the world recognizing that it even existed." What do Slashdot readers think?Read Replies (0)
By msmash from Slashdot's up-next department
Canonical's Will Cooke on Friday talked about the features the company is working on for Ubuntu 18.10 "Cosmic Cuttlefish" cycle. He writes: We're also adding some new features which we didn't get done in time for the main 18.04 release. Specifically: Unlock with your fingerprint, Thunderbolt settings via GNOME Control Center, and XDG Portals support for snap. GNOME Software improvements We're having a week long sprint in June to map out exactly how we want the software store to work, how we want to present information and to improve the overall UX of GNOME Software. We've invited GNOME developers along to work with Ubuntu's design team and developers to discuss ideas and plan the work. I'll report back from the sprint in June. Snap start-up time Snapcraft have added the ability for us to move some application set up from first run to build time. This will significantly improve desktop application first time start up performance, but there is still more we can do. Chromium as a snap Chromium is becoming very hard to build on older releases of Ubuntu as it uses a number of features of modern C++ compilers. Snaps can help us solve a lot of those problems and so we propose to ship Chromium only as a snap from 18.10 onwards, and also to retire Chromium as a deb in Trusty. If you're still running Trusty you can get the latest Chromium as a snap right now. In addition, Ubuntu team is also working on introducing improvements to power consumption, adding support for DLNA, so that users could share media directly from their desktop to DLNA clients (without having to install and configure extra packages), and improved phone integration by shipping GS Connect as part of the desktop, the GNOME port of KDE Connect. Additional changelog here.Read Replies (0)
By BeauHD from Slashdot's it-was-only-a-matter-of-time department
The U.S. government may begin charging users for access to five decades of satellite images of Earth. Quartz reports: Nature reports that the Department of Interior has asked an advisory board to consider the consequences of charging for the data generated by the Landsat program, which is the largest continuously collected set of Earth images taken in space and has been freely available to the public since 2008. Since 1972, Landsat has used eight different satellites to gather images of the Earth, with a ninth currently slated for a December 2020 launch. The data are widely used by government agencies, and since it became free, by an increasing number of academics, private companies and journalists. "As of March 31, 2018, more than 75 million Landsat scenes have been downloaded from the USGS-managed archive!" the agency noted on the 10th anniversary of the program. Now, the government says the cost of sharing the data has grown as more people access it. Advocates for open data say the public benefit produced through research and business activity far outweigh those costs. A 2013 survey cited by Nature found that the dataset generated $2 billion in economic activity, compared to an $80 million budget for the program.Read Replies (0)
By BeauHD from Slashdot's behind-the-scenes department
Unless you've been living under a rock for the past few days, you've probably heard about the controversy over "Yanny" and "Laurel." The internet has been abuzz over an audio clip in which the name being said depends on the listener. Some hear "Laurel" while others hear "Yanny." Ian Vargo, an audio enthusiast who spends most of his working hours of the day listening to and editing audio, helps explain why we hear the name that we do: Human speech is actually composed of many frequencies, in part because we have a resonant chest cavity which creates lower frequencies, and the throat and mouth which creates higher frequencies. The word "laurel" contains a combination of both which are therefore present in the original recording at vocabulary.com, but the clip that you most likely heard has accentuated higher frequencies due to imperfections in the audio that were created by data compression. To make it worse, the playback device that many people first heard the audio clip playing out of was probably a speaker system built into a cellular phone, which is too small to accurately recreate low frequencies.
This helpful interactive tool from The New York Times allows you to use a slider to more clearly hear one or the other. Pitch shifting the audio clip up seems to accentuate "laurel" whereas shifting it down accentuates "yanny." In summary, this perfect storm of the human voice creating both low and high frequencies, the audio clip having been subject to data compression used to create smaller, more convenient files, and our tendency to listen out of devices with subpar playback components lead to an apparent near-even split of the population hearing "laurel" or "yanny."Read Replies (0)
By BeauHD from Slashdot's queue-the-slow-jazz department
An anonymous reader quotes a report from NPR: The birthrate fell for nearly every group of women of reproductive age in the U.S. in 2017, reflecting a sharp drop that saw the fewest newborns since 1978, according to a new report by the Centers for Disease Control and Prevention. There were 3,853,472 births in the U.S. in 2017 -- "down 2 percent from 2016 and the lowest number in 30 years," the CDC said. The general fertility rate sank to a record low of 60.2 births per 1,000 women between the ages of 15 and 44 -- a 3 percent drop from 2016, the CDC said in its tally of provisional data for the year. The results put the U.S. further away from a viable replacement rate -- the standard for a generation being able to replicate its numbers. "The rate has generally been below replacement since 1971," according to the report from CDC's National Center for Health Statistics. "The decline in the rate from 2016 to 2017 was the largest single-year decline since 2010," the CDC said. The 2017 numbers also represent a 10-year fall from 2007, when the U.S. finally broke its post-World War baby boom record, with more than 4.3 million births.Read Replies (0)
By BeauHD from Slashdot's better-than-nothing department
Ars Technica's Kyle Orland shares his experience with Valve's recently announced Steam Link app, which lets users play games running on a PC via a tablet, mobile phone, or Apple TV on the same network. The app launches today for Android 5.0+ devices; iOS support is "pending further review from Apple." From the report: Valve isn't kidding when it says a Wi-Fi router in the 5Ghz band is required for wireless streaming. I first tested iPad streaming on the low-end 2.4Ghz router provided with my Verizon FiOS subscription (an Actiontec MI424WR), with a wired Ethernet connection to my Windows gaming rig on the other end. The Steam Link network test warned me that "your network may not work well with Steam Link," thanks to 1- to 2-percent frame loss and about 15ms of "network variance," depending on when I tested. Even graphically simple games like The Binding of Isaac ran at an unplayably slowed-down rate on this connection, with frequent dropped inputs to boot.
Switching over to a 5GHz tri-band router (The Netgear Nighthawk X6, to be precise), the same network test reported a "fantastic" connection that "look[s] like it will work well with Steam." On this router, remotely played games ran incredibly smoothly at the iPad's full 1080p resolution, with total round-trip display latency ranging anywhere from 50 to 150ms, according to Steam Link's reports (and one-way "input lag" of less than 1ms). At that level of delay, playing felt practically indistinguishable from playing directly on the computer, with no noticeable gameplay impact even on quick-response titles like Cuphead.Read Replies (0)
By BeauHD from Slashdot's all-inclusive department
A new Xbox controller designed for people with disabilities has been announced by Microsoft today. The Xbox Adaptive Controller features two large programmable buttons and 19 jacks that can be connected to a range of joysticks, buttons, and switches to make it easier for a wider range of people to play games on Xbox One and Windows 10 PCs. The Verge reports: "I can customize how I interface with the Xbox Adaptive Controller to whatever I want," says Solomon Romney, a Microsoft Store learning specialist who was born without fingers on his left hand. "If I want to play a game entirely with my feet, I can. I can make the controls fit my body, my desires, and I can change them anytime I want. You plug in whatever you want and go. It takes virtually no time to set it up and use it. It could not be simpler."
The focus is on connectivity and customizability, with players able to build a setup that works for their capabilities and needs. It won't be an all-in-one solution for many games, but through the use of peripherals and the Xbox's system-level button remapping, the possibilities could be endless. The Xbox Adaptive Controller will cost $99.99 and goes on sale later this year.Read Replies (0)
By BeauHD from Slashdot's still-active department
An anonymous reader quotes a report from The New York Times: The Kilauea volcano erupted from its summit on Thursday morning (Warning: source may be paywalled; alternative source), spewing an ash plume that reached 30,000 feet above the island of Hawaii, the authorities said. The eruption was the most forceful new explosion so far at Kilauea, one of the world's most active volcanoes. Kilauea has already been triggering small earthquakes, creating gas-emitting fissures and releasing flows of lava that have destroyed dozens of homes this month. The Hawaiian Volcano Observatory issued a "code red" warning that additional activity could be expected. "At any time, activity may again become more explosive, increasing the intensity of ash production and producing ballistic projectiles near the vent," the observatory said. But Dr. Michelle Coombs of the United States Geological Survey said that ash fall from the eruption, which occurred shortly after 4 a.m., was "pretty limited" to the area around Hawaii Volcanoes National Park. She emphasized that the new eruption wasn't the "big one" that some are fearing, drawing a contrast with the eruption in 1980 of Mount St. Helens in Washington State that killed 57 people.Read Replies (0)
By BeauHD from Slashdot's location-services department
Earlier this week, ZDNet shed some light on a company called LocationSmart that is buying your real-time location data from four of the largest U.S. carriers in the United States. The story blew up because a former police sheriff snooped on phone location data without a warrant, according to The New York Times. ZDNet is now reporting that the company "had a bug in its website that allowed anyone to see where a person is located -- without obtaining their consent." An anonymous reader shares an excerpt: "Due to a very elementary bug in the website, you can just skip that consent part and go straight to the location," said Robert Xiao, a PhD. student at the Human-Computer Interaction Institute at Carnegie Mellon University, in a phone call. "The implication of this is that LocationSmart never required consent in the first place," he said. "There seems to be no security oversight here." The "try" website was pulled offline after Xiao privately disclosed the bug to the company, with help from CERT, a public vulnerability database, also at Carnegie Mellon. Xiao said the bug may have exposed nearly every cell phone customer in the U.S. and Canada, some 200 million customers. The researcher said he started looking at LocationSmart's website following ZDNet's report this week, which followed from a story from The New York Times, which revealed how a former police sheriff snooped on phone location data without a warrant. The sheriff has pleaded not guilty to charges of unlawful surveillance. He said one of the APIs used in the "try" page that allows users to try the location feature out was not validating the consent response properly. Xiao said it was "trivially easy" to skip the part where the API sends the text message to the user to obtain their consent. "It's a surprisingly simple bug," he said.Read Replies (0)