Alterslash

the unofficial Slashdot digest archive

Samsung Plans To Open $380 Million Home Appliance Plant In US, Creating Almost 1,000 Jobs

Posted by BeauHDView on SlashDotShareable Link
Samsung Electronics has agreed to open a $380 million home appliance manufacturing plant in Newberry County, South Carolina. The new plant is expected to generate 954 local jobs by 2020. CNBC reports: The South Korean firm said this year it was in talks to build a home appliances plant in the United States amid worries about protectionist policies under U.S. President Donald Trump put pressure on global companies to generate jobs in the country. "With this investment, Samsung is reaffirming its commitment to expanding its U.S. operations and deepening our connection to the American consumers, engineers and innovators," Samsung Electronics America President and CEO Tim Baxter said.

Facebook's Secret Censorship Rules Protect White Men From Hate Speech But Not Black Children

Posted by BeauHDView on SlashDotShareable Link
Sidney Fussell from Gizmodo summarizes a report from ProPublica, which brings to light dozens of training documents used by Facebook to train moderators on hate speech: As the trove of slides and quizzes reveals, Facebook uses a warped, one-sided reasoning to balance policing hate speech against users' freedom of expression on the platform. This is perhaps best summarized by the above image from one of its training slideshows, wherein Facebook instructs moderators to protect "White Men," but not "Female Drivers" or "Black Children." Facebook only blocks inflammatory remarks if they're used against members of a "protected class." But Facebook itself decides who makes up a protected class, with lots of clear opportunities for moderation to be applied arbitrarily at best and against minoritized people critiquing those in power (particularly white men) at worst -- as Facebook has been routinely accused of. According to the leaked documents, here are the group identifiers Facebook protects: Sex, Religious affiliation, National origin, Gender identity, Race, Ethnicity, Sexual Orientation, Serious disability or disease. And here are those Facebook won't protect: Social class, continental origin, appearance, age, occupation, political ideology, religions, countries. Subsets of groups -- female drivers, Jewish professors, gay liberals -- aren't protected either, as ProPublica explains: White men are considered a group because both traits are protected, while female drivers and black children, like radicalized Muslims, are subsets, because one of their characteristics is not protected.

SJW

By 110010001000 • Score: 5, Insightful • Thread
It must be very complicated trying to live as a SJW. I prefer just being nice to people.

Re:Somewhat misleading headline

By Rockoon • Score: 5, Insightful • Thread
The whole concept of "protected class" is bereft of morality...

Re:Somewhat misleading headline

By ganjadude • Score: 4, Interesting • Thread
"All white people are racist. Start from this reference point, or you've already failed,"

is quite a bit different than

a U.S. congressman wrote a Facebook post in which he called for the slaughter of "radicalized" Muslims. "Hunt them, identify them, and kill them," declared U.S. Rep. Clay Higgins, a Louisiana Republican. "Kill them all. For the sake of all that is good and righteous. Kill them all."

one is racist (ALL whites) and one is talking about "radical" islam, meaning the people we are actually at war with, ISIS and other groups

it makes perfect sense why one of them, while still pretty harsh, isnt to the same level of being racist

attacking a violent subset vs attacking a group based on their color

facebook has a problem, but the comparisong isnt quite apples to apples

Wow, this is SJW message shaping at its best

By guruevi • Score: 4, Insightful • Thread

First of all, the article makes it seem like whites are protected while blacks aren't. That isn't the case, everyone in a group gets equal rights to censorship.

However this is a clear example of Simpson's Paradox, if you split up your sample set enough, you get contradictory results.

This is a direct result of SJW demands for censorship with a healthy dose of discrimination, you get a patchwork of rules that is neither based on word of law or common sense and can be cut and paste to fit pretty much every model.

You can boil down and extend every SJW argument using the same logic and see that what they are asking for is not protection but discrimination.

Re:While the point could be valid

By ganjadude • Score: 4, Insightful • Thread
just because you dont get offended (neither do i) does not in anyway let the racists off the hook simply because you are white and they arent. they are still racist

The Petya Ransomware Is Starting To Look Like a Cyberattack in Disguise

Posted by msmashView on SlashDotShareable Link
Further research and investigation into Petya ransomware -- which has affected computers in over 60 countries -- suggest three interesting things: 1. Ukraine was the epicentre of the attack. According to Kaspersky, 60 percent of all machines infected were located within Ukraine. 2. The attackers behind the attack have made little money -- around $10,000. Which leads to speculation that perhaps money wasn't a motive at all. 3. Petya was either "incredibly buggy, or irreversibly destructive on purpose." An anonymous reader shares a report: Because the virus has proven unusually destructive in Ukraine, a number of researchers have come to suspect more sinister motives at work. Peeling apart the program's decryption failure in a post today, Comae's Matthieu Suiche concluded a nation state attack was the only plausible explanation. "Pretending to be a ransomware while being in fact a nation state attack," Suiche wrote, "is in our opinion a very subtle way from the attacker to control the narrative of the attack." Another prominent infosec figure put it more bluntly: "There's no fucking way this was criminals." There's already mounting evidence that Petya's focus on Ukraine was deliberate. The Petya virus is very good at moving within networks, but initial attacks were limited to just a few specific infections, all of which seem to have been targeted at Ukraine. The highest-profile one was a Ukrainian accounting program called MeDoc, which sent out a suspicious software update Tuesday morning that many researchers blame for the initial Petya infections. Attackers also planted malware on the homepage of a prominent Ukraine-based news outlet, according to one researcher at Kaspersky.

Re:Russians

By MightyMartian • Score: 5, Insightful • Thread

You are aware, I trust, that Ukraine and Russia are effectively at war, right? Why this need for convoluted conspiracy theories when the most parsimonious explanation is that Russia waged a cyberattack on Ukraine? Maybe Russia didn't give a flying fuck whether anyone could eventually decrypt the data or not, if hte point is just to cause damage. It's like asking "Why didn't they send in the Army Corp of Engineers to rebuild the bridge they just bombed to oblivion?" answer being, they just wanted to bomb the bridge to oblivion.

We all saw it coming, didn't we?

By hyperar • Score: 3 • Thread
Now everything is "nation-sponsored", so-called expert now throw this at everything without handing a single proof of it's claims, and sometimes not even making sense.

Re:Ready Set Go

By Oswald McWeany • Score: 4, Interesting • Thread

It doesn't always "have to be Putin" but there is a reason why it frequently is Russia.

1) They have the resources. No country has a better human resource for hacking than Russia. They have a large highly trained tech-savvy population. They've put more effort into teaching people to be computer literate than almost anywhere else. They also have a wild-west type law enforcement that overlooks a lot of hacking and allows people to hone their skills that way.

2) They have a motive. Russia is semi-openly hostile to most countries that lay to it's West. They have a policy of constantly testing our defenses. They frequently fly planes into other countries airspace to see how quickly they will react, the cyber warfare is more of the same testing. They're seeing how we will react.

3) They have a leader who doesn't give a damn what other countries think of them. Putin wants what is best for Russia and doesn't care if that makes people in other countries not like him. He doesn't want to be known as clean or honourable- he just wants to restore the empire. Furthermore, his background is in espionage. Being sneaky is in his blood.

vaccine

By Rudisaurus • Score: 4, Insightful • Thread
According to BleepingComputer.com, you can vaccinate against NotPetya by creating and adding 3 write-protected files to your C:\Windows folder: perfc, perfc.dat, and perfc.dll.

Content doesn't matter but "Read-only" status does.

Re:Russians

By skids • Score: 4, Informative • Thread

Moreover, Russia has been engaging in a sustained cyber-warfare campaign in Ukraine, up to and including taking down the power grid and hacking cells of military personnel to gain information on troop positions. Making it look like ransomware was probably more an afterthought in hopes that paranoid firewall admins worldwide would block Ukrainian IP addresses... they really don't care that it eventually gets attributed to them.

I rolled my eyes this morning when I heard the company of origin was in the Ukraine and was not very surprised to see this article today.

Seattle's $15 Minimum Wage May Be Hurting Workers, Report Finds

Posted by msmashView on SlashDotShareable Link
As companies look for ways to cut costs, Seattle's $15 minimum wage law may be hurting hourly workers instead of helping them, according to a new report. From a USA Today article: A report (PDF) from the University of Washington (UW), found that when wages increased to $13 in 2016, some companies may have responded by cutting low-wage workers' hours. The study, which was funded in part by the city of Seattle, found that workers clocked 9 percent fewer hours on average, and earned $125 less each month after the most recent increase. "If you're a low-skilled worker with one of those jobs, $125 a month is a sizable amount of money," Mark Long, a UW public-policy professor and an author of the report told the Seattle Times. "It can be the difference between being able to pay your rent and not being able to pay your rent."

Easy answer: the study is a BS

By Cyberax • Score: 3, Informative • Thread
The UW study is a BS. Instead of just looking into the actual data (it's not compatible with the aim of the study as it shows improvements in wages and jobs) they created a "fantasy Seattle". Then they compared the growth of wages and employments in this "fantasy Seattle" with the reality. Then they tweaked the model to produce the numbers they want - they omitted minimum-wage workers from chain franchises.

And lo and behold! The model shows slightly more growth than the real Seattle.

Sounds like a win for employers

By hawguy • Score: 3 • Thread

If employees are given 9% fewer hours and getting less overall pay and are presumably doing the same jobs they were before the wage increase, then they must be 9% more efficient and saving businesses money.

I bet businesses around the country are going to push for higher minimum wages now -- they'll save money and get more efficient workers.

Re: Typical...

By GLMDesigns • Score: 4, Interesting • Thread
Why don't you stick it to the man and demand that everyone gets $100.00 / hr. That'll show them.

/sarc

Here's the f**king problem - reformulating the minimum wage to being a "living" wage hurts those with a low skill set.

Part of keeping a job is

- showing up every day
- showing up on time every day
- showing the will to this day in and day, week in and week out
- being clean and reasonably well groomed
- following directions
- being personable

You may take these "skills" for granted but they need to be developed. This is one of the invaluable benefits of minimum wage jobs. It's the first rung on the ladder. It's not meant, nor intended to be, a role that one can have to support ones family. It's the f**king MINIMUM.

Re: Typical...

By sonicmerlin • Score: 4, Insightful • Thread

A ton of research has been done on minimum wage and the consensus is that is has negligible effect on employment. Sowell is basically the go to economist on the neocon side, and is a fan of people like Hayek.

making ends meet

By PopeRatzo • Score: 3 • Thread

These are illuminating in regard to any discussion of the economic impact of the minimum wage:

http://thehill.com/homenews/ho...

"Rep. Jason Chaffetz (R-Utah) said Monday that House and Senate lawmakers should receive a $2,500 per month housing allowance — something he explained would help ease housing costs for members who can’t afford two mortgages or rents."

And this:

https://boingboing.net/2017/06...

"Rep Jeb Hensarling [R-TX/+1 202 225-3484/@RepHensarling] is the sponsor of HR 10, the Financial CHOICE Act of 2017, which will ban investors from putting petitions to the shareholders and board of publicly traded companies, except when investors own more than 1% of the company for at least three years."

More Than 40 ISPs Across the Country Tell Chairman Pai to Not Repeal Network Neutrality

Posted by msmashView on SlashDotShareable Link
An anonymous reader shares a report: One excuse FCC Chairman Ajit Pai regularly offers to explain his effort to gut net neutrality protections is the claim that open Internet rules have harmed ISPs, especially small ones. During a speech earlier this year, he stressed that 22 small ISPs told him that the 2015 Open Internet Order hurt their ability to invest and deploy. In reality, though, many more ISPs feel very differently. Today, more than 40 ISPs told the FCC that they have had no problem with the Open Internet Order (PDF) and that it hasn't hurt their ability to develop and expand their networks. What is more, that they want the FCC to do its job and address the problem Congress created when it repealed the broadband privacy rules in March.

Re:Boom goes the dynamite

By Desler • Score: 5, Insightful • Thread

Except these companies don't have high-paid lobbyists so he's unlikely to care.

A failure to understand how government is designed

By Alascom • Score: 3, Insightful • Thread

"...they want the FCC to do its job and address the problem Congress created when it repealed..."

This is a grossly false assertion.
The FCC's job is to implement the law as directed by Congress, not the other way around.

At this point all you need to know about

By bravecanadian • Score: 4 • Thread

Amit Pai is that he is a Republican. That equals liar and hypocrite for those of you keeping track at home.

Re:Pai is full of BS

By UnknowingFool • Score: 4, Insightful • Thread
Communication with the FCC should be public record especially when the ISPs are discussing legislation and regulation. Why hasn't Pai disclosed the names? Also Pai failed to disclose how many ISPs were in favor of Net Neutrality. The fact that 40 of them went as far as to sign a public letter about their stance says more.

Pai is completely, totally bought

By ZorinLynx • Score: 5, Insightful • Thread

Look at his record of the things he's done so far. ALL of them favor big ISPs, and NONE of them favor the consumer.

The man is completely bought. He has absolutely no business heading the FCC, which is all about regulating communications and the PUBLIC airwaves.

I don't understand why so many people in this country, especially those who aren't wealthy, continue to support politicians that not only don't work for the people, but are so BLATANTLY and OBVIOUSLY corrupted by big corporate money and influence.

Google Must Delete Search Results Worldwide, Supreme Court of Canada Rules

Posted by msmashView on SlashDotShareable Link
The Supreme Court of Canada ruled against Google on Wednesday in a closely-watched intellectual property case over whether judges can apply their own country's laws to all of the internet. From a report: In a 7-2 decision, the court agreed a British Columbia judge had the power to issue an injunction forcing Google to scrub search results about pirated products not just in Canada, but everywhere else in the world too. Those siding with Google, including civil liberties groups, had warned that allowing the injunction would harm free speech, setting a precedent to let any judge anywhere order a global ban on what appears on search engines. The Canadian Supreme Court, however, downplayed this objection and called Google's fears "theoretical." "This is not an order to remove speech that, on its face, engages freedom of expression values, it is an order to de-index websites that are in violation of several court orders. We have not, to date, accepted that freedom of expression requires the facilitation of the unlawful sale of goods," wrote Judge Rosalie Abella.

Horrifying

By Geoffrey.landis • Score: 5, Insightful • Thread

This is quite horrifying. If Canada thinks that Canadian courts can order Google to delete results everywhere in the world, then the same argument says Chinese courts can order Google to delete results everywhere in the world.

Re:Delete all references to Canada

By Kierthos • Score: 5, Funny • Thread

Blame who?

Jurisdiction?

By marcle • Score: 4, Insightful • Thread

It would seem Canada's court is claiming global jurisdiction. I think quite a few governments would have a problem with that.

So Canada agrees with the U.S.

By Solandri • Score: 5, Insightful • Thread

The Canadian Supreme Court, however, downplayed this objection and called Google's fears "theoretical." "This is not an order to remove speech that, on its face, engages freedom of expression values, it is an order to de-index websites that are in violation of several court orders. We have not, to date, accepted that freedom of expression requires the facilitation of the unlawful sale of goods," wrote Judge Rosalie Abella.

So Canada agrees with the U.S. that Canadian pharmacies illegally selling prescription drugs to Americans should be de-indexed from Google worldwide.

Whether this is a free speech or an illegal trade is irrelevant and a straw man. The key issue is whether another country can apply their laws in your country. Maybe considering a case with Canada on the benefiting end of the "illegal" trade might give the judges some perspective.

Re:Horrifying

By petes_PoV • Score: 5, Interesting • Thread
The USA already enforces its laws on the RoW, so it's reasonable for any other country to do the same.

The US decided on its own that any data which touches american soil is subject to american laws. This has been tested in the financial world where transactions that were legal in the country they took place were "bounced" in and out of the USA and the yanks deemed that they therefore were subject to their laws, which did not allow that activity to be legal.

The individuals in question were extradited to the US, and such is the extreme cost to defendants to produce witnesses and to support a lawsuit - esp. against the federal government and even more so when all those witnesses are from another country (and therefore have to be transported and accommodated at the defendants' expense for the duration of the trial), that they were unable to defend themselves and had to plea bargain a jail sentence.

Look up the Natwest three
https://en.wikipedia.org/wiki/...

A New Kind of Tech Job Emphasizes Skills, Not a College Degree

Posted by msmashView on SlashDotShareable Link
Steve Lohr, writing for the New York Times: A few years ago, Sean Bridges lived with his mother, Linda, in Wiley Ford, W.Va. Their only income was her monthly Social Security disability check. He applied for work at Walmart and Burger King, but they were not hiring. Yet while Mr. Bridges had no work history, he had certain skills. He had built and sold some stripped-down personal computers, and he had studied information technology at a community college. When Mr. Bridges heard IBM was hiring at a nearby operations center in 2013, he applied and demonstrated those skills. Now Mr. Bridges, 25, is a computer security analyst, making $45,000 a year. In a struggling Appalachian economy, that is enough to provide him with his own apartment, a car, spending money -- and career ambitions. "I got one big break," he said. "That's what I needed." Mr. Bridges represents a new but promising category in the American labor market: people working in so-called new-collar or middle-skill jobs. As the United States struggles with how to match good jobs to the two-thirds of adults who do not have a four-year college degree, his experience shows how a worker's skills can be emphasized over traditional hiring filters like college degrees, work history and personal references. [...] On Wednesday, the approach received a strong corporate endorsement from Microsoft, which announced a grant of more than $25 million to help Skillful, a program to foster skills-oriented hiring, training and education. The initiative, led by the Markle Foundation, began last year in Colorado, and Microsoft's grant will be used to expand it there and move it into other states. "We need new approaches, or we're going to leave more and more people behind in our economy," said Brad Smith, president of Microsoft.

Re:middle-skilled jobs?

By Osgeld • Score: 5, Funny • Thread

with POKEs, duh

This isn't news and the article itself is odd

By zifn4b • Score: 5, Interesting • Thread

I don't have a college degree either but I got into this field in 1997 in the same way. I did attend college for almost 3 years though. I had been programming since a child and had been messing around with computer hardware as well. This is not a new thing. I have friends who did the same a LONG time ago.

The other thing is, this person's ability to tinker with computer assembly and a community college information technology course has little or no application to a role of Computer Security Analyst. I know about this, I've been in nearly every IT and Software Development role there is. When I was a Computer Science major there were also Information Technology roles and the like and those were for people who can't hack it in full on Computer Science. I have a close friend that was like this. He fully admits he couldn't hack it. Brilliant at Physics, not so much at Computer Science. So, he switched to Information Technology.

The other thing is, this problem of not hiring people has nothing to do with people lacking education credentials. People with Computer Science degrees can't find jobs. Today, many companies require ridiculous amounts of experience sometimes they even ask for more years of experience than a particular technology has existed. I do believe in many cases they make the requirements ridiculous just so they can whine and say they can't find "qualified candidates" and have to turn to H1-B Visa.

If we are going to talk about how to make more economic opportunity for people in this field, two things will make the most positive impact in this situation: 1) Companies revive the philosophy to hire smart people and provide on the job training that they might be missing for the company's particular technology preferences and 2) Shut down the unethical H1-B visa game by instituting better criteria and increasing oversight. For #1, I mean I don't understand. Let's take the NFL for example. Bill Parcells would go coach the worst team in the NFL, unlock their true potential and then make them Super Bowl winners. Why can't we do the same thing in this field and why shouldn't we?

Re:College degrees were only a proxy for an IQ tes

By darkain • Score: 4 • Thread

Its not so much that college has lowered quality so people can pass to survive, they've lowered quality so more people can pay to attend. It is literally a business at this point, not an educational institution. A college degree is hitting that point where it costs more than a house mortgage, which is INSANE! And while some might try to argue this claim, remember that a college education is per-person, whereas a house generally can fit multiple people.

Re:Not just "One big break"

By ranton • Score: 4, Insightful • Thread

Seen too many people drop out of college with maybe a year to go to graduate. Some make good money and work for a few years, but they are always at a disadvantage when the job markets tightens up and they find themselves looking for a new job.

This is the important part most people don't consider when they give advice based on their past experience. When I talk with someone in IT with no degree, their opinion about how useful a degree is is generally dependent on if they were out of work sometime around 2001 or 2008. This is when the degree is most important. Sure it isn't too hard to find an IT job without a degree in 2017 when the economy has been doing great for 5+ years. But once the next recession hits you'll find HR departments filtering inbound resumes based on degree real quick.

It is a significant risk to work in a knowledge based industry without a college degree. Some people never get burned, and they'll probably attribute that to skill and hard work instead of dumb luck. But there is always another recession down the road to potentially bring them down to reality.

Re:This is almost exactly how I got started!

By XopherMV • Score: 4, Informative • Thread

An accountant who obtained training 20 years ago can still find value and use most of those skills today. That is not the case for those in IT, and more people outside of IT need to understand that instead of looking down upon the highly skilled IT professional who can still provide great value without being a ringknocker with a sheepskin under their belt.

This statement might be true for lower-end IT jobs, but it's bullshit for development work.

A computer science degree from a decent school teaches students a number of things including data structures, algorithms, hardware architecture, project management, etc. Lists, sets, and maps haven't fundamentally changed in decades. Algorithms don't change either. Dijkstra's algorithm were first published in 1959. Hardware architecture hasn't changed all that much over the years. As for project management, the main significant change in that time is that agile processes have become popular. Agile isn't exactly hard to pick up. All of this knowledge I've personally used in my years since graduation and plan to continue to use in the future. In fact, having this base level of knowledge helps me pick up and understand new technologies, which come and go.

Developers definitely benefit from computer science degrees. That's true even 20 years after the fact. Frankly, I wouldn't hire a developer without a degree. Yeah sure, maybe I might miss out on that diamond in the rough. I'd rather not deal with the uncertainty. With a degree, a developer shows that they've been exposed to a basic set of information and persevered through difficult circumstances.

FBI Interviews Employees of Russia-Linked Cyber Security Firm Kaspersky Lab

Posted by msmashView on SlashDotShareable Link
FBI agents on Tuesday paid visits to at least a dozen employees of Kaspersky Lab, a Russia-based cyber-security company, asking questions about that company's operations as part of a counter-intelligence inquiry, multiple sources familiar with the matter told NBC News. From a report: In a classic FBI investigative tactic, agents visited the homes of the employees at the end of the work day at multiple locations on both the east and west coasts, the sources said. There is no indication at this time that the inquiry is part of Special Counsel Robert Mueller's investigation into Russian election meddling and possible collusion. Kaspersky has long been of interest to the U.S. government. Its cyber-security software is widely used in the United States, and its billionaire owner, Eugene Kaspersky, has close ties to some Russian intelligence figures, according to U.S. officials.

Translation

By alexo • Score: 5, Insightful • Thread

FBI agents told employees they were not in trouble, and that the bureau was merely gathering facts [...]

Translation: They did not have valid warrants.

How incompetent!

By nospam007 • Score: 3 • Thread

"In a classic FBI investigative tactic, agents visited the homes of the employees at the end of the work day..."

Unfortunately they weren't home but in a Vodka-Bar doing 'overtime' so they had to drink Russian tea with their wives.

No warrants needed -- lying to the FBI is a felony

By swb • Score: 5, Interesting • Thread

You don't need a warrant when lying to the FBI is a felony by itself.

They don't even need to convict you of whatever crime they were interested in nor do you even need to be guilty of anything, if you lie to them you have committed a felony and will go to jail for that.

So either spill your guts completely and risk being charged with being an accessory to a conspiracy or something equally vague (hoping you're not worth the effort) or just don't even talk to them.

Re:No warrants needed -- lying to the FBI is a fel

By alexo • Score: 5, Insightful • Thread

That's why you should never talk to police

Re:Translation

By sarbonn • Score: 4, Interesting • Thread
What's shocking to this day is that people still don't realize that whenever a representative of a police agency (local, state or federal) asks to come in and ask questions, but doesn't have a warrant, you're basically inviting anything to happen. The amount of people who have been railroaded who probably thought "I have nothing to hide" should be enough to tell any rational person that it's not safe to answer any questions (unless you're the one instigating the investigation in the first place).

Vulnerability Discovered In Latest Ubuntu Distributions, Users Advised To Update

Posted by msmashView on SlashDotShareable Link
Celarent Darii writes: There is a vulnerability in the latest ubuntu distributions due to the DNS resolver included in systemd. The inclusion of the dns resolver was lamented by many on the mailing list, not without cause. All are advised to update their distribution.

Dare I say it?

By DontBeAMoran • Score: 5, Insightful • Thread

Here goes: systemd, the cause of all modern Linux problems.

systemd is completely backward in how unix systems are built. You're supposed to have tiny programs do one job and do it well. systemd is a huge monolith that's assimilating everything on its path.

Wait, why does that sound familiar?

Anyone know if the authors of systemd are getting paid by Microsoft, by any chance?

For those keeping track...

By Gravis Zero • Score: 3, Funny • Thread

SystemD has 617 issues open and there is no sign of all issues being resolved this decade.

News?

By sqorbit • Score: 3, Insightful • Thread
A vulnerability is found, update your system. How is that news? That should just be common practice. When security updates are released for your OS, update it. This is not news. Vulnerabilities are found often in all OSes. And updates are released. Seems to me like the article is attempting to call out Ubuntu rather that actually inform and educate.

Re:what a horrible dns resolver

By aardvarkjoe • Score: 5, Insightful • Thread

What problem do the systemd guys think that they're solving by adding a half-assed dns resolver to systemd? Is it just because they can't stand to have any software that's not under their direct control?

Re:Dare I say it?

By Kjella • Score: 4, Interesting • Thread

I'm not saying that systemd is the answer, but... the old init system worked great if all you ever needed was an init system. That is to say your machine got everything plugged in on boot, always on a wired network and always on AC. The only thing you need the init system for was to get you from cold hardware to a running state, then it could declare "my work here is done" and go into retirement until it was time for shutdown. For some people that's all they need, good for you. Anything dynamic has been a mess. Suspend/resume/hibernate, hot-plugging/unplugging, wired/wireless, connected/not connected to network, AC/battery, power management, docked/undocked, switchable graphics, the list goes on and on.

The track record is not much better when it comes to shared resources like window managers, composited desktops, sound cards etc. that need some kind of mediator like a compositor or sound server. You can of course say that every application should solve this on their own, but the truth is that we know they don't and there's a huge patchwork of solutions that try to make applications play nice, often competing so this application will only work with that system-level service. I can understand that you don't want to support two init systems (SysV, systemd), four sound servers (PulseAudio, ALSA, Jack, OSS), two window managers (X11, Wayland) and so on.

For this you want a modern POSIX, call it an "application execution environment" if you will. A running mediator between the applications and their surroundings, not just at boot but as long as the machine has power. Maybe this could be solved by a hundred small services of various kinds or at least that's its a better solution than one gigantic mess. But to pretend it's all working great is something of an exaggeration, to say the least.

Toshiba Sues Western Digital For $1 Billion in Damages

Posted by msmashView on SlashDotShareable Link
Toshiba has raised the stakes in an embittered legal row with its joint venture partner, suing Western Digital for a $1bn in damages and hoping Japanese courts will quash the US firm's interference in the sale of its memory chip business. From a report: The litigation, filed Wednesday in Tokyo District Court, seeks to stop Western Digital from making ownership claims over the enterprise that Toshiba is trying to sell. The Japanese company said in a statement that Western Digital's employees improperly obtained proprietary information. The relationship between Toshiba and Western Digital has gotten more acrimonious, as Toshiba moves toward a sale of the flash-memory division. Last month, Western Digital invoked an arbitration clause in their business agreement, seeking to block Toshiba's transfer of ownership of the unit to a separate legal entity in preparation for a sale. Toshiba, which has since reversed that transfer, then had its lawyers send a letter demanding that the U.S. company stop its "harassment" as Toshiba tries to sell the business.

Fuck Toshiba.

By Type44Q • Score: 3, Insightful • Thread

Fuck Toshiba. Generally decent products over the years but they were never properly backhanded for selling that milling machine to the Soviets... who we've busted our asses protecting them from. Fuck 'em with a sharp stick.

Language geek's perspective

By Idou • Score: 4, Informative • Thread
This whole need to sell their chip division started with some catastrophically poor decisions by Toshiba's Westinghouse subsidiary. Now Toshiba ability to remain a going concern is at risk by Western Digital's attempt to block this sale.

The Chinese character (kanji) for Toshiba's To is that for East.

So, clearly, this is a case of "East meets West" with disastrous results. . . Kinda of sad, considering that Toshiba's humble beginnings go back to over century ago. . .

President Trump Attacks Amazon, Incorrectly Claiming That It Owns The Washington Post For Tax Purposes

Posted by msmashView on SlashDotShareable Link
The Washington Post, which has been critical of Donald Trump and his administration in its coverage, has become the latest victim in Trump's Twitter tirade. On Wednesday, he accused Amazon of not "paying internet taxes (which they should)," adding that the company is using The Washington Post "in a scheme to dodge" the taxes. Quick fact check: Amazon doesn't own The Washington Post, Jeff Bezos -- in his personal capacity -- does. At any rate, Trump's furious tweets come a day after The Washington Post reported that a fake issue of Time magazine with Trump on the cover was hanging in some of the president's golf clubs. The timing of this is also awkward because just last week the president met with Bezos and other top executives to discuss ways the White House can modernize government and aid the tech industry. But the two have a long history. As Recode reminds: Meanwhile, Amazon is about to embark on what could be a lengthy government antitrust review of its bid to buy Whole Foods. Already looming large over the roughly $14 billion deal are the president's own comments: He has previously attacked Bezos and claimed the Post is a tax-dodging scheme for Amazon. "He thinks I'll go after him for antitrust," Trump said at one point during his campaign. "Because he's got a huge antitrust problem, because he's controlling so much, Amazon is controlling so much of what they are doing." Months later, Trump charged: "Believe me, if I become president, oh, do they have problems, they are going to have such problems." Meanwhile, Bezos isn't one to shy about his anti-Trump views either. At one point during the election, Bezos tweeted that he'd save a seat for Trump on his Blue Origin spacecraft, with the hashtag "sendDonaldtospace."

Re: So what if it was for tax purposes?

By gnick • Score: 4, Informative • Thread

...we need to scrutinize it in ways we would never do with other people...

The level of scrutiny is directly proportional to the propensity for conveying inaccurate information.

Re:Really?

By Freischutz • Score: 5, Insightful • Thread

The electoral college had its place in the early days of the US republic but it's a completely useless relic by now. It's by no means hard anymore for people to know the presidential candidates and know EXACTLY who they are voting for, there is no need for a trusted middle man who'd go and act on their behalf anymore.

Give the man a cigar... That is exactly the right answer, but most Americans just struggle trying to explain the college's purpose. I have the most fun with Republicans, they are usually the ones who earnestly believe the USA would sink into the seas in a rain of fire, brimstone and liberalism if the electoral college did not guarantee the conservative populations of sparsely populated states a much higher voting power than they'd have in a system where win without gerrymandering by gaining the majority of the popular vote, so it tends to be Republicans who end up to defending the electoral college and gerrymandering to the death.

Re:the wrong lizard might get in

By colinwb • Score: 5, Interesting • Thread
It hadn't occurred to me before, but Zaphod Beeblebrox (in The Hitchhiker's Guide to the Galaxy by Douglas Adams) is spookily predictive of Trump as US President: ... He was briefly the President of the Galaxy (a role that involves no power whatsoever, and merely requires the incumbent to attract attention so no one wonders who's really in charge, a role for which Zaphod was perfectly suited). ... As a character, Zaphod is hedonistic and irresponsible, narcissistic almost to the point of solipsism, and often extremely insensitive to the feelings of those around him. In the books and radio series, he is nevertheless quite charismatic which causes many characters to ignore his other flaws. ... Throughout the book and radio versions of the story, Zaphod is busy carrying out some grand scheme, has no clue as to what it is and is unable to do anything but follow the path that he laid out for himself. ...

Re:So what if it was for tax purposes?

By MightyMartian • Score: 4, Informative • Thread

Yes, and if Amazon did buy the Washington Post to take advantage of any losses, that's perfectly legitimate as well, not that that is actually what appears to be happening.

Quick Sanity Check

By sexconker • Score: 3 • Thread

Quick fact check: Amazon doesn't own The Washington Post, Jeff Bezos -- in his personal capacity -- does.

Quick sanity check: As long as Bezos runs Amazon, Amazon effectively owns The Washington Post.

Former Yahoo CEO Marissa Mayer Defends Former Uber CEO Travis Kalanick

Posted by msmashView on SlashDotShareable Link
An anonymous reader writes: Former Uber CEO Travis Kalanick has absorbed blistering criticism for the way he handled allegations of sexual misconduct at the San Francisco riding-hailing service. But he can at least count on the support of one big name in Silicon Valley: former Yahoo CEO Marissa Mayer. Speaking at the annual Stanford Directors' College Tuesday, Mayer defended Kalanick, suggesting that he was unaware of the toxic culture brewing at Uber because of the company's rapid growth. Mayer's name has come up in reports as a possible replacement for Kalanick at Uber, though there's no indication the company has had talks with her. "Scale is incredibly tricky," Mayer said. "I count Travis as one of my friends. I think he's a phenomenal leader; Uber is ridiculously interesting. I just don't think he knew," she said. "When your company scales that quickly, it's hard." Mayer then compared Uber's situation to the early days of Google when it first brought in Eric Schmidt as CEO to help co-founders Sergey Brin and Larry Page manage the company.

Re:What?

By swb • Score: 5, Insightful • Thread

Definitely this.

Shareholders chasing him out isn't about him being a bad leader, but them just protecting their interests and the company's PR standing.

An "uninterested" third party CEO criticizing him and saying there was a standard of leadership he failed to achieve opens the door to other CEOs being held to higher standards or facing criticism, too. So Mayer's defense of him seems not unexpected.

On the other hand, I think she does have some kind of point about this. To my naive mind, scaling a company like Uber up as fast as it has sounds like surfing a landslide that only gets bigger and faster. You have to delegate a ton of shit and can't pay close attention to a lot of it, especially if a lot of your energy is devoted towards business expansion, not existing operations.

As for the harassment culture, I always wonder at what point you can hold one person responsible for a culture populated by hundreds or thousands of individuals. Maybe he was all bro culture at the beginning and new hires just picked it up and perpetuated it.

The irony in all of this is that we pay CEOs like they were all-knowing, all-seeing, all-powerful and deserve to reap 99% of the rewards of the entire organization because they were 99% responsible for all of it getting done. This seems dubious on the surface, more so when executives like Mayer make the (possibly reasonable) excuses that he really isn't all-seeing, all-knowing. I mean which is it, CEOs are superhuman or they're not? If not, why pay them like they are?

It's his Job to Know

By rsilvergun • Score: 3 • Thread
It's literally what he does for a living. Why is it when the guy that makes your Hamburger screws up he's relentlessly savaged but a CEO does it it's OK. Oh, wait. Ruling Class takes care of their own. Silly me.

Re:What?

By hipp5 • Score: 5, Insightful • Thread

You have to delegate a ton of shit and can't pay close attention to a lot of it, especially if a lot of your energy is devoted towards business expansion, not existing operations.

As for the harassment culture, I always wonder at what point you can hold one person responsible for a culture populated by hundreds or thousands of individuals. Maybe he was all bro culture at the beginning and new hires just picked it up and perpetuated it.

More than likely this is the case, and that is his failing. As you correctly pointed out, a CEO can't deal with every minutia of a company. Their job, therefore, is to set the culture and expectations such that the peons who deal with the minutia do the "right" thing. A good leader knows that simple signals can have ripples throughout a whole company. Founding a company on bro culture leads to a company where harassment is tolerated.

Re:Not his only failing

By serviscope_minor • Score: 5, Insightful • Thread

If financial success of a company is the only important metric, then sure Travis is a phenomenal leader.

More like if the ability to raise venture funding is the only important metric. Financially, for everything except venture money, they're doing rather badly.

Please

By Ryanrule • Score: 3 • Thread
She got her job at google by working on her knees.

The Guardian Backtracks On WhatsApp 'Backdoor' Report

Posted by msmashView on SlashDotShareable Link
Five months after The Guardian published an investigative report, in which it found a "backdoor" in the Facebook-owned service, the publication is finally making amendments. The January report immediately stirred controversy among security experts, who began questioning The Guardian's piece. Weeks later, Zeynep Tufekci, a researcher and op-ed writer for the New York Times, published an open letter with over 70 major security researchers working at major universities and companies like Google condemning the story, and asking the publication to retract it.. Paul Chadwick, The Guardian's reader's editor, said " The Guardian was wrong to report last January that the popular messaging service WhatsApp had a security flaw so serious that it was a huge threat to freedom of speech." From his article: In a detailed review I found that misinterpretations, mistakes and misunderstandings happened at several stages of the reporting and editing process. Cumulatively they produced an article that overstated its case. The Guardian ought to have responded more effectively to the strong criticism the article generated from well-credentialled experts in the arcane field of developing and adapting end-to-end encryption for a large-scale messaging service. The original article -- now amended and associated with the conclusions of this review -- led to follow-up coverage, some of which sustained the wrong impression given at the outset. The most serious inaccuracy was a claim that WhatsApp had a "backdoor", an intentional, secret way for third parties to read supposedly private messages. This claim was withdrawn within eight hours of initial publication online, but withdrawn incompletely. The story retained material predicated on the existence of a backdoor, including strongly expressed concerns about threats to freedom, betrayal of trust and benefits for governments which surveil. In effect, having dialled back the cause for alarm, the Guardian failed to dial back expressions of alarm.

Microsoft's Telemetry Shows Petya Infections in 65 Countries Around the World

Posted by msmashView on SlashDotShareable Link
From a blog post by Microsoft: On June 27, 2017 reports of a ransomware infection began spreading across Europe. We saw the first infections in Ukraine, where more than 12,500 machines encountered the threat. We then observed infections in another 64 countries, including Belgium, Brazil, Germany, Russia, and the United States. The new ransomware has worm capabilities, which allows it to move laterally across infected networks. Based on our investigation, this new ransomware shares similar codes and is a new variant of Ransom:Win32/Petya. This new strain of ransomware, however, is more sophisticated. [...] Initial infection appears to involve a software supply-chain threat involving the Ukrainian company M.E.Doc, which develops tax accounting software, MEDoc. Although this vector was speculated at length by news media and security researchers -- including Ukraine's own Cyber Police -- there was only circumstantial evidence for this vector. Microsoft now has evidence that a few active infections of the ransomware initially started from the legitimate MEDoc updater process. A New York Times reports how rest of the world is dealing with Petya. From the article: A fuller picture of the impact will probably emerge in the coming days. But companies and government offices worldwide appeared less affected than the WannaCry attack, notably in places like China, which was hard hit in May. Reports from Asia suggested that many of the companies hit were the local arms of European and American companies struck on Tuesday. In Mumbai, India, a port terminal operated by A.P. Moller-Maersk, the Danish shipping giant, was shut after it disclosed that it had been hit by the malware. In a statement, Indian port authorities said they were taking steps to relieve congestion, such as finding places to park stranded cargo. The attack shut the terminal down on Tuesday afternoon. On the Australian island of Tasmania, computers in a Cadbury chocolate factory owned by Mondelez International, the American food company, displayed the ransomware message, according to the local news media.

Re:Telemetry

By Big Hairy Ian • Score: 5, Interesting • Thread
I think the interesting thing here is even 15 year old unsupported M$ OSs are bleeding telemetry.

Re:Act of war

By Big Hairy Ian • Score: 5, Insightful • Thread

Let's not bullshit or pretend that being "techie" makes it somehow better. Malware = terrorism. And yes, that swings both ways.

Actually Malware = Extortion in this instance

infected

By roc97007 • Score: 5, Funny • Thread

Yeah, I know, my machine got infected. I know 'cuz I got a call just the other day from a very helpful person. "Hello, I'm from The Microsoft, ok? I'm calling you about your computer, ok? Your computer is infested with the viruses, ok?" He helped me straighten it out. Cost me $300 and my machine runs a little slower now, but I'm sure it was worth it.

Re:MS Users Deserve It

By unrtst • Score: 5, Insightful • Thread

You are exactly the person the GP was referring to.
You acknowledge that you (or some business) has purposefully chosen software that ONLY runs under windows. That software goes out of its way to ensure you can not run it under emulation (as opposed to embracing those common libraries and making minor updates to make it compatible, as other providers have done). Then you embrace the hole you were shoved into, rather than finding software to avoid these endless recurring issues.

There was no mention of Linux anywhere in the GP post, but you dragged that in. You say you're a linux fan, but I don't buy it. You refer to this guy like he's a nutter, and then associate him with Linux. How is that something a Linux fan would do? Or maybe you referred to Linux because you believe it's secure and/or less vulnerable to these issues?

It's not like you simply don't remember the past, and so are condemned to repeat it. You know it, and still make that decision. Yep, you deserve what you know you are going to get.
[Morrison] https://www.youtube.com/watch?...

Re:MS Users Deserve It

By Dunbal • Score: 4, Interesting • Thread

Seems you conveniently forgot what ultimately caused all of this shit.

Microsoft leaving an unpatched security hole in their OS for well over a decade caused all of this. It remains to be seen whether they did this INTENTIONALLY in collusion with the CIA/NSA, trusting in "security by obscurity", or through plain old negligence/incompetence. It's pretty obvious that when the chips are down they will plead the latter, but many suspect it's the former.

Contractors Lose Jobs After Hacking CIA's In-House Vending Machines

Posted by BeauHDView on SlashDotShareable Link
An anonymous reader quotes a report from TechRepublic: Today's vending machines are likely to be bolted to the floor or each other and are much more sophisticated -- possibly containing machine intelligence, and belonging to the Internet of Things (IoT). Hacking this kind of vending machine obviously requires a more refined approach. The type security professionals working for the U.S. Central Intelligence Agency (CIA) might conjure up, according to journalists Jason Leopold and David Mack, who first broke the story A Bunch Of CIA Contractors Got Fired For Stealing Snacks From Vending Machines. In their BuzzFeed post, the two writers state, "Several CIA contractors were kicked out of the Agency for stealing more than $3,000 in snacks from vending machines according to official documents... ." This October 2013 declassified Office of Inspector General (OIG) report is one of the documents referred to by Leopold and Mack. The reporters write that getting the records required initiating a Freedom Of Information Act lawsuit two years ago, adding that the redacted files were only recently released. The OIG report states Agency employees use an electronic payment system, developed by FreedomPay, to purchase food, beverages, and goods from the vending machines. The payment system relies on the Agency Internet Network to communicate between vending machines and the FreedomPay controlling server. The OIG report adds the party hacking the electronic payment system discovered that severing communications to the FreedomPay server by disconnecting the vending machine's network cable allows purchases to be made using unfunded FreedomPay cards.

Re:Who wrote this?

By swb • Score: 5, Insightful • Thread

The CIA or any organization like it wants unicorns. They want the tiny subset of the Venn diagram where people are bold thinkers AND organizationally compliant rule followers.

Like high-end spec-ops, not only do they want really tough super-athletes, they want high intelligence, independent thinkers AND chain of command rule followers.

It's a small subset of people that match all those qualities.

Re: Who wrote this?

By c • Score: 5, Interesting • Thread

If somebody is willing to steal a $1 candy bar, do you really want to trust them with information...

Yeah. My immediate thought is that it might even be intentional; having known and and easy-to-exploit vulnerability in a non-essential system would be a really great way to weed out these kinds of idiots. I don't think it's unreasonable for intelligence agencies to test their employees in one form or another.

FreedomPay

By tangent3 • Score: 4, Insightful • Thread

Contractors did not realize the "free" in FreedomPay means free speech not free beer.

Re:should be thanked not sacked

By Pascoea • Score: 5, Insightful • Thread

A supermarket left open but unstaffed all day with no security would suffer amazing amounts of loss. But whose fault would this be?

[emphasis mine]

The people who stole the stuff. It's ALWAYS the fault of the person who stole the stuff. 100% of the time. If I don't lock my door and people clean out my house that makes me an idiot, but the person that cleaned it out is still the guilty party. (The insurance company may exercise their "idiot clause" and not reimburse me for my stuff because of my negligence. But that's not relevant to the conversation, the thief is still a thief, and should get the appropriate punishment if caught.)

So why reward the incompetent by expecting an unrequired level of honesty from users?

I agree, this is terrible programming. There are definitely ways around spotty connectivity, and FreedomPay has most definitely let their customer down by not adequately protecting their interest. I'm sure you wouldn't have to hunt around too long for a civil lawyer that would be willing to sue FreedomPay for their negligence, but that doesn't excuse the workers who exploited that negligence.

Re: Who wrote this?

By ScentCone • Score: 5, Insightful • Thread
It's not about the candy bar. It's about how the willingness to steal something that cheap tells you what you need to know about the value system and ethics of the person who does it. How is this not clear to you?