fidzu : geeks

Temperatures at the north pole soared more than 20C above average on Sunday, crossing the threshold for ice to melt. From a report: Temperatures north of Svalbard in Norway had already risen to 18C hotter than the 1991-2020 average on Saturday, according to models from weather agencies in Europe and the US, with actual temperatures close to ice's melting point of 0C. By Sunday, the temperature anomaly had risen to more than 20C. "This was a very extreme winter warming event," said Mika Rantanen, a scientist at the Finnish Meteorological Institute. "Probably not the most extreme ever observed, but still at the upper edge of what can happen in the Arctic." Burning fossil fuels has heated the planet by about 1.3C since preindustrial times, but the poles are warming much faster as reflective sea ice melts. The increase in average temperatures has driven an increase in fiercely hot summers and unsettlingly mild winters.

Read more of this story at Slashdot.

05 Feb 2025 3:20pm GMT

EV sales in the region are growing, but not for Tesla.

05 Feb 2025 3:10pm GMT

"When VIPER was removed, that was definitely a setback. Our team felt that."

05 Feb 2025 3:00pm GMT

China's antitrust watchdog is laying the groundwork for a potential probe into Apple's policies and the fees it charges app developers, part of a broader push by Beijing that risks becoming another flashpoint in the country's trade war with the US. From a report: The State Administration for Market Regulation is examining Apple's policies, which include taking a cut of as much as 30% on in-app spending and barring external payment services and stores, people familiar with the matter said. Agency officials have spoken with Apple executives and app developers since last year, said the people, who asked for anonymity to discuss sensitive moves. The conversations stem from long-running disputes between Apple and developers such as Tencent and ByteDance over iOS store policies -- a source of tension between the US company and regulators worldwide. While Beijing has since 2024 targeted the practices of US tech firms from Nvidia to most recently Alphabet's Google, regulators may not formally move against Apple if the current conversations go well.

Read more of this story at Slashdot.

05 Feb 2025 2:40pm GMT

Honda's proposal to turn Nissan into fully owned subsidiary didn't go over well.

05 Feb 2025 2:30pm GMT

Thailand cut power supply, fuel and internet to some border areas with Myanmar on Wednesday. It's an attempt to choke scam syndicates operating out of there that have become a growing security concern. Reuters: Scam compounds in Southeast Asia are suspected to have entrapped hundreds of thousands of people in illegal online and telecom operations, generating billions of dollars annually, according to a 2023 U.N. report. Thai Interior Minister Anutin Charnvirakul visited the Provincial Electricity Authority headquarters in Bangkok on Wednesday to oversee the effort to fight the crime rings. "They may turn to other sources of power supply or generate their own electricity. In the Thai Security Council orders, it also includes the halt in supplying oil and internet to them, which means that from now on any damage that occurs will have no connection to any resources in Thailand."

Read more of this story at Slashdot.

05 Feb 2025 2:00pm GMT

Upstart was an event-based replacement for the traditional System V init (sysvinit) system on Ubuntu, introduced to bring a modern and more flexible way of handling system startup and service management. It emerged in the mid-2000s, during a period when sysvinit's age and limitations were becoming more apparent, especially with regard to concurrency and dependency handling. Upstart was developed by Canonical, the company behind Ubuntu, with the aim of reducing boot times, improving reliability, and making the system initialization process more dynamic. Though at first it seemed likely to become a standard across many distributions, Upstart eventually lost mindshare to systemd and ceased to be Ubuntu's default init system. ↫ André Machado I think it's safe to say systemd won the competition to become the definitive successor so sysvinit on Linux, but Canonical's Upstart made a valiant effort, too. However, with a troublesome license, it was doomed from the start, and it didn't help that virtually every other major distribution eventually adopted systemd. These days, systemd is the Linux init system, and I personally quite like it (and the crowd turns violent). I find it easy to use and it's never given me any issues, but I'm not a system administrator dealing with complex setups, so my experience with systemd is probably rather limited. It just does its thing in the background on my machines. None of this means there aren't any other init systems still being actively developed. There's GNU Shepard we talked about recently, runit, OpenRC, and many more. If you don't like systemd, there's enough alternatives out there.

04 Feb 2025 1:39pm GMT

After doing more digging than I feel like I should have needed to, I found my answer: it appears that due to concerns about the fact that acknowledging the existence of certain countries can be perceived as a nominally political stance, Microsoft has opted to just avoid the issue altogether by not including country flag emojis in Windows' system font. Problem solved! Can you imagine if, *gasp*, your computer could render a Taiwanese or Palestinian flag? The horror! ↫ Ryan Geyer Silicon Valley corporations are nothing if not massive cowards, and this is just another one of the many, many examples that underline this. Firefox solves this by including the flags on its own, but Google refuses to do the same with Chrome, because, you guessed it, Google is also a cowardly organisation. There are some ways around it, as the linked article details, but they're all clumsy and cumbersome compared to Microsoft just not being a coward and including proper flag emoji, even if it offends some sensibilities in pro-China or western far-right circles. Your best bet to avoid such corporate cowardice is to switch to better operating systems, like any desktop Linux distribution. Fedora KDE includes both the Taiwanese and Palestinian flags, because the KDE project isn't made up of cowards, and I'm sure the same applies to any GNOME distribution. If your delicate snowflake sensibilities can't handle a Palestinian or Taiwanese flag emoji, just don't type them. Bitter sidenote: it turns out WordPress, what OSNews uses, doesn't like emoji, either. Adding any emoji in this story, from basic ones to the Taiwanese or Palestinian flag, makes it impossible to save or publish the story. I have no idea if this is a WordPress issue, or an issue on our end, since WordPress does mention they have emoji support.

04 Feb 2025 12:36pm GMT

Geico, an American insurance company, is building a live-patching solution for the Linux kernel, called TuxTape. TuxTape is an in-development kernel livepatching ecosystem that aims to aid in the production and distribution of kpatch patches to vendor-independent kernels. This is done by scraping the Linux CNA mailing list, prioritizing CVEs by severity, and determining applicability of the patches to the configured kernel(s). Applicability of patches is determined by profiling kernel builds to record which files are included in the build process and ignoring CVEs that do not affect files included in kernel builds deployed on the managed fleet. ↫ Presentation by Grayson Guarino and Chris Townsend It seems to me something like live-patching the Linux kernel should be a standardised framework that's part of the Linux kernel, and not several random implementations by third parties, one of which is an insurance company. There's a base core of functionality for live-patching in the Linux kernel since 4.0, released in 2015, but it's extremely limited and requires most of the functionality to be implemented separately, through things like Red Hat's kpatch and Oracle's Ksplice. Geico is going to release TuxTape as open source, and is encouraging others to adopt and use it. There are various other solutions out there offering similar functionality, so you're not spoiled for choice, and I'm sure there's advantages and disadvantages to each. I would still prefer if functionality like this is a standard feature of the kernel, not something tied to a specific vendor or implementation.

04 Feb 2025 10:39am GMT

In the cold of December we have but one thing to keep us warm: our laptops, trying to solve Advent of Code puzzles with inefficient algorithms. This year, 2024, is the tenth edition, and the puzzles are filled with more Easter eggs than ever before. Unfortunately, I'm not interested in Easter eggs, or solving the puzzles. I am a DevOps engineer, and I'm going to apply Infrastructure as Code principles to Advent of Code.

04 Feb 2025 12:00am GMT

We plan to move glibc and its friends to stable later today, Feb 3. After installing the update, the Discord client will show a red warning that the installation is corrupt. This issue has been fixed in the Discord canary build. If you rely on audio connectivity, please use the canary build, login via browser or the flatpak version until the fix hits the stable Discord release. There have been no reports that (written) chat connectivity is affected.

03 Feb 2025 12:00am GMT

We'd like to raise awareness about the rsync security release version 3.4.0-1 as described in our advisory ASA-202501-1. An attacker only requires anonymous read access to a vulnerable rsync server, such as a public mirror, to execute arbitrary code on the machine the server is running on. Additionally, attackers can take control of an affected server and read/write arbitrary files of any connected client. Sensitive data can be extracted, such as OpenPGP and SSH keys, and malicious code can be executed by overwriting files such as ~/.bashrc or ~/.popt. We highly advise anyone who runs an rsync daemon or client prior to version 3.4.0-1 to upgrade and reboot their systems immediately. As Arch Linux mirrors are mostly synchronized using rsync, we highly advise any mirror administrator to act immediately, even though the hosted package files themselves are cryptographically signed. All infrastructure servers and mirrors maintained by Arch Linux have already been updated.

16 Jan 2025 12:00am GMT