Feed aggregator

'Most Serious' Linux Privilege-Escalation Bug Ever Is Under Active Exploit

Slashdot -

Reader operator_error shares an ArsTechnica report: A serious vulnerability that has been present for nine years in virtually all versions of the Linux operating system is under active exploit, according to researchers who are advising users to install a patch as soon as possible. While CVE-2016-5195, as the bug is cataloged, amounts to a mere privilege-escalation vulnerability rather than a more serious code-execution vulnerability, there are several reasons many researchers are taking it extremely seriously. For one thing, it's not hard to develop exploits that work reliably. For another, the flaw is located in a section of the Linux kernel that's a part of virtually every distribution of the open-source OS released for almost a decade. What's more, researchers have discovered attack code that indicates the vulnerability is being actively and maliciously exploited in the wild. "It's probably the most serious Linux local privilege escalation ever," Dan Rosenberg, a senior researcher at Azimuth Security, told Ars. "The nature of the vulnerability lends itself to extremely reliable exploitation. This vulnerability has been present for nine years, which is an extremely long period of time." The underlying bug was patched this week by the maintainers of the official Linux kernel. Downstream distributors are in the process of releasing updates that incorporate the fix. Red Hat has classified the vulnerability as "important."

Read more of this story at Slashdot.

Angry "sovereign citizen" meets polite police officer

Boing Boing -

This patient police officer does not take much stock in the legitimacy of the sovereign citizen movement.

Best part:

Cop: "You're under arrest."

Sovereign citizen: "NO I'M NOT!"

From Wikipedia: "The sovereign citizen movement is a loose grouping of American and Canadian litigants, commentators, tax protesters, and financial-scheme promoters. Self-described sovereign citizens take the position that they are answerable only to their particular interpretation of the common law and are not subject to any government statutes or proceedings."

Re: Where i gone wrong?

Bitcoin feeds -

none of these ideas sound new. they also have to earn trust.

ideas done better than established businesses will go nowhere without a giant marketing spend and years of effort.

think out of the box or do something that already exists so much better that...

Google Pixel XL gets the iFixit teardown treatment

Liliputing -

Google’s Pixel smartphones are now shipping, and this week I published more than 6 thousand words and a bunch of videos and pictures about the phone’s design, software, and performance.

But sometimes it’s what’s inside that counts, right? So the folks at iFixit tore open the phone to see exactly what is on the inside… and how hard it would be to repair the phone if one part breaks.

There aren’t a lot of surprises under the hood.

Continue reading Google Pixel XL gets the iFixit teardown treatment at Liliputing.

Macs End Up Costing 3 Times Less Than Windows PCs Because of Fewer Tech Support Expense, Says IBM's IT Guy

Slashdot -

An anonymous reader shares a report on Yahoo (edited): Last year, Fletcher Previn became a cult figure of sorts in the world of enterprise IT. As IBM's VP of Workplace as a Service, Previn is the guy responsible for turning IBM (the company that invented the PC) into an Apple Mac house. Previn gave a great presentation at last year's Jamf tech conference where he said Macs were less expensive to support than Windows. Only 5% of IBM's Mac employees needed help desk support versus 40% of PC users. At that time, some 30,000 IBM employees were using Macs. Today 90,000 of them are, he said. And IBM ultimately plans to distribute 150,000 to 200,000 Macs to workers, meaning about half of IBM's approximately 370,000 employees will have Macs. Previn's team is responsible for all the company's PCs, not just the Macs. All told IBM's IT department supports about 604,000 laptops between employees and its 100,000+ contractors. Most of them are Windows machines -- 442,000 -- while 90,000 are Macs and 72,000 are Linux PCs. IBM is adding about 1,300 Macs a week, Previn said.

Read more of this story at Slashdot.

Several Sites Including Twitter, Spotify, PayPal, SoundCloud Suffering Outage -- Dyn DNS Under DDoS Attack [Update]

Slashdot -

Several popular websites and services are down right now for many users. The affected sites include Twitter, SoundCloud, Spotify, and PayPal among others. The cause appears to be a sweeping outage of DNS provider Dyn -- which in turn is under DDoS attack, according to an official blog post.From a TechCrunch report: Other sites experiencing issues include Box, Boston Globe, New York Times, Github, Airbnb, Reddit, Freshbooks, Heroku and Vox Media properties. Users accessing these sites might have more or less success depending on where they're located, as some European and Asian users seem not to be encountering these issues.Last month, Bruce Schneier warned that someone was learning how to take down the internet. Update: 10/21 14:41 GMT by M :Dyn says that it has resolved the issue and sites should function normally.Update: 10/21 17:04 GMT by M :Department of Homeland Security says it is aware of the first DDoS attack on Dyn today and "investigating all potential causes." Dyn says it is still under DDoS attack. News outlet The Next Web says it is also facing issues. Any website that uses Dyn's service -- directly or indirectly -- is facing the issue. Motherboard has more details. Editor's note: the story is being updated as we learn more. We have moved this story up on the front page.

Read more of this story at Slashdot.

Help sculpt the future of tech with machine learning skills

Boing Boing -

From self-driving cars to stock market predicting software to the recommendations you get on Amazon and Netflix, machine learning is at the core of modern technology. You could find yourself building technology that is literally changing the world with the skills you'll learn in The Complete Machine Learning Bundle.

This bundle of 10 courses includes 406 lessons that will teach you everything, including practical applications of machine learning like how to apply machine learning to stock trading. You’ll get hands-on instruction—63.5 hours of content—from expert teachers in this growing field, as well as comprehensive quizzes and assessments as you go.

If you’re looking to make a career change that will place you at the forefront of the technology, there is no better speciality than machine learning. For a limited time, the Complete Machine Learning Bundle is 95% off retail and available for just $39.

Also explore the top Online Courses on our network right now:

Ruth Bader Ginsburg joins the Washington National Opera

Boing Boing -

On November 12th, and for one night only, Supreme Court Justice Ruth Bader Ginsburg will portray the Duchess of Krakenthorp in the Washington National Opera's production of "The Daughter of the Regiment."

This is not the Notorious RBG's first role in an opera, and while the Duchess does not sing she will bust loose with the funny.

Via NPR:

It's no cameo. According to the Washington National Opera, while this opera is "best known for its vocal acrobatics, the high-comedy antics" of the nonsinging duchess "often steal the show."

Indeed, for Ginsburg's one-night stand, the script has been altered. At one point, for example, after the duchess observes that the best leaders of the House of Krakenthorp have been "persons with open but not empty minds, individuals willing to listen and learn," she looks at the audience meaningfully, and asks, "Is it any wonder that the most valorous members ... have been women?"

She goes on to list the qualifications for admission to the House of Krakenthorp, some of which sound suspiciously like the qualifications for being a Supreme Court justice — i.e., "must possess the fortitude to undergo intense scrutiny," and have a "character beyond reproach."

The 83-year-old justice will join a long list of notables who have played the Duchess of Krakenthorp — among them comediennes Bea Arthur and Hermione Gingold and retiring opera stars like Kiri Te Kanawa and Montserrat Caballe.

Ginsburg has had a lifetime love affair with opera. She often lectures about the law in opera and has said that her one regret in life is that she could not be a real operatic diva. She might have tried, she says, but for one thing: She can't sing.

Samsung launches Galaxy C9 Pro smartphone with 6GB of RAM (in China)

Liliputing -

Samsung is launching its first smartphone featuring 6GB of RAM. But surprisingly, it’s not a new flagship phone. Instead the Samsung Galaxy C9 Pro is a solid mid-range phone aimed at the Chinese market.

The phone features a 6 inch, 1920 x 1080 pixel Super AMOLED display and a Snapdragon 653 octa-core processor instead of one of Qualcomm’s more powerful Snapdragon 820 or 821 chips.

With a list price of 3199 yuan ($473), the phone is on the expensive side for a Chinese handset.

Continue reading Samsung launches Galaxy C9 Pro smartphone with 6GB of RAM (in China) at Liliputing.


Subscribe to debianHELP aggregator