Slashdot Mirror

theodp writes "Formerly only available to Apps Users, Google has made Apps Script available to everyone (sample script), including you Google Docs low-lifers. Apps Script lets you automate actions across spreadsheets, sites, calendars, and other Google services. No spamming, kids!"

Barence writes "Google has stepped up its assault on Microsoft's productivity software with the acquisition of a start-up company that allows Office users to edit and share their documents on the Web. The search giant has acquired DocVerse for an undisclosed sum. Product manager Jonathan Rochelle said DocVerse software makes it easier for users and businesses to move their existing PC documents to the cloud, and that Google 'fell in love with what they were doing to make that transition easier.' Microsoft said in an emailed statement that Google's acquisition of DocVerse acknowledges that customers want to use and collaborate with Office documents. 'Furthermore, it reinforces that customers are embracing Microsoft's long-stated strategy of software plus services, which combines rich client software with cloud services.'"

Hugh Pickens writes "Journalist Alan D. Mutter reports on his blog 'Reflections of a Newsosaur' that a coalition of traditional and digital publishers is launching the first-ever concerted crackdown on copyright pirates on the Web. Initially targeting violators who use large numbers of intact articles, the first offending sites to be targeted will be those using 80% or more of copyrighted stories more than 10 times per month. In the first stage of a multi-step process, online publishers identified by Silicon Valley startup Attributor will be sent a letter informing them of the violations and urging them to enter into license agreements with the publishers whose content appears on their sites. In the second stage Attributor will ask hosting services to take down pirate sites. 'We are not going after past damages' from sites running unauthorized content says Jim Pitkow, the chief executive of Attributor. The emphasis, Pitkow says is 'to engage with publishers to bring them into compliance' by getting them to agree to pay license fees to copyright holders in the future. Offshore sites will not be immune from the crackdown: almost all of them depend on banner ads served by US-based services, and the DMCA requires the ad service to act against any violator. Attributor says it can interdict the revenue lifeline at any offending site in the world." One possible weakness in Attributor's business plan, unless they intend to violate the robots.txt convention: they find violators by crawling the Web.

billandad writes "Anyone would think the timing was deliberate; just as Microsoft is forced into giving users the option to switch from IE via the browser ballot screen, so Google introduces a new Chrome beta with enhanced privacy features to chisel away at Microsoft's market share. '... you can control how browser cookies, images, JavaScript, plug-ins, and pop-ups are handled on a site-by-site basis. For example, you can set up cookie rules to allow cookies specifically only for sites that you trust, and block cookies from untrusted sites.' The new beta also adds language detection, and will prompt the user to translate a page if it's written in a foreign tongue."

NewYorkCountryLawyer writes "A 3-judge panel of the US Court of Appeals for the 5th Circuit has ruled that a Texas teenager was not entitled to invoke the innocent infringement defense in an RIAA file-sharing case where she had admittedly made unauthorized downloads of all of the 16 song files in question, and had not disputed that she had 'access' to the CD versions of the songs which bore copyright notices. The 11-page decision (PDF) handed down in Maverick Recording v. Harper seems to equate 'access' with the mere fact that CDs on sale in stores had copyright notices, and that she was free to go to such stores. In my opinion, however, that is not the type of access contemplated in the statute, as the reference to 'access' in the statute was intended to obviate the 'innocence' defense where the copy reproduced bore a copyright notice. The court also held that the 'making available' issue was irrelevant to the appeal, and that the constitutional argument as to excessiveness of damages had not been preserved for appeal."

spidweb writes "Much virtual ink has been spilled over Ubisoft's new, harsh DRM system for Assassin's Creed 2. You must have a constant internet connection, and, if your connection breaks, the game exits. While this has angered many (and justifiably so), most writers on the topic have made an error. They think that this system, like all DRM systems in the past, will be easily broken. This article explains why, as dreadful as the system is, it does have a chance of holding hackers off long enough for the game to make its money. As such it is, if nothing else, a fascinating experiment. From the article: 'Assassin's Creed 2 is different in a key way. Remember, all of its code for saving and loading games (a significant feature, I'm sure you would agree) is tied into logging into a distant server and sending data back and forth. This vital and complex bit of code has been written from the ground up to require having the saved games live on a machine far away, with said machine being programmed to accept, save, and return the game data. This is a far more difficult problem for a hacker to circumvent.'"

An anonymous reader followed up on the Windows memory-leak fraud scandal, which is worth reading before you read the perpetrator's justification. "Randall C. Kennedy comes clean about his past, his relationship to Craig Barth and how it all came tumbling down. Includes an inside look at the politics of IDG and why you can never trust an IT publication that's as obsessed with page views as InfoWorld."

FTWinston writes "Three Italian Google executives have been convicted of privacy violations in Italy over the contents of a YouTube video showing a boy with Downs syndrome being bullied — despite the fact that the video was removed as soon as it was brought to their attention, and that Google assisted the authorities in locating those who posted it. Prosecutors argued that Google should have sought the consent of all parties involved with the video before allowing it to go online. Quite how they were meant to achieve this is another matter." Google has responded by saying this is a Serious threat to the web.

CWmike writes "A federal judge on Monday ordered the Pennsylvania school district accused of spying on its students to stop activating the cameras in school-issued MacBook laptops. According to the original complaint, Blake Robbins was accused by a Harriton High School assistant principal of 'improper behavior in his home' and shown a photograph taken by his laptop as evidence. In an appearance on network television last Saturday, Robbins said he was accused by the assistant principal of selling drugs and taking pills — but he claimed the pictures taken by his computer's camera showed him eating candy. Also on Monday, the company selling the software used by the school district to allegedly spy on its students blasted what it called laptop theft-recovery 'vigilantism.'" jamie found two posts from stryde.hax pointing out suggestive information about one school district network administrator, and coaching students how to determine if their school-issued laptops were infected with the LANRev software used to operate the cameras remotely and in secret.

CWmike writes "A federal judge on Monday ordered the Pennsylvania school district accused of spying on its students to stop activating the cameras in school-issued MacBook laptops. According to the original complaint, Blake Robbins was accused by a Harriton High School assistant principal of 'improper behavior in his home' and shown a photograph taken by his laptop as evidence. In an appearance on network television last Saturday, Robbins said he was accused by the assistant principal of selling drugs and taking pills — but he claimed the pictures taken by his computer's camera showed him eating candy. Also on Monday, the company selling the software used by the school district to allegedly spy on its students blasted what it called laptop theft-recovery 'vigilantism.'" jamie found two posts from stryde.hax pointing out suggestive information about one school district network administrator, and coaching students how to determine if their school-issued laptops were infected with the LANRev software used to operate the cameras remotely and in secret.

An anonymous reader writes "Ex-MySQL'er Brian Aker goes into the history of MySQL and the GPL. His point is that MySQL used the GPL in an over-reaching manner; and now that MySQL is gone as an entity, and the campaigns are over, that the GPL may return to an accurate definition."

Kelson writes "Have you noticed that there haven't been many updates to Gears in a while? That's because Google has decided to focus instead on similar capabilities in the emerging HTML5 standard: local storage, database, workers and location cover similar functionality, but natively in the web browser. Of course, since Gears and HTML APIs aren't exactly the same, it's not a simple drop-in replacement, so they'll continue supporting the current version of Gears in Firefox and Internet Explorer. I guess this means the long-anticipated Gears support for 64-bit Firefox on Linux and Opera are moot."

NewYorkCountryLawyer writes "The final brief (PDF) filed by the defendant Joel Tenenbaum in SONY BMG Music Entertainment v. Tenenbaum seems to put the final nail in the coffin on the RIAA's argument that 'statutory damages' up to $150,000 can be awarded where the record company's lost profit is in the neighborhood of 35 cents. Not only do Tenenbaum's lawyers accurately describe the applicable caselaw and scholarship, something neither the RIAA nor the Department of Justice did in their briefs, but they point out to the Court that the US Court of Appeals for the First Circuit — the appeals court controlling this matter — has itself ruled that statutory damages awards are reviewable for due process considerations under the guidelines of State Farm v. Campbell and BMW v. Gore. The brief is consistent with the amicus curiae brief filed in the case last year by the Free Software Foundation."

NewYorkCountryLawyer writes "The final brief (PDF) filed by the defendant Joel Tenenbaum in SONY BMG Music Entertainment v. Tenenbaum seems to put the final nail in the coffin on the RIAA's argument that 'statutory damages' up to $150,000 can be awarded where the record company's lost profit is in the neighborhood of 35 cents. Not only do Tenenbaum's lawyers accurately describe the applicable caselaw and scholarship, something neither the RIAA nor the Department of Justice did in their briefs, but they point out to the Court that the US Court of Appeals for the First Circuit — the appeals court controlling this matter — has itself ruled that statutory damages awards are reviewable for due process considerations under the guidelines of State Farm v. Campbell and BMW v. Gore. The brief is consistent with the amicus curiae brief filed in the case last year by the Free Software Foundation."

One intrepid Android fan is extolling the virtues of the open smartphone platform that helped him to route SOS messages in the recent Haiti disaster. "Well, when you are in such a situation, you don't really think about going to Facebook, but it happens that I have a Facebook widget on my Android home screen that regularly displays status updates from my friends. All of a sudden, an SOS message appeared on my home screen as a status update of a friend on my network. Not all smartphones allow you to customize your home screen, let alone letting you put widgets on it. So, I texted Steven about it. As Steven had already been working with the US State Department on Internet development activities in Haiti, he quickly called a senior staff member at the State Department and asked how to get help to the people requesting it from Haiti. State Department personnel requested a short description and a physical street address or GPS coordinates. Via email and text messaging, I was able to relay this information from Port-au-Prince to Steven in Oregon, who relayed it to the State Department in Washington DC, and it was quickly forwarded to the US military at the Port-au-Prince airport and dispatched to the search-and-rescue (SAR) teams being assembled. So the data went from my Android phone to Oregon to Washington DC and then back to the US military command center at the Port-au-Prince airport. I was at first a little skeptical about their reaction: there was so much destruction; they probably already had their hands full. Unexpectedly, they replied back saying: 'We found them, and they are alive! Keep it coming.'"

AVee writes "Intel and Nokia just announced a new project called MeeGo. MeeGo is supposed to be the result of merging Maemo and Moblin, bringing together the best pieces of those (already quite similar platforms). Interestingly this means that Intel will be sponsoring a mobile Linux distro which will run on ARM."

agoston.horvath writes "I've written a HOWTO on replacing Mac OS X's built-in encryption (FileVault) with the well-known FUSE-based EncFS. It worked well for me, and most importantly: it is a lot handier than what Apple has put together. This is especially useful if you are using a backup solution like Time Machine. Includes Whys, Why Nots, and step-by-step instructions."

CWmike writes "Just two days after launching its Buzz social networking tools, Google said Thursday night that it had tweaked the technology to address early privacy concerns. Google said in a blog post that the quick updates makes it easier for users to block access to their pages and eases the path to finding two privacy features. 'We've had plenty of feature requests, and some direct feedback,' wrote Todd Jackson, a product manager for Gmail and Google Buzz, in the blog post. 'In particular there's been concern from some people who thought their contacts were being made public without their knowledge (in particular the lists of people they follow, and the people following them). In addition, others felt they had too little control over who could follow them and were upset that they lacked the ability to block people who didn't yet have public profiles from following them.'"

NewYorkCountryLawyer writes "Not satisfied with the reduced $54,000 verdict which the Judge allowed it in Capitol Records v. Thomas-Rasset, representing approximately 6500 times the amount of their actual damages, the RIAA has decided to take its chances on a third trial, at which it could only win a verdict that is equal to, or less than, $54,000. Since a 3rd trial in and of itself makes no economic sense, and since the RIAA's lawyers inappropriately added 7 pages of legal argument to their 'notice', it can only be assumed that the reason they are opting for a 3rd trial is to hope that they can somehow bait the Judge into making an error that will help them on an appeal."

gmuslera writes "Not enough speed from your ISP? Google seems to go into that market too. 'We're planning to build and test ultra high-speed broadband networks in a small number of trial locations across the United States. We'll deliver Internet speeds more than 100 times faster than what most Americans have access to today with 1 gigabit per second, fiber-to-the-home connections. We plan to offer service at a competitive price to at least 50,000 and potentially up to 500,000 people.' The goal isnt just to give ultra fast speed for some lucky ones, but to test under that conditions things like new generations of apps, and deployment techniques that take advantage of it." If they need a test neighborhood, I'm sure mine would be willing.

An anonymous reader writes "Many games developers have been pursuing agile development, and we are now beginning to witness the debris and chaos it has caused. While there have been some successes, there have also been many casualties. As the industry at large is moving away from the phantasmagoria of Agile, Gwaredd Mountain, Technical Director at Climax Studios, looks at Post-Agile and what this might mean for the games industry."

gjt writes "I initially posted a piece ragging on the Nexus One. But then a commenter pointed out a problem with my initial logic, and after doing some math I concluded that the $529 unlocked/unsubsidized Google Nexus One gPhone is much cheaper than it appears to be. In fact it's only $49 over two years — and that's unlocked! Google likes to say that the Nexus One represents 'Our new approach to buying a mobile phone.' But it actually seems as though T-Mobile deserves most of the credit by providing a $20/month discount to customers who purchase an unsubsidized phone, a fact that didn't seem to get much attention when T-Mobile created the plan last October."

snydeq writes "Google is pushing out an update for the Nexus One that will fix a 3G connectivity problem and add limited support for multitouch. After receiving over 1,500 messages in a support forum from people complaining about trouble connecting to 3G, Google said it has identified the problem and has started delivering the fix. In addition to fixing 3G, the update adds the first applications to support multitouch. While the recent versions of the Android OS include multitouch capability, no phone in the US has supported it."

NewYorkCountryLawyer writes "The 5-year-old case of UMG Recordings v. Lindor (which we've discussed all those years) has come to a close in Brooklyn, without ever reaching the deposition and document production of MediaSentry. The District Judge denied the RIAA's motions for discovery sanctions but granted the RIAA's motion for voluntary dismissal without prejudice and without attorneys fees, adopting the report and recommendation of the Magistrate Judge."

NewYorkCountryLawyer writes "The 5-year-old case of UMG Recordings v. Lindor (which we've discussed all those years) has come to a close in Brooklyn, without ever reaching the deposition and document production of MediaSentry. The District Judge denied the RIAA's motions for discovery sanctions but granted the RIAA's motion for voluntary dismissal without prejudice and without attorneys fees, adopting the report and recommendation of the Magistrate Judge."

itwbennett writes "Google announced Friday that it will be phasing out support for Internet Explorer 6, more than two weeks after the attacks on Google's servers that targeted a vulnerability in IE6. In a blog post, Rajen Sheth, Google Apps senior product manager, said that support for IE6 in Google Docs and Google Sites will end March 1. At that point, IE6 users who try to access Docs or Sites may find that 'key functionality' won't work properly. Sheth suggested that customers upgrade their browsers to pretty much anything else."

NewYorkCountryLawyer writes "There seems to be a bit of confusion in RIAA-land these days, caused by the only 2 cases that ever went to trial, Capitol Records v. Thomas-Rasset in Minnesota, and SONY BMG Music Entertainment v. Tenenbaum, in Boston. In both cases, the RIAA has recently asked for extensions of time. In Thomas-Rasset, they've asked for more time to make up their mind as to whether to accept the reduced verdict of $54,000 the judge has offered them, and in Tenenbaum they've twice asked for more time to prepare their papers opposing Tenenbaum's motion for remittitur. What is more, it has been reported that after the reduction of the verdict, the RIAA offered to settle with Ms. Thomas-Rasset for $25,000, but she turned them down."

ElusiveJoe writes "Google, along with a group of DNS and content providers, hopes to alter the DNS protocol. Currently, a DNS request can be sent to a recursive DNS server, which would send out requests to other DNS servers from its own IP address, thus acting somewhat similar to a proxy server. The proposed modification would allow authoritative nameservers to expose your IP address (instead of an address of your ISP's DNS server, for example) in order to 'load balance traffic and send users to a nearby server.' Or it would allow any interested party to look at your DNS requests. Or it would send a user from Iran or Libya to a 'domain name doesn't exist' server."

itwbennett writes "On Friday, George Hotz, best known for cracking Apple's iPhone, said he had managed to hack the PlayStation 3 after five weeks of work with 'very simple hardware cleverly applied, and some not so simple software.' Days later, he has now released the exploit, saying in a blog post that he wanted to see what others could do with it. 'Hopefully, this will ignite the PS3 scene, and you will organize and figure out how to use this to do practical things, like the iPhone when jailbreaks were first released,' he wrote. 'I have a life to get back to and can't keep working on this all day and night.'" Reader MBCook points out an article written by Nate Lawson "explaining how the hack bypasses the hypervisor to gain unrestricted access to memory. It seems the trick is to use a pulse to glitch the hypervisor while it's unmapping memory, leaving a favorable page table entry."

Several readers have sent word that George Hotz (a.k.a. geohot), the hacker best known for unlocking Apple's iPhone, says he has now hacked the PlayStation 3. From his blog post: "I have read/write access to the entire system memory, and HV level access to the processor. In other words, I have hacked the PS3. The rest is just software. And reversing. I have a lot of reversing ahead of me, as I now have dumps of LV0 and LV1. I've also dumped the NAND without removing it or a modchip. 3 years, 2 months, 11 days...that's a pretty secure system. ... As far as the exploit goes, I'm not revealing it yet. The theory isn't really patchable, but they can make implementations much harder. Also, for obvious reasons I can't post dumps. I'm hoping to find the decryption keys and post them, but they may be embedded in hardware. Hopefully keys are setup like the iPhone's KBAG."

bonch writes "Following in YouTube's footsteps, Vimeo has now introduced its own beta HTML5 video player, and like YouTube, it uses H.264 and requires Safari, Chrome, or ChromeFrame. The new player doesn't suffer the rebuffering problems of the Flash version when clicking around in the video's timeline, and it also loads faster. HTML5 could finally be gaining some real momentum."

bonch writes "YouTube is now offering the experimental option to view all YouTube videos using HTML5 in H.264 format. Supported browsers are Chrome, Safari, and the ChromeFrame plug-in for Internet Explorer. Captions, ads, and annotations aren't yet supported but are coming soon."

NewYorkCountryLawyer writes "Despite having had some time to get their act together, Obama's Department of Justice has filed yet another brief defending the RIAA's outlandish statutory damages theory — that someone who downloaded an mp3 with a 99-cent retail value, causing a maximum possible damages of 35 cents, is liable for from $750 to $150,000 for each such file downloaded, in SONY BMG Music Entertainment v. Tenenbaum. The 25- page brief (PDF) continues the DOJ's practice of (a) ignoring the case law which holds that the Supreme Court's due process jurisprudence is applicable to statutory damages, (b) ignoring the law review articles to like effect, (c) ignoring the actual holding of the 1919 case they rely upon, (d) ignoring the fact that the RIAA failed to prove 'distribution' as defined by the Copyright Act, and (e) ignoring the actual wording and reasoning of the Supreme Court in its leading Gore and Campbell decisions. Jon Newton of p2pnet.net attributes the Justice Department's 'oversights' to the 'eye-popping number of people [in its employ] who worked for, and/or are directly connected with, Vivendi Universal, EMI, Warner Music and Sony Music's RIAA.'"

An anonymous reader writes with this excerpt from a tongue-in-cheek blog post which puts publisher worries about ebook piracy into perspective: "Hot on the heels of the story in Publisher's Weekly that 'publishers could be losing out on as much $3 billion to online book piracy' comes a sudden realization of a much larger threat to the viability of the book industry. Apparently, over 2 billion books were 'loaned' last year by a cabal of organizations found in nearly every American city and town. Using the same advanced projective mathematics used in the study cited by Publishers Weekly, Go To Hellman has computed that publishers could be losing sales opportunities totaling over $100 billion per year, losses which extend back to at least the year 2000. ... From what we've been able to piece together, the book 'lending' takes place in 'libraries.' On entering one of these dens, patrons may view a dazzling array of books, periodicals, even CDs and DVDs, all available to anyone willing to disclose valuable personal information in exchange for a 'card.' But there is an ominous silence pervading these ersatz sanctuaries, enforced by the stern demeanor of staff and the glares of other patrons. Although there's no admission charge and it doesn't cost anything to borrow a book, there's always the threat of an onerous overdue bill for the hapless borrower who forgets to continue the cycle of not paying for copyrighted material."

The latest internet sensation is the Sleep Talkin' Man. The blog was created by Karen Slavick-Lennard and is a collection of things her husband Adam says during his sleep. The site has attracted a lot of attention, getting half-a-million views from more than 50 countries this week alone. Some of Adams best utterances include: "Don't leave the duck there. It's totally irresponsible. Put it on the swing, it'll have much more fun"; "Ooh! My balls are itchy. Have you got the cheese grater?"; and "I've got a badger, a dog, a cat and a sack." Back in 92' my sleeping college suitemate told a group of us, "A girl, a loincloth, and a small car. that's all you need." Looks like I missed the boat on this one.

NewYorkCountryLawyer writes "After Starr v. SONY BMG Music Entertainment was dismissed at the District Court level, the antitrust class action against the RIAA has been reinstated by the US Court of Appeals for the Second Circuit. In its 25-page opinion (PDF), the Appeals court held the following allegations sufficiently allege antitrust violations: 'First, defendants agreed to launch MusicNet and pressplay, both of which charged unreasonably high prices and contained similar DRMs. Second, none of the defendants dramatically reduced their prices for Internet Music (as compared to CDs), despite the fact that all defendants experienced dramatic cost reductions in producing Internet Music. Third, when defendants began to sell Internet Music through entities they did not own or control, they maintained the same unreasonably high prices and DRMs as MusicNet itself. Fourth, defendants used MFNs [most favored nation clauses] in their licenses that had the effect of guaranteeing that the licensor who signed the MFN received terms no less favorable than terms offered to other licensors. For example, both EMI and UMG used MFN clauses in their licensing agreements with MusicNet. Fifth, defendants used the MFNs to enforce a wholesale price floor of about 70 cents per song. Sixth, all defendants refuse to do business with eMusic, the #2 Internet Music retailer. Seventh, in or about May 2005, all defendants raised wholesale prices from about $0.65 per song to $0.70 per song. This price increase was enforced by MFNs.'"

Mitch Lasky was the executive vice president of Mobile and Online at Electronic Arts until leaving the publisher to work at an investment firm. He now has some harsh things to say about how EA has been run over the past several years, in particular criticizing the decisions of CEO John Riccitiello. Quoting: "EA is in the wrong business, with the wrong cost structure and the wrong team, but somehow they seem to think that it is going to be a smooth, two-year transition from packaged goods to digital. Think again. ... by far the greatest failure of Riccitiello's strategy has been the EA Games division. JR bet his tenure on EA's ability to 'grow their way through the transition' to digital/online with hit packaged goods titles. They honestly believed that they had a decade to make this transition (I think it's more like 2-3 years). Since the recurring-revenue sports titles were already 'booked' (i.e., fully accounted for in the Wall Street estimates) it fell to EA Games to make hits that could move the needle. It's been a very ugly scene, indeed. From Spore, to Dead Space, to Mirror's Edge, to Need for Speed: Undercover, it's been one expensive commercial disappointment for EA Games after another. Not to mention the shut-down of Pandemic, half of the justification for EA's $850MM acquisition of Bioware-Pandemic. And don't think that Dante's Inferno, or Knights of the Old Republic, is going to make it all better. It's a bankrupt strategy."

chipmunk82 writes "Pat Robertson has blamed Tuesday's 7.3 magnitude earthquake on the Haitians' 'pact with the devil' two centuries ago while seeking liberation from the French."

spun writes "A disaster recovery team from Trilogy International Partners, LLC was among the first responders to arrive after the quake in Haiti. After seeing to the safety of their staff, they worked quickly to bring up emergency generators and restore service to the devastated country. Winners of a State Department medal for their previous work in Haiti, the company appears to be a model not only for proper disaster recovery response, but also for ethical corporate behavior. Their quick action has no doubt saved thousands of lives, but Haiti still needs our help." Keith Calder, who used to work on Slashdot ad stuff before we had big corporate owners, is now a film producer of last summer's Battle for Terra. They are giving away signed copies of the DVD to the first 100 people who make $25+ red cross donations. It would be cool to see generous Slashdot Sci-Fi fans make a difference. If you are curious or voyeuristic about the devastation, Google Maps has satellite photos.

An anonymous reader writes "YouTube's latest blog post indicated that some changes are on the way. Google has opened up a call to submit and vote on ideas. HTML 5 open video with Free formats has dominated the vote, maintaining over twice as many votes as the next-highest item almost since the vote opened up. You may vote here (Google login required). Perhaps we don't even need to since their blog post comes suspiciously soon after their revised merger with On2. Could these improvements be a completely overhauled YouTube 2.0?"

clone53421 writes "Although Gmail has long supported HTTPS as an option, Gmail announced their decision yesterday to switch everyone to HTTPS by default: 'We initially left the choice of using it up to you because there's a downside: https can make your mail slower since encrypted data doesn't travel across the web as quickly as unencrypted data. Over the last few months, we've been researching the security/latency tradeoff and decided that turning https on for everyone was the right thing to do.' I wonder if this has anything to do with the reports of Chinese users having their accounts hacked? 'Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves,' said David Drummond in that blog update. That does sound like it perhaps could be a result of insecure HTTP traffic being intercepted in transit between the users and Gmail's servers."

clone53421 writes "Although Gmail has long supported HTTPS as an option, Gmail announced their decision yesterday to switch everyone to HTTPS by default: 'We initially left the choice of using it up to you because there's a downside: https can make your mail slower since encrypted data doesn't travel across the web as quickly as unencrypted data. Over the last few months, we've been researching the security/latency tradeoff and decided that turning https on for everyone was the right thing to do.' I wonder if this has anything to do with the reports of Chinese users having their accounts hacked? 'Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves,' said David Drummond in that blog update. That does sound like it perhaps could be a result of insecure HTTP traffic being intercepted in transit between the users and Gmail's servers."

clone53421 writes "Although Gmail has long supported HTTPS as an option, Gmail announced their decision yesterday to switch everyone to HTTPS by default: 'We initially left the choice of using it up to you because there's a downside: https can make your mail slower since encrypted data doesn't travel across the web as quickly as unencrypted data. Over the last few months, we've been researching the security/latency tradeoff and decided that turning https on for everyone was the right thing to do.' I wonder if this has anything to do with the reports of Chinese users having their accounts hacked? 'Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves,' said David Drummond in that blog update. That does sound like it perhaps could be a result of insecure HTTP traffic being intercepted in transit between the users and Gmail's servers."

D H NG writes "Following a sophisticated attack on Google infrastructure originating from China late last year, Google has decided to take 'a new approach' to China. In their investigation, Google found that more than 20 large companies had been infiltrated and dozens of Chinese human rights activists' Gmail accounts had been compromised. Google has decided to 'review the feasibility of [its] business operations in China,' no longer censoring results in Google.cn, and if necessary, to 'shut down Google.cn, and potentially [Google's] offices in China.'"

ezabi writes "According to a post on the official Google blog, in the coming weeks Google Docs will offer to host all file types with a limit of 250 MB, which as they say is larger than the current limit for email attachments. This will have its consequences: paid file sharing will die, more shared pirated material, newer vulnerabilities and malware distribution channels..."

ruphus13 writes "Claiming that 'PostgreSQL is a FOSS alternative to MySQL and hence Oracle should be allowed to pursue MySQL' is a specious argument, according to Monty Widenius. He fears that Oracle, or someone else, can easily squash PostgreSQL by just 'buying out' the top 20 developers. The Postgre community has fired back, calling that claim ridiculous. According to the article, 'PostgreSQL as a project is pretty healthy, and shows how vulnerable projects like MySQL are to the winds of change. PostgreSQL could die tomorrow, if a huge group of its contributors dropped out for one reason or another and the remainder of the community didn't take up the slack. But that's exceedingly unlikely. The existing model for PostgreSQL development ensures that no single entity can control it, it can't be purchased, and if someone decides to fork the project, the odds are that the remaining community would be strong enough to continue without a serious glitch.'"

The press conference at the Googleplex is over and Google's Nexus One phone has launched (official Google blog announcement). The NY Times confirms the bare details: manufactured by HTC; $529 unlocked, $179 with 2-year T-Mobile contract; coming to Verizon in the US, and Vodaphone in Europe, in "Spring 2010." The Times notes one desirable feature: "[Google] has also voice-enabled all text boxes in the device, so a user can speak into the device to, for instance, compose an e-mail, rather than type the text of the email." Walt Mossberg points out one limitation: "On the Nexus One, only 190 megabytes of its total 4.5 gigabytes of memory is allowed for storing apps. On the $199 iPhone, nearly all of the 16 gigabytes of memory can be used for apps." No answers yet to the obvious questions: can it tether on T-Mobile? Will it allow VoIP?

An anonymous reader writes "It seems as if the MySQL author is trying hard to win back control over MySQL. In his blog he calls upon the MySQL users to 'Help keep the Internet free' by signing his petition. He fears that if Oracle buys Sun they automatically get MySQL which would spell doom for the project. But I have have mixed feelings with this call for help, because after all — who sold MySQL in the first place?"

theodp writes "Among the last batch of patents granted in 2009 was one for IBM's Resolution of Abbreviated Text in an Electronic Communications System. The invention of four IBMers addresses the hitherto unsolvable problem of translating abbreviations to their full meaning — e.g., 'IMHO' means 'In My Humble Opinion' — and vice versa. From the patent: 'One particularly useful application of the invention is to interpret the meaning of shorthand terms ... For example, one database may define the shorthand term "LOL" to mean "laughing out loud."' USPTO records indicate the patent filing was made more than a year after Big Blue called on the industry to stop what it called 'bad behavior' by companies who seek patents for unoriginal work. Yet another example of what USPTO Chief David Kappos called IBM's apparent schizophrenia on patent policy back when he managed Big Blue's IP portfolio."

iago-vL writes "Security researchers at SkullSecurity have demonstrated how the NetBIOS protocol allows trivial hijacking due to its design, through the use of a tool called 'nbpoison' (in the package 'nbtool'). If a DNS lookup fails on Windows, the operating system will broadcast a NetBIOS lookup request that anybody can respond to. One vector of attack is against business workstations on an untrusted network, like a hotel; all DNS requests for internal resources can be redirected (Exchange, proxy, WPAD, etc). Other attack vectors are discussed in a related blog post. Although similar attacks exist against DHCP, ARP and many other LAN-based protocols, we all know that untrusted systems on a LAN means game over. NetBIOS poisoning is much quieter and less likely to break other things."