Slashdot Mirror

Relin writes "Out of the millions eligible, less than 3,000 have come forward to collect their money in the 'Hot Coffee' settlement. While the plaintiffs' lawyer is surprised by the development, Theodore Frank of the Legal Center for the Public Interest at the American Enterprise Institute seems convinced that the lawsuit was 'meritless' and will result in no payment for the legal counsel opposing Take-Two."

eXchange writes "Well-known hacker Dino Dai Zovi has written an article at ZDNet discussing last week's discovery of a critical threat to Mac OS X, and another announcement of a Trojan horse exploiting this discovery. He suggests that Snow Leopard, or Mac OS X 10.6, should integrate more robust means of preventing malware attacks. Some of the suggestions he has include mandatory code-signing for kernel extensions (so only certified kernel extensions can run), sandbox policies for Safari, Mail, and third-party applications (so these applications cannot do anything to the system), and some lower-level changes, such as hardware-enforced Non-eXecutable memory and address space layout randomization."

Zathras26 writes "Slashdot has previously reported on a lawyer subpoenaing Kathleen Seidel for blogging about him in an unflattering light. Seidel successfully moved to quash the subpoena. In granting the motion to quash, the judge ordered the lawyer, Clifford Shoemaker, to show cause as to why he should not be sanctioned for his behavior. Whatever his response was, if any, it apparently wasn't good enough, because Shoemaker has been formally sanctioned for his actions."

Xeth writes "I'm a consultant with DARPA, and I'm working on an initiative to push the boundaries of neuromorphic computing (i.e. artificial intelligence). The project is designed to advance ideas all fronts, including measuring and understanding biological brains, creating AI systems, and investigating the fundamental nature of intelligence. I'm conducting a wide search of these fields, but I wanted to know if any in this community know of neat projects along those lines that I might overlook. Maybe you're working on a project like that and want to talk it up? No promises (seriously), but interesting work will be brought to the attention of the project manager I'm working with. If you want to start up a dialog, send me an email, and we'll see where it goes. I'll also be reading the comments for the story."

VindictivePantz writes to mention that scientists have discovered some bizarre properties of glass and are already applying that knowledge to create what is being called "metallic glass." "The breakthrough involved solving the decades-old problem of just what glass is. It has been known that that despite its solid appearance, glass and gels are actually in a 'jammed' state of matter — somewhere between liquid and solid — that moves very slowly. Like cars in a traffic jam, atoms in a glass are in something like suspended animation, unable to reach their destination because the route is blocked by their neighbors. So even though glass is a hard substance, it never quite becomes a proper solid, according to chemists and materials scientists."

lolococo writes to tell us that Laurent Cohen, founder of the open source project JPPF (Java Parallel Processing Framework), has decided to share what life is like for an open source contributor in general and little bit about what that means. "There came a time of coding, releasing, coding, releasing. The project started gathering some momentum, as a small community of users started to use it, but why was it not working in this case, or why did it not have this feature, or how could I do this, etc...? You get the drift. Oh my, now I had to start interacting with other folks! What was I to do? That started a (thankfully short) period of intense existential self-questioning. What was the purpose of this project? Why did I actually open-source it? I resolved this by deciding unilaterally that it would be a free contribution, for whomever would be interested enough to look into it. I also decided that it was my personal responsibility to support these brave folks into using the project, and to make it, as much as possible, a happy experience for them."

im_thatoneguy sends in an account up at Shacknews about Atari's actions to get early reviews of its upcoming game Alone In the Dark pulled from Web sites in Europe. Atari sued the German site 4Players, alleging piracy, and also cancelled an advertising deal on the site, after a pre-release review gave the game only 68%. 4Players posted a commentary (translation) alleging that Atari is doing this bcause the review is unfavorable. Shacknews reports that Atari has also demanded that both Gamer.no and GameReactor remove early reviews — both reviews gave the game a score of 3/10. Kotaku editorializes: "[Does Atari] fear that, because these outlets may have received copies of the game 'early' (i.e. from pirated copies), that they're somehow reviewing incomplete code, which could affect their opinion of the game? Maybe. Pessimists could, however, be forgiven for thinking it's a convenient excuse for Atari to attack negative reviews of the only game they're releasing in 2008 that has any chance of making them some money."

SecureThroughObscure writes "Just a short time after Apple's recent acknowledgment of and patch for the Safari Carpet Bomb 'blended' IE flaw, Microsoft researcher Billy Rios shows that Safari is still useful in a blended attack, this time with Firefox 2/3. (ZDNet's Nate McFeters also spread the word.) Rios claimed that he is able to use Carpet Bomb, despite the recent patch, to steal arbitrary files from victims who also have Firefox 2/3 installed. Both Rios and McFeters pointed out that Apple, which took some heat for not originally patching, actually did a good job of addressing the issue, as the code execution angle was not originally understood (the details came out later). Rios is withholding details of the new attack vector until Apple has had time to patch or respond to this issue."

the brown guy writes "An 18-year-old high school student named Omar Kahn is charged with 69 felonies for hacking into a school computer and modifying his grades, among other things. He changed his C, D and F grades to As, and changed 12 other students grades as well. By installing a remote access program on the school's server, Kahn was able to also change his AP scores and distribute test answer keys, and could be looking at a lengthy prison term. Not surprisingly, his parents (who have only recently immigrated to America) have decided not to post the $50,000 bail and Kahn is in jail awaiting trial."

Titoxd writes "Apple has released a new version of Safari that fixes the carpet bomb vulnerability in Safari 3.1 for Windows. This comes in the heels of Microsoft recommending against using Safari in Windows, as well as the release of code exploiting this vulnerability."

natenovs writes "China's intellectual-property rights enforcer said the government isn't probing Microsoft Corp. for breaching antitrust laws, denying yesterday's report by a state-owned newspaper. 'We are not conducting an anti-monopoly investigation against Microsoft and have no plans to do so,' Yin Xintian, a spokesman and legal director at the State Intellectual Property Office, said by telephone today in Beijing. The newspaper's report is 'completely untrue,' the agency said on its Web site."

Donald Burr of Borg writes "One of my favorite features of Netflix, the video-rental-by-mail service, is 'profiles.' Profiles lets you create 'sub-accounts' for your friends/family, so that they can share in the video rental love. Each profile gets his/her own Netflix queue that he/she can manage with their own login/password. You can divide up how many movies get sent to you vs. the other profiles under your account. E.g. if you have a 6-out-at-once plan, you can choose to get 3 movies at a time, and have 3 other profiles each receive 1 movie. Unfortunately, the fun stops September 1, at which point Netflix is, for unknown reasons, going to terminate this feature. Why? To '...help us to continue to improve the Netflix website for all our customers.' Improvement indeed."

Richter X writes "The newest update to the Nintendo Wii's Menu, version 3.3, contains code specifically designed to find and kill the popular Twilight Hack used by homebrewers to play unauthorized code on the Wii. The update also prevents the Freeloader software used to play imported games on the Wii. However, it does not seem to affect the Homebrew Channel in Wiis that already have it installed. The updated code is currently being researched in order to find what code has been changed. So far it has been confirmed that Nintendo included specific instructions to target the Twilight Hack. Work is also being done to update the Twilight Hack in order to bypass this new code."

phlurg writes "The New York Times presents an amazing article on 'the Mundaneum,' a sort of proto-WWW conceived of by Paul Otlet in 1934. 'In 1934, Otlet sketched out plans for a global network of computers (or "electric telescopes," as he called them) that would allow people to search and browse through millions of interlinked documents, images, audio and video files. He described how people would use the devices to send messages to one another, share files and even congregate in online social networks. He called the whole thing a "réseau," which might be translated as "network" — or arguably, "web."' A fascinating read." (You may be reminded of Vannevar Bush's "Memex," which shares some of the same ideas.)

Btarlinian writes "GLAST (the Gamma-ray Large Area Space Telescope) was launched Wednesday at 1605 GMT. GLAST was built in a rather interesting manner, in that much of the work was funded by the Department of Energy. In fact, the main instrument on GLAST, the Large Area Telescope was assembled at the Stanford Linear Accelerator Center. It can detect gamma rays at energies between 20 MeV and 300 GeV. Researchers will use GLAST to study some of the most massive and energetic objects known to science."

Xcott Craver writes "The 2008 Underhanded C Contest has just opened. Every year, contestants are asked to write a simple, innocent, readable C program that appears to perform an innocent task — but implements some non-obvious evil behavior. This year's challenge: redact blocks from an image, but do it so that the excised pixels can somehow be retrieved. We also have listed the winners of last year's contest, which was to write a simple encryption utility that mysteriously and undetectably fails between 1 percent and 0.1 percent of the time. The winning entry is truly impressive." We discussed the first of these contests in 2005.

mollyhackit writes "Here's a how-to guide for building a keyless entry that uses color identification instead of numbers. All eight buttons are initially blue; as you press the individual buttons they change color. Cycle the colors to your particular pattern, and you're in. This lock obviously wasn't designed for high security use since anyone in the same room would be able to see you and your amazing technicolor dream lock's pattern; it's just a fun project and will keep the youngins out of your workshop (timer prevents brute forcing). The RGB buttons are monome clones from hobby shop Sparkfun."

deadaluspark writes "I work at a local news station, and found out NASA was testing their lunar rovers in a nearby city. I pulled some strings and got our news director to send out one of our reporters. I would link to the original video on the KVEW website, but the video is screwing up on the badly designed, WMP only website. So I uploaded the package to youtube for everyone on Slashdot to enjoy. Very cool video of NASA toys in action." Don't believe anyone who says it always rains in Washington.

the_leander writes "Prime Minister Gordon Brown has narrowly won a House of Commons vote on extending the maximum time police can hold terror suspects to 42 days. There is talk of compensation packages available for the falsely accused. The chances of you getting that money however are slim to none, lets not forget, this is the same country that charges prisoners who have been falsely accused for bed and boarding costs."

bjcarne writes in to commend Jon Ramvi and his team, who have delivered their first stable release of Ubuntu Eee, an Ubuntu version customized for the Asus Eee PC. "In December Ubuntu Eee started as a one man project, but [over] the last months several people have joined in on the development. We're trying to achieve something which [hasn't] been successful for any other Linux distribution yet: a OS targeting a single computer which includes the best applications available. This means people can buy this really cheap computer and easily get a great OS on it for free. Ubuntu Eee is just for the Asus Eee. Ubuntu Eee is smaller, faster and we're bringing people the cutting edge of technology (while being stable and free of course)."

GamerGirll1138 writes to tell us Next-gen has an amusing walk down memory lane with their history of copy protection. There have been some crazy schemes over the years to ensure that you paid for your software, everything from super-secret decoder rings to ridiculous document checks. "With bandwidth expanding and more and more games publishers exploring digital distribution, there's little doubt that we're entering a new phase in the history of copy protection and those who would defeat it. What's more, the demand for games as a chosen form of entertainment has never been higher. All this considered, it's impossible to believe that the cat-and-mouse game of piracy and copy protection will not reach new levels of intensity, with new technologies deployed on each side, and that some of them will surely create new hurdles for even those who simply wish to purchase and play the newest games. Ah, for the heady days of the code wheel."

David Martinjak writes "Running Xen: A Hands-On Guide to the Art of Virtualization was published by Prentice Hall, and authored by Jeanna N. Matthews, Eli M. Dow, Todd Deshane, Wenjin Hu, Jeremy Bongio, Patrick F. Wilbur, and Brendan Johnson. The book, which will be referred to as simply Running Xen, was a great resource on Xen and virtualization from the administration side. A wide range of topics was covered from installing Xen all the way up to managing virtual resources, including migrating guest environments. Overall, the explanations were concise and understandable; while the information was presented in a straightforward manner. Running Xen was definitely a useful resource for administering systems with Xen." Keep reading for the rest of David's review. Running Xen: A Hands-On Guide to the Art of Virtualization author Jeanna N. Matthews, Eli M. Dow, Todd Deshane, Wenjin Hu, Jeremy Bongio, Patrick F. Wilbur, and Brendan Johnson pages 586 publisher Prentice Hall rating 9 reviewer David Martinjak ISBN 0132349663 summary A hands-on guide to virtualization with Xen The flow of the book was intuitive, and reasonable; this was especially valuable for discussing a newer technology where the terms could be confusing. Fortunately, the authors kept the language clear so that the reader easily could understand the subject of discussion. This unambiguous presentation of content was a welcomed feature.

Running Xen started with a thorough-enough explanation of virtualization. Several different approaches to virtualization were compared and contrasted, which should help the reader to understand where Xen resides in the whole domain. This first chapter was a great introduction as it provided just the right amount of information. At no point did I consider the explanations to be short or lacking; nor did I feel overloaded with details. The authors seemed adequately aware that the title of the book was Running Xen, and they stuck to that scope.

After the introduction, the book moved right into actually running Xen. This helped to keep the my attention on the subject, and tied back in to the proper flow of the material. At first, the chapter began with baby steps. It introduced the Xen LiveCD, and information on working within the Xen environment. Subsequent chapters moved into a more intermediate level of usage: installing Xen in a third-party distrobution, and running pre-built guest images. Popular third-party distrobutions such as Ubuntu, Gentoo, CentOS, and OpenSUSE were covered; and this section also included instructions for using compiled Xen binaries and building your own from source.

One of the topics I was most interested in was building a custom, minimal guest environment from a particular distro. Chapter 7, "Populating Guest Images", provided all of the information I was looking for along with some other interesting facts. The popular distros were covered again (Ubuntu, Gentoo, etc.), but this time a twist was added to the mix. "Populating Guest Images" started off with installing Windows XP in Xen. This was a complete surprise to me. If you prefer GNU/Linux on the server, but Windows XP on the desktop, and have been looking to consolidate with virtualization; this chapter is a must-read. The chapter also helped solidify the understanding of concepts presented earlier in the book. For example, the first chapter discussed two different types of guests: paravirtual (PV) and Hardware Virtual Machine (HVM). In "Populating Guest Images", the authors led the reader through building guests of each type. The process was presented in a logical fashion which was easy to follow, making the book that much more enjoyable.

Running Xen then moved on to putting the guests on the network. Chapter 10, "Network Configuration", covered several options for networking guest environments in Xen. It would be an understatement to say that this chapter was thorough. Overall, the authors did a great job explaining the differences between the networking options, and how to implement each one. Unfortunately the needs of the reader are variable, so this chapter overflowed with information. The upside was that readers with complex virtualized network segments will not be disappointed. The downside was that I, personally, only really needed a small percentage of the chapter's content. Therefore, much of the chapter was technically irrelevant to me individually.

There was one other unfortunate issue, which occurred in the next chapter. Chapter 11, "Securing a Xen System", contained syntax errors for iptables rules. Mainly one dash was used instead of two when specifying the destination port in some rules. For example, LISTING 11.10 displayed the syntax -dport which caused an error. However, the syntax was correct at other places in the book (LISTING 10.24, for example). Additionally, there was a problem on output formatting where the command prompt and output lines ran together in the print (LISTING 11.11). This could cause confusion for some readers intently following the text.

My only complaint with the book was that the chapter on network configuration seemed to be rather long. For a person working with Xen at a business level, especially mid-size to enterprise, this chapter provided an excellent amount of insight and information. But for the person at home building his/her own test server for simple purposes, much of the content in this chapter was overkill. Additionally the few syntax errors were eye-sores, but any person with iptables experience could easily identify and fix the problems. It is just in my opinion, a published book should be syntactically correct so that the reader is not presented with contradicting results; nor should the reader have to conduct additional searches to rectify mistakes from the book's pages. However, these items are minor and pale in comparison to the outstanding wealth of knowledge in the text.

This book is highly recommended for anyone interested in virtualization with Xen. In addition to the regular paperback, Running Xen is also available on Safari. The paperback additionally includes a coupon code for a 45-day pass to access the book via Safari online.

David Martinjak is a programmer, GNU/Linux addict, and the director of 2600 in Cincinnati, Ohio. He can be reached at david.martinjak@gmail.com.

You can purchase Running Xen: A Hands-On Guide to the Art of Virtualization from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

physman_wiu writes "We all remember the recent incident of 13-year-old Megan Meier. Now legislation is set to be passed at least in Missouri (and possibly through Congress) that would make cyberbullying illegal. The new legislation (PDF) reads: 'Whoever transmits in interstate or foreign commerce any communication, with the intent to coerce, intimidate, harass, or cause substantial emotional distress to a person, using electronic means to support severe, repeated, and hostile behavior, shall be fined under this title or imprisoned not more than two years, or both.' Now, this seems like a great piece of legislation — until I get put in jail for some kid on WOW calling the Feds on me." Eugene Volokh is not impressed.

DinkyDogg writes "'New research that makes creative use of sensitive location-tracking data from 100,000 cellphones in Europe suggests that most people can be found in one of just a few locations at any time, and that they do not generally go far from home.' More interesting than their conclusion, however, is how they got their data. 'The researchers said they used the potentially controversial data only after any information that could identify individuals had been scrambled. Even so, they wrote, people's wanderings are so subject to routine that by using the patterns of movement that emerged from the research, "we can obtain the likelihood of finding a user in any location." The researchers were able to obtain the data from a European provider of cellphone service that was obligated to collect the information. By agreement with the company, the researchers did not disclose the country where the provider operates.' Any guesses which European country requires cell phone providers to record where their customers make calls, and then allows them to give that data away without disclosing that they have done so?"

KrispyBytes writes "Windows XP SP3 has been named as the culprit causing home routers to go into a crash and reboot cycle. One router maker has released firmware updates to fix the problem, but has not yet revealed what is actually different about XP SP3's networking stack or UPnP behaviour that causes the problem. Router maker Billion Managing Director Raaj Menon said "as Microsoft plans to make Windows XP SP3 an automatic upgrade this month, the number of affected routers may increase significantly.""

RickRussellTX writes "eBay is being pressured by an animal welfare group to ban sales of ivory and animal tooth products on its site. Although eBay is in compliance with the Convention on International Trade in Endangered Species when it warns users that such postings may be inviolation of national and international law, the International Fund for Animal Welfare is demanding that they go a step further to search for and delete any posting of ivory products."

William writes "Does anyone have firsthand experience with using WiMAX for internet access? Our company is on a T1 line right now and we are looking to upgrade our internet speeds. WiMAX seems to be the most affordable and cost-effective solution in our area [San Francisco], but I have no personal experience with it so far. How is the performance and reliability with WiMAX? I would appreciate any insight you all might have. Thanks in advance!"

Hyppy writes "The University of Central Florida College of Medicine announced Friday that it received a $200,000 grant from the Robert Wood Johnson Foundation to explore how interactive digital games could be designed to improve player's health behaviors and outcomes. One study to be conducted seeks to learn if role-playing games can help keep sober alcoholics from relapsing."

James W writes "Yesterday was the 25th anniversary of the release of WarGames and Christopher Knight has written a retrospective about the film and its impact on popular culture. In addition to discussing how the movie has held up over time, WarGames was responsible for what Knight calls the Great Hacking Scare of 1983. Some examples mentioned are 'one CBS Evening News report at the time that seriously questioned whether parents should allow their children to access the outside world via their personal computers at home. A magazine article suggested that computer modems be 'locked up' just like firearms, to keep them out of the reach of teenagers. I even heard one pundit proclaim that there was no need for regular people to be able to log in to a remote system: that if you need to access your bank account, a friendly teller was just a short drive away. And Bill Gates once declared that the average person would never have a need for more than 640 kilobytes of memory in a personal computer, too.'" 2008 is also 25 years after the real-life prevention of a WarGames-style nuclear incident.

doppiodave writes "Hard on the heels of the Net Neutrality bill introduced in Canada's Parliament, a class action suit was filed yesterday against Bell by Quebec's Consumers Union, asking that extensive compensation be paid to all Bell's DSL subscribers for fraudulent advertising and privacy violations. The press release is available in French. The timing of this suit coincides with several other developments that suggest Net Neutrality is finally coming to the attention of the general public and Canada's regulator, the CRTC, which recently required Bell to file responses (by May 29) to an exhaustive list of interrogatories about its traffic-shaping practices."

Ken E. writes "UK tech website Mobile Computer has an early hands-on review of the MSI Wind — a £329 ultraportable notebook that will compete head-on with the Asus Eee PC 900. In its favour are a 10in screen, better keyboard and, perhaps most important of all, an Intel Atom 1.6GHz dual-core processor (though the site shies away from mentioning this open secret due to what sound like NDA constraints). They like it a lot — is this finally a worthy Eee PC alternative?" (£329 is about $650US at the moment.) An anonymous reader points to CNET's hands-on photo gallery of the Wind; CNET's reviewer says the MSI Wind is the first mini notebook with an overclock button. Barence adds another review at PC Pro.

himicos was one of many readers to point out one recent success of scientists working to develop working brain-machine interfaces, writing "A team at the university of Pittsburgh has finally advanced a 2002 technology enough for use in prosthetic limbs, the targeted application all along. Training computer models to the firing patterns of the neurons in the parts of the brain that control motion, they are able to project the intentions of a monkey to a robotic arm, which follows the will of the animal. The sad thing about the articles is that the beauty of the mathematics used to create and train the models is totally ignored." Reader phpmysqldev adds a link to coverage at the BBC, and writes "This of course brings significant hope to amputees and other other people with physical disabilities." (Note that this research has been going on for quite some time.)

Last year, the Attorney General of New York instigated a lawsuit against Dell for practices like long hold times, repeated call transfers, and disconnects for customers waiting for phone support — all of which make it harder to cash in on promises of (and paid-for) technical support." Now, raptor78 writes "IDG News reports on New York Attorney General's victory over the poor services and deceptive practices employed by Dell over the past years with regards to technical support and promotional offers. It is about time someone spoke up and realized some of the horrors people deal with at Dell." Another reader points to a quick report from Fortune magazine on the ruling.

spandex_panda writes "There are a few pictures of the Mars Lander on the ground — you can see its parachute and its heat shield a few kilometers away, too. There's a very cool looking picture of it floating down, actually captured while it's in the air with its parachute out!" We also have a YouTube video all about the robot arm that will dig down and probably find a groundhog who we all hope will see his shadow.

sshuber writes "It's no secret that the US and other parts of the world are currently having some economic problems. How is this affecting new technologies under development? With the large numbers of layoffs, are we seeing projects, such as things under R&D, that are being axed? Are companies playing it safe and sticking with what they know sells in lieu of pushing the envelope? Finally, how is this affecting the open source community, either positively or negatively?" A lot of open source work happens with the backing or at least the sufferance of corporations. Do laid-off tech workers contribute fewer cycles to open source projects, or more?

Titus Germanicus writes "If you're thinking about open sourcing a project in the near future, Mozilla might be the perfect blueprint to follow. At last week's Mesh 2008 conference in Canada, Mike Shaver, chief technology evangelist and founding member at Mozilla, and John Resig, a JavaScript evangelist at Mozilla — two of the key figures behind the success of Mozilla's Firefox Web browser — listed inclusivity and transparency as two of the top cornerstones of any community-built project. Shaver said in this interview that because the Web is intended for everybody, the level same openness should be shared with Firefox's open source contributors."

ganelo writes to tell us that 16-year-old Waterloo Collegiate Institute student Danel Burd has made quite a stir with his plastic-eating bacteria discovery. For his efforts Burd won top prize at a Canada-wide science fair claiming a $10,000 prize and a $20,000 scholarship. "Tests to identify the strains found strain two was Sphingomonas bacteria and the helper was Pseudomonas. A researcher in Ireland has found Pseudomonas is capable of degrading polystyrene, but as far as Burd and his teacher Mark Menhennet know -- and they've looked -- Burd's research on polyethelene plastic bags is a first."

oschobero writes to tell us the Economist has a look at pharmaceutical research as it applies to cognition enhancers. While the research is obviously focused on things like Alzheimer's, Parkinson's, and schizophrenia, the resulting drugs may also have a benefit to healthy minds. "Provigil and Ritalin really do enhance cognition in healthy people. Provigil, for example, adds the ability to remember an extra digit or so to an individual's working memory (most people can hold seven random digits in their memory, but have difficulty with eight). It also improves people's performance in tests of their ability to plan. Because of such positive effects on normal people, says the report, there is growing use of these drugs to stave off fatigue, help shift-workers, boost exam performance and aid recovery from the effects of long-distance flights."

New10k writes "The US District Court in Seattle has rejected Autodesk's myriad arguments regarding its software licenses and found in favor of eBay seller Timothy S. Vernor. The ruling started by ruling that Vernor was within his rights to resell copies of AutoCAD Release 14 he got in an auction. Once the court settled the legitimacy of reselling, it used that ruling as a lens to dismiss all of Autodesk's various claims. More than once the court described Autodesk's arguments as 'specious' and 'conflicted.'" Autodesk managed to have Vernor's eBay account pulled, after he listed for sale copies of AutoCad 14. He sued Autodesk in response.

WomensHealth writes "I have about 6500 pdfs in my 'My Paperport Documents' folder that I've created over the years. As with all valuable data, I maintain off-site backups. Occasionally, when accessing a very old folder, I'll find one or two corrupted files. I would like to incorporate into my backup routine, a way of verifying the integrity of each file, so that I can immediately identify and replace with a backed-up version, any that might become corrupted. I'm not talking about verifying the integrity of the backup as a whole, instead, I want to periodically check the integrity of each individual PDF in the collection. Any way to do this in an automated fashion? I could use either an XP or OS X solution. I could even boot a Linux distro if required."

mollyhackit writes "The Open Graphics Project, which we've been following since it first started looking for experts four years ago, has just announced that the OGD1 is available for preorder now. The design features 2 DVI, 256MB RAM, PCI-X, and a Xilinx Spartan-3 FPGA along with a nonvolatile FPGA for programming on boot. FPGAs are reprogrammable hardware which means the graphics card can be optimized for specific tasks and execute them faster than a general purpose CPU. The card could be programmed for certain codecs to speed up encoding or decoding. An open hardware design means potential for better driver support. Of course you could always use the FPGA for something else... say crypto cracking."

Sean Cribbs writes "There are many beginning and advanced Ruby on Rails books available, from the authoritative Agile Web Development with Rails to the cookbook-style Rails Recipes. However, healthy guidance for intermediate-level developers is lacking at best. Ironically, this is the most crucial stage in the process of becoming proficient with Rails because one must begin to learn why, not just how. Eldon Alameda's Practical Rails Projects effectively fills that gap. I know Alameda from our local Ruby User Group and spoke with him frequently while he wrote this book. His expertise with Rails definitely shines through in the hefty 621-page volume." Keep reading for the rest of Sean's review. Practical Rails Projects author Eldon Alameda pages 621 publisher Apress rating 8/10 reviewer Sean Cribbs ISBN 978-1-59059-781-1 summary A strong book for the intermediate Rails developer Practical Rails Projects has a unique and effective approach. Instead of spoon-feeding contrived code snippets, Alameda teaches by example, leading the reader step-by-step through the design, creation, enhancement, and analysis of several full-fledged projects. Each project introduces new techniques to the intermediate Rails developer carefully and with plenty of explanation — from caching to generating graphs to RESTful application design and much more. Rather than regurgitating documentation that is occasionally unclear or misleading, each application begins with a clean Rails project and is built up step-by-step with detailed commentary on how and why each step is taken. Alameda's format reflects the reality that real-life projects never have a straight development path; at each step one must make tough decisions, watch for pitfalls and take risks. There are no leaps-of-faith or "just trust me" moments, everything is explained. In the final chapter of each project, Alameda also suggests ways that the project could be improved and how to apply the newly learned techniques to previous projects in the book.

The text is clear and uncomplicated with an approachable style. Projects even makes Rails' least fun framework, ActionWebService (which helps you create SOAP and XML-RPC services), easy to understand. While there are some glaring proofing mistakes, such as "Ruby" uncapitalized and some malformed URLs to external resources, the code snippets are practically error-free and all source and binary resources are available via the Apress website.

One controversial decision made by Alameda was to use the ExtJS Javascript library extensively in one project to build an administration interface for a legacy site. ExtJS is a powerful high-level library that simplifies the creation of desktop-like interfaces in the web browser. Instead of spending a lot of time hand-crafting HTML/ERb templates and CSS, Alameda quickly creates an interface in ExtJS and uses Rails to generate XML and JSON that drives the almost entirely client-side application. While some may find this outside the spectrum of what should be in a Rails book, many developers are now creating their interfaces in Flex, SilverLight, and other client-side technologies. With the recent official release of ActiveResource, I believe we will see more web-service-focused Rails applications as time goes on. Alameda's choice is also practical; with a small number of users having access to the interface, he can place greater requirements on them in order to deliver the application more quickly.

Overall, I believe Practical Rails Projects is a strong book for the intermediate Rails developer. It provides an introduction to more advanced concepts of the framework without being preachy or obtuse. It lacks any discussion of test- or behavior-driven development with Rails, but the breadth and depth of the topics it covers makes up for this weakness. Like any book that covers a rapidly-changing open-source project like Ruby on Rails, Projects will date quickly, but in the near-term it should be of great help to developers looking to gain constructive experience.

You can purchase Practical Rails Projects from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

Leemeng writes "I'm looking for a simple, free, and F/OSS flat-file database program. I'm storing info about Wi-Fi access points that I come across, maybe 8-9 fields per entry. I've outgrown Notepad. This info is for my own reference only; it is not going on a Web server. Googling was unhelpful, with results skewed towards SQL, Access (MS), and Oracle, all of which would be overkill for my purposes. My criteria are: it must be simple, F/OSS, must work in Windows Vista, preferably use a portable format, must not be an online app, and must not require Java. Does such a beast exist?"

zerobeat writes "Scientists from Melbourne, Australia have managed to resurrect the gene responsible for the development of cartilage and bone from the now extinct Tasmanian Tiger. The gene was expressed in a mouse embryo so the full reincarnation of a full Tassie Tiger is a long way off. You can listen to an MP3 of ABC Australia's Robyn Williams discussing the results with the lead scientists. This is the first time DNA from an extinct species has been made to live again in a live animal."

dinotrac writes "Somebody special is coming over for dinner. You're not a chef, but you can cook well enough to get by, so you grab your best cookbook and get to work. That's the idea behind O'Reilly's Linux Networking Cookbook, by Carla Schroder. Carla has gathered a group of networking recipes that a reasonably Linux-savvy reader can use to address network needs like a seasoned sysadmin. If you want to find out how to hook your Linux workstation to a LAN, get another book. If you are reasonably comfortable with Linux, need to set up an LDAP server, configure single sign-on with Samba for a mixed Linux/Windows LAN, set up a VPN, or troubleshoot network problems without some uppity online geek telling you to RTFM, this book may be what you're looking for." Read below for the rest of Dean's review. Linux Networking Cookbook author Carla Schroder pages 638 publisher O'Reilly rating 9 reviewer Dean R. Pannell ISBN 0596102488 summary The perfect tool when you need to be a network sysadmin but aren't One of the great strengths and weaknesses of Linux is that everything you could possibly need to know is already on your computer in the form of man pages, or out on the internet in newsgroups, forums, or a massive autumn's leaf-pile of how-tos. Finding what you need in a form that you can use is sometimes a bigger problem than the problem you're trying to solve.

The Linux Networking Cookbook improves on that situation in a couple of ways. First is the author herself. Carla is an experienced System Administrator and a good technical writer. She was one of the early Linuxchix, and has spent years mentoring and otherwise helping new and experienced Linux folk through their assorted dilemmas. The result is a friendly and direct, information-packed and ego-free writing style. Unlike the typical how-to that provides a list of steps that have worked for the author, Carla's discussions fill in the blanks and tell you why she takes the steps that she does.

The Cookbook is organized into an introduction followed by 18 chapters that are complete stand-alone solutions to specific problems.

The obligatory introduction is short and is not required by any of the solutions in the book, but it's worth reading. Its' eleven pages read quickly, but contain, among other things, a good explanation of the difference between bandwidth and latency and a decent overview of the whys and whens of linux-based computers as routers versus mid-range and high-end commercial routers.

Each chapter begins with an introduction of the overall topic, Routing with Linux, for example, followed by a series of short recipes organized as problem-solution-discussion. This format is convenient for diving right into work and takes advantage Carla's mentoring talents.

One problem facing any writer of Linux books is the sheer number of Linux distributions, many of which have their own distinct ways of doing things. The Linux Networking Cookbook provides solutions for both Debian and Fedora Linux. It's an excellent choice when you consider that most Linuxes derive from one of those two bases, including all of the *buntus, Knoppix, Mandriva, PCLinuxOS, CentOS, and many more. The recipes employ generic tools, which makes them easier to transport across distributions, even the SuSEs, which are based on neither Debian nor Red Hat.

For example, before obtaining The Cookbook, I needed to create a self-signed SSL certificate for a PostgreSQL server on an Ubuntu server. I'd done it a few times, but not enough to remember, so I went off to the net. The Ubuntu-themed How-To I found relied on a script called apache2-ssl-certificate. An apache script didn't bother me because I could move the pieces when I was done, or just break open the script and make it do what I wanted done. Ubuntu Feisty, however, had managed to leave the script out of the distribution, so I had to go back to the net to find an alternative approach.

Had I used The Cookboock, my task would have been simpler, though not quite as easy as it should be. Inexplicably for a book that includes network security and SSL-based VPNs, there is no entry for SSL Certificate in the index. A browse through the table of contents turns up a couple of recipes for Creating SSL-Keys for a Syslog-ng Server: one for Debian and one for Fedora. Fortunately, the Table of Contents is short and can be browsed completely in seconds, because those recipes are in the Troubleshooting Networks chapter, which is not intuitively obvious. They appear in that chapter because it contains the recipes for network monitoring, which includes installation of Syslog-ng.

The recipe itself is suitably generic, using the CA.sh script, which is part of openssl, and openssl itself to generate keys and certificates. A quick check of my Ubuntu servers, my Fedora VPS server, and my OpenSuSE workstation found CA.sh on all of them.

My OpenSuSE machine did throw one small curve:

CA.sh on my openSUSE box was located in /usr/lib/ssl/misc, as on the other boxes. However, the book tells us that CA.sh, and a moderately competent Linux user is likely to know that rpm -ql openssl will list all of the files in the openssl package or that rpm-ql openssl | grep CA.sh will spit out the location of the script.

Given the variety of Linux distributions, it is hard to imagine a better approach to take.

The Glossary of Networking Terms in Appendix B deserves special mention. Each term is explained in plain but precise language that goes beyond the cursory definitions so common in glossaries. For example, the explanation for WEP notes that it is very weak protection and urges the reader to use WPA/WPA2 instead.

Sometimes, the extra information can soften a definition's focus, but, overall, the glossary is an outstanding tool for anyone who doesn't spend his or her time knee-deep in subnet definitions, routers, and tcp dumps. The same is true of the book.

As is usual for O'Reilly, updates, errata, and scripts from the book are available on the web.

You can purchase Linux Networking Cookbook from amazon.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

dcblogs writes "The Chinese outsourcing market, at $1.7 billion last year, is growing at 38% a year, according to research by the Everest Group. This is creating opportunities for Westerners who want to go to China, learn the language, and help these Chinese offshore companies reach overseas markets. There are job opportunities for people with management experience or who are young and willing to gamble. Here's the story of one 25-year-old who started learning Mandarin on his plane ride over to China, three years ago, and is now an international development manager for an IT offshoring firm."

oschobero writes "According an article from the Times, customers in shopping centers are having their every move tracked. Using cellphone signals, the system can tell when people enter the center, how long they stay in a particular shop, and what route each customer takes. The system works by monitoring the signals produced by mobile handsets and then locating the phone by triangulation." The particular tracking device described by the article is made by an English company called Path Intelligence.

DarkSarin writes "Given that solutions like iChat can seamlessly video-conference for multiple parties on the Mac, and that others are semi-commercial, like Oovoo (which recently left beta and is no longer free for more than 3-way calls), what do you recommend in terms of a F/OSS solution to a need for moderate-sized video-conferencing? Ideally, it would be something which does not use a web-page and does not require hours of configuration. iChat is insanely easy to use. Mebeam.com is also quite simple to operate, but requires so much screen real estate that it can't easily be used in conjunction with any other software. Referring to other documents while in the middle of the conference is nice, but it's important to have the reactions of the other participants — and not everyone has multiple monitors. I am aware of projects like vmukti and services like ustream.tv, but I am thinking more in terms of a stand-alone application that is F/OSS (Ekiga/GnomeMeeting comes to mind, but it does not do multi-point video chat unless one also has access to an H.323 gateway, which is apparently non-trivial to implement). With the prevalence of broadband connections, I am surprised that a solid effort is missing for making easy, painless multi-point video-conferencing for more than 3 or 4 connections (which seems to be the most that a lot of 'free' solutions offer, or even the low-cost ones). So, my question is two-fold: First, why isn't there a better effort at medium to large video-conferencing that pretty much anyone can set up? Second, do you know of any F/OSS applications which work well and support a minimum of 6 to 8 connected parties?"

DesScorp writes "Popular Science has a piece on some outrageous ideas for weapons; some came to fruition, and others didn't. And while some of the weapons (atom bombs, chemical weapons, bats with bombs strapped to them that seek out homes and buildings at night) are truly frightening, some of them are also kind of silly, such as the Gay Bomb, and the Frisbee bomb that was labeled the 'Modular Disc-Wing Urban Cruise Munition.'"

SecureThroughObscure writes "Security blogger and researcher Nate McFeters blogged about a 0-day exploit affecting IE7 and IE8 beta on XP that was released by noted security researcher Aviv Raff. The flaw is a 'cross-zone scripting' flaw that takes advantage of the fact that printing HTML web pages occurs in the Local Machine Zone in IE rather than in the Internet Zone. Quoting McFeters's post: 'This is currently unpatched and in all of its 0-day glory, so for the time being, beware printing using the "print table of links" option when printing web pages.' McFeters and others will be presenting at Black Hat on the link between cross-site scripting and cross-zone. Rob Carter has been hitting this hard over at his blog, pointing out cross-zone weaknesses in Azureus, uTorrent, and the Eclipse platform."