fidzu : geek

In response to a cyberattack on the German Parliament in 2015, Germany wants to impose a European travel ban and asset freeze on those responsible. Reuters reports: Russia has rejected allegations that its military intelligence was behind the cyber attack after media reported that data had been stolen, including emails from Chancellor Angela Merkel's constituency office. State Secretary Miguel Berger told the ambassador that the government would call for the EU's cyber sanctions mechanism to be invoked against those responsible for the attack, said the German ministry in a statement. The EU last year approved a system to freeze hackers' assets in the bloc and banning them from entry. Federal prosecutors issued an arrest warrant on May 5 for Russian national Dmitry Badin over the attack and the German ministry said there was credible evidence that he was part of the GRU military intelligence service at the time of the attack. "The arrest warrant against Mr Badin was issued on the basis of the strong suspicion that the accused conspired with other hitherto anonymous persons to carry out intelligence activities against Germany on behalf of the secret service of a foreign power," said the ministry. In a statement on Wednesday, the Russian embassy in Berlin said German officials so far had not been able to present facts to underpin the accusations against Moscow.

Read more of this story at Slashdot.

29 May 2020 2:20am GMT

Researchers urge caution on genetic studies early in outbreaks.

29 May 2020 2:07am GMT

The American Civil Liberties Union on Thursday sued the facial recognition start-up Clearview AI (alternative source), which claims to have helped hundreds of law enforcement agencies use online photos to solve crimes, accusing the company of "unlawful, privacy-destroying surveillance activities." The New York Times reports: In a suit filed in Illinois, the A.C.L.U. said that Clearview violated a state law that forbids companies from using a resident's fingerprints or face scans without consent. Under the law, residents have the right to sue companies for up to $5,000 per privacy violation. "The bottom line is that, if left unchecked, Clearview's product is going to end privacy as we know it," said Nathan Freed Wessler, a lawyer at the A.C.L.U., "and we're taking the company to court to prevent that from happening." The suit, filed in the Circuit Court of Cook County, adds to the growing backlash against Clearview since January, when The New York Times reported that the company had amassed a database of more than three billion photos across the internet, including from Facebook, YouTube, Twitter and Venmo. This trove of photos enables anyone with the Clearview app to match a person to their online photos and find links back to the sites where the images originated. People in New York and Vermont have also filed suits in against the company in recent months, and the state attorneys general of Vermont and New Jersey have ordered Clearview to stop collecting residents' photos. According to the A.C.L.U. suit, "Clearview has set out to do what many companies have intentionally avoided out of ethical concerns: create a mass database of billions of face prints of people, including millions of Illinoisans, entirely unbeknownst to those people, and offer paid access to that database to private and governmental actors worldwide." The company's business model, the complaint said, "appears to embody the nightmare scenario" of a "private company capturing untold quantities of biometric data for purposes of surveillance and tracking without notice to the individuals affected, much less their consent."

Read more of this story at Slashdot.

29 May 2020 1:40am GMT

Google has been hit by a lawsuit filed by Arizona Attorney General Mark Brnovich, alleging the search giant deceived its users in order to collect location data from their phones. From a report: The company generates the vast majority of its revenue through its massive advertising operation, which is buttressed by personal information Google collects when people use its products. But users were "lulled into a false sense of security" because Google led users to believe they disabled settings for location data gathering, when they were still turned on, Brnovich wrote on Twitter. "Google collects detailed information about its users, including their physical locations, to target users for advertising," Brnovich wrote. "Often, this is done without the users' consent or knowledge." The lawsuit seeks damages, but the amount is unclear. Brnovich's office didn't respond to a request for comment.

Read more of this story at Slashdot.

29 May 2020 1:20am GMT

Cisco is one of many to get bitten by vulnerabilities in open source Salt manager.

29 May 2020 12:30am GMT

But NOAA is fiercely opposed to the controversial salvage mission.

28 May 2020 8:53pm GMT

Let's start out with my in-the-moment string of notes during the Press Preview at this year's NAIAS (Detroit Auto Show). This covers the main ideas about this year's program at the time. I'll add a few more comments and expanded thoughts at the end. Not sure if it's an actual color trend, but there's a […]

19 Jan 2018 5:32am GMT

For an EcoGeek, there were many surprises at the 2017 edition of the North American International Auto Show (NAIAS). We've been watching the emphasis on green cars decline for a number of years. Some of that is in the mainstreaming of more efficient vehicles, with increased fuel efficiency standards, greater numbers of hybrid vehicles, and […]

10 Jan 2017 2:42pm GMT

Well, it's hanging on in there, but why didn't it conquer the world?

Analysis Does European Commissioner for Competition Margrethe Vestager's team pay close attention to the tech news? If not, perhaps they should.…

19 Oct 2016 10:24am GMT

Linus Torvalds teaches devs a lesson with early rc1 release

Google may have killed off its modular smartphone Project Ara idea, but some of the code that would have made it happen looks like coming to the Linux Kernel.…

17 Oct 2016 6:58am GMT

Your weekly Windows entertainment large and small

This week's worldwide BSOD roundup starts with what looks to your writer like a virtualisation launch bug. Submitter Alexander tells us it came from Peterborough Station, in Cambridgeshire.…

17 Oct 2016 6:28am GMT

Residential power storage options are starting to get more competitive with a flow battery being introduced to the market in Australia. Flow batteries have been something we've looked at for grid-scale storage, and the research into the technology has been making advances. But it has been primarily a utility-scale technology. However, the technology has been […]

31 Mar 2016 5:45pm GMT

It's Wednesday, which means another Deck of Cards workout, the fun yet challenging segment of our group exercise program, The Lifehacker Workout. More »

10 Nov 2011 1:15am GMT

Readers offer their best tips for previewing your iPad home screen from another app, troubleshooting your friends and family's computers from far away, and accessing Google Tasks in the new Gmail layout. More »

10 Nov 2011 1:00am GMT

Facebook recently changed its layout, no longer allowing you to choose between "top stories" and "most recent" stories. Due to user outcry, however, they announced today that they'll be changing it back, though you might not notice it at first. Here's how it works. More »

10 Nov 2011 12:30am GMT

To anyone who has been reading anything on the web over the past few months, this shouldn't come as a surprise. Barnes & Noble is currently embroiled in a patent lawsuit started by Microsoft, after the bookseller/tablet maker refused to pay protection money to Redmond. Barnes & Noble has now openly said what we already knew, and has filed an official complaint at the US Department of Justice: Microsoft is engaging in anticompetitive practices.

09 Nov 2011 4:13pm GMT

"Sources close to Adobe that have been briefed on the company's future development plans have revealed this forthcoming announcement to ZDNet: Our future work with Flash on mobile devices will be focused on enabling Flash developers to package native apps with Adobe AIR for all the major app stores. We will no longer adapt Flash Player for mobile devices to new browser, OS version or device configurations.. . ."

09 Nov 2011 6:34am GMT

"The following are major features for Fedora 16: enhanced cloud support including Aeolus Conductor, Condor Cloud, HekaFS, OpenStack and pacemaker-cloud; KDE Plasma workspaces 4.7; GNOME 3.2; a number of core system improvements including GRUB 2 and the removal of HAL; an updated libvirtd, trusted boot, guest inspection, virtual lock manager and a pvops based kernel for Xen all improve virtualization support."

08 Nov 2011 10:45pm GMT

Tyrs is a microblogging client, supporting Twitter and Status.net (identi.ca), it's based on console using the NCurses module from Python. The release of the 0.5.0 version is a good excuse to introduce Tyrs. Tyrs aims to get a good interaction with a fairly intuitive interface that can provide support ncurses. Tyrs tries also not to [...]

06 Nov 2011 9:43pm GMT

After one year of managing a network of 10 servers with Cfengine I'm currently building two clusters of 50 servers with Puppet (which I'm using for the first time), and have various notes to share. With my experience I had a feeling Cfengine just isn't right for this project, and didn't consider it seriously. These servers are all running Debian GNU/Linux and Puppet felt natural because of the good Debian integration, and the number of users whom also produced a lot of resources. Chef was out of the picture soon because of the scary architecture; CouchDB, Solr and RabbitMQ... coming from Cfengine this seemed like a bad joke. You probably need to hire a Ruby developer when it breaks. Puppet is somewhat better in this regard.

Puppet master needs Ruby, and has a built-in file server using WEBrick. My first disappointment with Puppet was WEBrick. Though PuppetLabs claim you can scale it up to 20 servers, that proved way off, the built-in server has problems serving as little as 5 agents/servers, and you get to see many dropped connections and failed catalog transfers. I was forced to switch to Mongrel and Nginx as frontend very early in the project, on both clusters. This method works much better (even though Apache+Passenger is the recommended method now from PuppetLabs), and it's not a huge complication compared to WEBrick (and Cfengine which doesn't make you jump through any hoops). Part of the reason for this failure is my pull interval, which is 5 minutes with a random sleep time of up to 3 minutes to avoid harmonics (which is still a high occurrence with these intervals and WEBrick fails miserably). In production a customer can not wait on 30/45 minute pull intervals to get his IP address whitelisted for a service, or some other mundane task, it must happen within 10 minutes... but I'll come to these kind of unrealistic ideas a little later.

Unlike the Cfengine article I have no bootstrapping notes, and no code/modules to share. By default the fresh started puppet agent will look for a host called "puppet" and pull in what ever you defined to bootstrap servers in your manifests. As for modules, I wrote a ton of code and though I'd like to share it, my employer owns it. But unlike Cfengine v3 there's a lot of resources out there for Puppet which can teach you everything you need to know, so I don't feel obligated to even ask.

Interesting enough, published modules would not help you get your job done. You will have to write your own, and your team members will have to learn how to use your modules, which also means writing a lot of documentation. Maybe my biggest disappointment is getting disillusioned by most Puppet advocates and DevOps prophets. I found articles and modules most of them write, and experiences they share have nothing to do with the real world. It's like they host servers in a magical land where everything is done in one way and all servers are identical. Hosting big websites and their apps is a much, much different affair.

Every customer does things differently, and I had to write custom modules for each of them. Just between these two clusters a module managing Apache is different, and you can abstract your code a lot but you reach a point where you simply can't push it any more. Or if you can, you create a mess that is unusable by your team members, and I'm trying to make their jobs better not make them miserable. One customer uses an Isilon NAS, the other has a content distribution network, one uses Nginx as a frontend, other has chrooted web servers, one writes logs to a NFS, other to a Syslog cluster... Now imagine this on a scale with 2,000 customers and 3 times the servers and most of the published infrastructure design guidelines become laughable. Instead you find your self implementing custom solutions, and inventing your own rules, best that you can...

I'm ultimately here to tell you that the projects are in a better state then they would be with the usual cluster management policy. My best moment was an e-mail from a team member saying "I read the code, I now understand it [Puppet]. This is fucking awesome!". I knew at that moment I managed to build something good (or good enough), despite the shortcomings I found, and with nothing more than using PuppetLabs resources. Actually, that is not completely honest. Because I did buy and read the book Pro Puppet which contains an excellent chapter on using Git for collaboration on modules between sysadmins and developers, with proper implementation of development, testing and production (Puppet)environments.

05 Nov 2011 11:17pm GMT

Creating json is now ten times easier.

05 Nov 2011 3:10am GMT

Many of you have commented that our NewsVac section hasn't been refreshed since the middle of last month. Others have noticed that our story volume has dropped off. Changes are coming to Linux.com, and until they arrive, you won't see any new stories on the site.

01 Jan 2009 2:00pm GMT

The free and open source software community has been waiting for the G1 cell phone since it was first announced in July. Source code for Google's Android mobile platform has been available, but the G1 marks its commercial debut. It's clearly a good device, but is it what Linux boosters and FOSS advocates have long been anticipating?

31 Dec 2008 2:00pm GMT

Many public administrations already use open source Geographic Information Systems (GIS) to let citizens look at public geographic data trough dedicated Web sites. Others use the same software to partially open the data gathering process: they let citizens directly add geographic information to the official, high-quality GIS databases by drawing or clicking on digital maps.

30 Dec 2008 2:00pm GMT