Slashdot Mirror
Domain: networkworld.com
Stories and comments across the archive that link to networkworld.com.
Stories · 2,229
-
US Seeks Volunteers To Review Broadband Grant Applications
BobB-nw writes with this excerpt from Network World: "The US National Telecommunications and Information Administration, scheduled to distribute $4.7 billion in broadband deployment grants over the next 15 months, will count on volunteers to review grant applications. The NTIA, in a document released this week, asks for people to apply to become volunteer reviewers of the broadband grants. The NTIA's broadband grant program is part of $7.2 billion that the US Congress approved for broadband in a huge economic stimulus package approved earlier this year. ... It's 'a little scary' that volunteers will have the power to accept and reject broadband applications, said Craig Settles, an analyst and president of consulting firm Successful.com. Volunteers may have limited expertise, or they may have biases that aren't evident to the NTIA, he said." -
US Offering $45M For Huge Wind Energy Test Bed
coondoggie writes "On a day when one of the largest wind farm plans bit the dust, the US Department of Energy is offering up a five-year, $45 million grant to design and build a large dynamometer facility for testing 5 to 15 MW rated wind turbines and equipment. The DOE says such a facility is needed as the US has fallen behind other countries in the race to build ever-larger wind turbines for energy production. According to the DOE, the average size of wind turbines installed in the United States in 2007 increased to roughly 1.65 MW. Additionally, turbines already developed range in the 2.5 MW to 3.5 MW capacity sizes; with plans being developed for even greater power ratings. The larger wind turbines have outpaced the availability of US-based testing facilities, the DOE stated." -
US Sets Up Emergency Multi-Band Radio Project
coondoggie writes "Looking to help eliminate the dangerous and inefficient hodgepodge of communication and network technology used by emergency response personnel, the US Department of Homeland Security (DHS) today said it had picked 14 groups from across the country to pilot an ambitious Multi-Band Radio project. In 2008, the DHS Science and Technology Directorate awarded a $6.2 million contract to Thales Communications to demonstrate the first-ever portable radio prototype that lets emergency responders — police, firefighters, emergency medical personnel and others — communicate with partner agencies, regardless of the radio band they operate on." -
DARPA Wants a 19" Super-Efficient Supercomputer
coondoggie writes "If you can squish all the processing power of, say, an IBM Roadrunner supercomputer inside a 19-inch box and make it run on about 60 kilowatts of electricity, the government wants to talk to you. The extreme scientists at the Defense Advanced Research Projects Agency this week issued a call for research that might develop a super-small, super-efficient super beast of a computer. Specifically, DARPA's desires for Ubiquitous High Performance Computing (UHPC) will require a new system-wide technology approach including hardware and software co-design to minimize energy dissipation per operation and maximize energy efficiency, with a 50GFLOPS per watt goal." -
Google Voice Grabs 1 Million Phone Numbers
alphadogg writes "Google has reserved 1 million phone numbers with Level 3, signaling that it may finally be ready to roll out its long-anticipated Google Voice service. The free service, announced in March, lets users unify their phone numbers, allowing them to have a single number through Google Voice that rings a call through to all their phones. Sources could not say when the 1 million numbers may be assigned. Level 3 has been supplying Google with phone numbers since the introduction of Google Voice, so the 1 million numbers are an indication Google is close to adding a significant number of users. A public launch has been anticipated since Google said in March the service would be 'open to new users soon.' One early user said: 'I've only been using Google Voice for a few months, but it's completely changed the way I use voicemail and communicate... When it goes public, I think the rush to grab Google Voice numbers is going to be stunning. I know some of my friends check the Google Voice page almost every day to see when they can grab a number and get started using it.'" -
Satellite Glitch Rekindles GPS Concerns
coondoggie writes "News today that the Air Force is investigating signal problems with its latest Global Positioning System satellite is likely to rekindle the flames of a congressional report last month that said the current GPS coverage may not be so ubiquitous in the future. The Air Force stated that routine early orbit checkout procedures determined that the signals from the Lockheed-built GPS IIR-2 (M), which was launched in March, were inconsistent with the performance of other GPS IIR-M satellites. The Air Force said it has identified several parameters in the GPS IIR-20 (M)'s navigation message that can be corrected to bring the satellite into compliance with current GPS Performance Standards." -
Can Commercial Space Tech Get Off the Ground?
coondoggie writes "While NASA's commercial partners such as SpaceX and Orbital have made steady progress in developing space cargo transportation technology, they have recently fallen behind their development schedules. Combine that with the fact that the most critical steps lie ahead, including successfully launching new vehicles and completing integration with the space station, and you have a hole that will be tough to climb out of. Those were the two main conclusions of a Government Accountability Office report (PDF) on the status of the commercial space world this week. The GAO went on to say that after the planned retirement of the space shuttle in 2010, NASA will face a cargo resupply shortfall for the International Space Station of approximately 40 metric tons between 2010 and 2015." Speaking of SpaceX, reader Matt_dk sends along an update on the company's Falcon 9 flight efforts. "Six of the nine first stage flight engines have completed acceptance testing and all nine flight engines are on schedule to complete acceptance testing by mid-July." -
Data Center Overload
theodp writes "The first rule of data centers is: don't talk about data centers. Still, the NY Times Magazine manages to take its readers on a nice backstage tour of internet data centers, convincing Microsoft and others to let them sneak a peek inside some of the mega-centers that make up today's cloud. And if it's been a while since you software types stepped inside a real-life computing facility, there's an accompanying data-center-porn slideshow that'll give you an idea where your e-mail, photos, videos, music, searches, and other online services that you take for granted these days come from." Reader coondoggie sends in a related story about a government plan to spend $50 million on improving data center technology. -
Saving Unix Heritage, One Kernel At a Time
coondoggie writes "In this, its 40th year of operating system life, some Unix stalwarts are trying to resurrect its past. That is, they are taking on the unenviable and difficult job of restoring to their former glory old Unix software artifacts such as early Unix kernels, compilers and other important historical source code pieces. In a paper to be presented at next week's Usenix show, Warren Toomey of the Bond School of IT is expected to detail restoration work being done on four key Unix software artifacts all from the early 1970s — Nsys, 1st edition Unix kernel, 1st and 2nd edition binaries and early C compilers. In his paper, Toomey states that while the history of Unix has been well-documented, there was a time when the actual artifacts of early Unix development were in danger of being lost forever." -
9th Circuit Says Feds' Security Checks At JPL Go Too Far
coondoggie writes with an excerpt from Network World which explains that the Ninth Circuit Court of Appeals "this week ruled against the federal government and in favor of employees at NASA's Jet Propulsion Laboratory in their case which centers around background investigations known as Homeland Security Presidential Directive #12 (Nelson et al. vs NASA). The finding reaffirms the JPL employees claims' that the checks threaten their constitutional rights. The stink stems from HSPD #12 which is in part aimed at gathering information to develop a common identification standard that ensures that people are who they say they are, so government facilities and sensitive information stored in networks remains protected." At issue in particular: an employee's not agreeing to "an open ended background investigation, conducted by unknown investigators, in order to receive an identification badge that was compliant with HSPD#12" was grounds for dismissal. -
9th Circuit Says Feds' Security Checks At JPL Go Too Far
coondoggie writes with an excerpt from Network World which explains that the Ninth Circuit Court of Appeals "this week ruled against the federal government and in favor of employees at NASA's Jet Propulsion Laboratory in their case which centers around background investigations known as Homeland Security Presidential Directive #12 (Nelson et al. vs NASA). The finding reaffirms the JPL employees claims' that the checks threaten their constitutional rights. The stink stems from HSPD #12 which is in part aimed at gathering information to develop a common identification standard that ensures that people are who they say they are, so government facilities and sensitive information stored in networks remains protected." At issue in particular: an employee's not agreeing to "an open ended background investigation, conducted by unknown investigators, in order to receive an identification badge that was compliant with HSPD#12" was grounds for dismissal. -
New Denial-of-Service Attacks Threaten Wireless Data Networks
alphadogg writes "Forget spam, viruses, worms, malware, and phishing. These threats are apparently old-school when compared to a new class of denial-of-service attacks that threaten wireless data networks. The threats were outlined in a talk in NYC Thursday by Krishan Sabnani, vice president of networking research at Bell Labs, at the Cyber Infrastructure Protection Conference at City College of New York. Sabnani said they are the result of inherent weaknesses in Mobile IP, a protocol that uses tunneling and complex network triangulation to allow mobile devices to move freely from one network to another. 'We need to especially monitor the mobile networks — with limited bandwidth and terminal battery — for DOS attacks,' Sabnani said, adding that the newest DOS attacks on wireless networks involve repeatedly establishing and releasing connections. These attacks are easy to launch and hard to detect, he said." -
Hackers Claim $10K Prize For StrongWebmail Breakin
alphadogg writes "Telesign, a provider of voice-based authentication software, challenged hackers to break into its StrongWebmail.com Web site late last week. The prize: $10,000. On Thursday, a group of security researchers claimed to have won the contest, which challenged hackers to break into the Web mail account of StrongWebmail CEO Darren Berkovitz and report back details from his June 26 calendar entry. The hackers, led by Secure Science Chief Scientist Lance James and security researchers Aviv Raff and Mike Bailey, provided details from Berkovitz's calendar to IDG News Service. In an interview, Berkovitz confirmed those details were from his account. However, Berkovitz could not confirm that the hackers had actually won the prize. He said he would need to check to confirm that the hackers had abided by the contest rules, adding, 'if someone did it, we'll kind of put our heads down.'" -
Cybercriminals Refine ATM Data-Sniffing Software
BobB-nw writes "Cybercriminals are improving a malicious software program that can be installed on ATMs running Microsoft's Windows XP operating system that records sensitive card details, according to security vendor Trustwave. The malware has been found so far on ATMs in Eastern European countries, according to a Trustwave report. The malware records the magnetic stripe information on the back of a card as well as the PIN, which would potentially allow criminals to clone the card in order to withdraw cash. The collected card data, which is encrypted using the DES algorithm, can be printed out by the ATM's receipt printer, Trustwave wrote." -
Hospital Turns Away Ambulances When Computers Go Down
CurtMonash writes "The Indianapolis Star reports that Tuesday Morning, Methodist Hospital turned away patients in ambulances, for the first time in its 100-plus history. Why? Because the electronic health records (EHR) system had gone down the prior afternoon — due to a power surge — and the backlog of paperwork was no longer tolerable. If you think about that story, it has a couple of disturbing aspects. Clearly the investment in or design of high availability, surge protection, etc. were sadly lacking. But even leaving that aside — why do problems with paperwork make it necessary to turn away patients? Maybe the latter is OK, since there obviously were other, more smoothly running hospitals to send the patient to. Still, the whole story should be held up as a cautionary tale for hospitals and IT suppliers everywhere." -
$10M For Unmanned Aircraft That Can Perch Like a Bird
coondoggie writes "Unmanned aircraft maker AeroVironment got an additional $5.4 million to further develop a diminutive aircraft that can fly into tight spaces undetected, perch and send live surveillance information to its handlers. Last Fall, AeroVironment, got $4.6 million initial funding from the Defense Advanced Research Projects Agency (DARPA) to develop the Stealthy, Persistent, Perch and Stare Air Vehicle System (SP2S), which is being built on the company's one-pound, 29-inch wingspan battery-powered Wasp unmanned system." -
$10M For Unmanned Aircraft That Can Perch Like a Bird
coondoggie writes "Unmanned aircraft maker AeroVironment got an additional $5.4 million to further develop a diminutive aircraft that can fly into tight spaces undetected, perch and send live surveillance information to its handlers. Last Fall, AeroVironment, got $4.6 million initial funding from the Defense Advanced Research Projects Agency (DARPA) to develop the Stealthy, Persistent, Perch and Stare Air Vehicle System (SP2S), which is being built on the company's one-pound, 29-inch wingspan battery-powered Wasp unmanned system." -
20 Years After Tiananmen, China Stifles Online Dissent
alphadogg writes with this snippet from Network World: "The Internet has brought new hope to reformists in China since the country crushed pro-democracy protests in the capital 20 years ago. But as dissidents have gone high-tech, the government in turn has worked to restrict free speech on the Internet, stifling threats to its rule that could grow online. China has stepped up monitoring of dissidents and Internet censorship ahead of June 4, when hundreds were killed in 1989 after Beijing sent soldiers to its central Tiananmen Square to disperse protestors. The authoritarian government wants to ensure that date and other sensitive anniversaries this year pass without public disturbances, observers say. In recent months, China has blocked YouTube and closed two blog hosting sites, bullog.cn and fatianxia.com, known for their liberal content." -
Robotic Garage Pulls a HAL, Chomps On Cars
coondoggie writes "Somewhere HAL is smiling. Reports out of Hoboken, NJ today say an automated parking garage robotic system went a little nutty this week, trapping a driver and his pooch inside. According to reports it's not the first time the system has had issues with its car constituents. According to the Jersey Journal, a Honda Civic was scraped along its right side when it became trapped on a pallet and sank two feet under the garage floor last spring." -
The 10-Year Satellite Forecast
coondoggie writes "When it comes to satellites sometimes less is more. In the next ten years the government expects to see fewer but ever larger satellites flung into space. Specifically, the folks who monitor such things, the Commercial Space Transportation Advisory Committee (COMSTAC), said in a draft report today that an average 20.8 satellites could be launched from 2009 through 2018, a decrease of one satellite when compared to the 2008 forecast of 21.8 and the 2007 forecast of 21.0 satellites per year. Actual launches per year were above 20 for the first time since 2002 and the highest total since 2000, with 23 satellites launched in 2008. As for the weight, the group said there has been steady growth in satellite mass since 1993 and the trend will continues as satellite mass is expected to remain near or slightly above 100,000 kilograms (220,400 lbs) forecast for the coming years with an all-time high of nearly 116,500 kg (257,000lbs) in 2009, the COMSTAC report stated." -
DARPA Shows Off Their Latest Shinies
coondoggie writes with news that the US Defense Advanced Research Projects Agency (DARPA) has released their top nine strategic research programs via a 57-page report last week. The overarching theme seems to be big long term goals that could result in major advances in technology. "DARPA's projects run the gamut from building extremely fast, secure networks, and developing higher, longer flying unmanned aircraft to bio-related advances that help bring vaccines to a useful state faster and space technologies that offer modular satellite systems." -
DARPA Shows Off Their Latest Shinies
coondoggie writes with news that the US Defense Advanced Research Projects Agency (DARPA) has released their top nine strategic research programs via a 57-page report last week. The overarching theme seems to be big long term goals that could result in major advances in technology. "DARPA's projects run the gamut from building extremely fast, secure networks, and developing higher, longer flying unmanned aircraft to bio-related advances that help bring vaccines to a useful state faster and space technologies that offer modular satellite systems." -
FTC Targets Massive Car Warranty Robocall Scheme
coondoggie writes "Robocalls are a scourge, and the Federal Trade Commission today took action against one outfit by asking a federal court to shut down companies that have been bombarding consumers with hundreds of millions of allegedly deceptive robocalls in an effort to sell vehicle service contracts. According to the FTC, the robocalls have prompted tens of thousands of complaints from consumers who are either on the Do Not Call Registry or asked not to be called. Five telephone numbers associated with the defendants have generated a total of 30,000 Do Not Call complaints. Consumers received the robocalls at home, work, and on their cell phones, sometimes several times in one day. Businesses, government offices and even 911 dispatchers also have been subjected to the calls, the FTC said." Reader powerlord points out that another such company, not named in the FTC filing, raised the ire of thousands of internet-goers, who struck back by rickrolling the company's voice mail and digging up personal information on the company's president. -
FTC Targets Massive Car Warranty Robocall Scheme
coondoggie writes "Robocalls are a scourge, and the Federal Trade Commission today took action against one outfit by asking a federal court to shut down companies that have been bombarding consumers with hundreds of millions of allegedly deceptive robocalls in an effort to sell vehicle service contracts. According to the FTC, the robocalls have prompted tens of thousands of complaints from consumers who are either on the Do Not Call Registry or asked not to be called. Five telephone numbers associated with the defendants have generated a total of 30,000 Do Not Call complaints. Consumers received the robocalls at home, work, and on their cell phones, sometimes several times in one day. Businesses, government offices and even 911 dispatchers also have been subjected to the calls, the FTC said." Reader powerlord points out that another such company, not named in the FTC filing, raised the ire of thousands of internet-goers, who struck back by rickrolling the company's voice mail and digging up personal information on the company's president. -
Do We Really Need a National Climate Service?
coondoggie writes "I suppose it's natural for Washington to try and wrap issues up in a tidy legislative package for bureaucratic purposes (or perhaps other things more nefarious). But one has to wonder if we really need another government-led group, especially when it comes to the climate and all the sometimes controversial information that entails. But that's what is under way. Today the House Science and Technology Committee's Subcommittee on Energy and Environment held a hearing on the need for a National Climate Service, that could meet the increased demand for climate information, the committee said. The NCS would provide a single point of contact of information climate forecasts and support for planning and management decisions by federal agencies; state, local, and tribal governments; and the private sector." -
Do We Really Need a National Climate Service?
coondoggie writes "I suppose it's natural for Washington to try and wrap issues up in a tidy legislative package for bureaucratic purposes (or perhaps other things more nefarious). But one has to wonder if we really need another government-led group, especially when it comes to the climate and all the sometimes controversial information that entails. But that's what is under way. Today the House Science and Technology Committee's Subcommittee on Energy and Environment held a hearing on the need for a National Climate Service, that could meet the increased demand for climate information, the committee said. The NCS would provide a single point of contact of information climate forecasts and support for planning and management decisions by federal agencies; state, local, and tribal governments; and the private sector." -
Proposed Peer-To-Peer Law Sparks Animosity
coondoggie writes "The Federal Trade Commission and Distributed Computing Industry Association locked horns over a proposed law that would govern how peer-to-peer networking technology would be used and regulated. Before the Subcommittee on Commerce, Trade, and Consumer Protection, the Federal Trade Commission expressed its doubts about companies protecting sensitive consumer information (PDF) or sensitive data over P2P internet file-sharing networks. It doesn't help the P2P cause that the technology continues to pop up in bad practices. Recently a company that monitors peer-to-peer networks said it found classified information about the systems used onboard the president's helicopter in a shared folder on a computer in Iran, after a file containing the data was accidentally leaked on a peer-to-peer network last summer. Meanwhile the DCIA said any laws would likely be ineffective and stifle the business opportunities P2P can generate." An article on CNet points out that the wording of the bill would make it apply to just about everything related to communications on the internet. -
Proposed Peer-To-Peer Law Sparks Animosity
coondoggie writes "The Federal Trade Commission and Distributed Computing Industry Association locked horns over a proposed law that would govern how peer-to-peer networking technology would be used and regulated. Before the Subcommittee on Commerce, Trade, and Consumer Protection, the Federal Trade Commission expressed its doubts about companies protecting sensitive consumer information (PDF) or sensitive data over P2P internet file-sharing networks. It doesn't help the P2P cause that the technology continues to pop up in bad practices. Recently a company that monitors peer-to-peer networks said it found classified information about the systems used onboard the president's helicopter in a shared folder on a computer in Iran, after a file containing the data was accidentally leaked on a peer-to-peer network last summer. Meanwhile the DCIA said any laws would likely be ineffective and stifle the business opportunities P2P can generate." An article on CNet points out that the wording of the bill would make it apply to just about everything related to communications on the internet. -
FTC Backs Off Red Flag Rules Again
coondoggie writes to tell us that the Federal Trade Commission has yet again backed off of the new Red Flag Rule designed to protect consumer information. Complaining about cost of implementation, the enforcement date of the rule has been pushed back to August 1, 2009 to give businesses and institutions time to implement identity theft-prevention programs. "The FTC, federal bank regulatory agencies, and the National Credit Union Administration (NCUA) issued the Red Flags Rules as part of the Fair and Accurate Credit Transactions (FACT) Act of 2003. The final rules require financial and credit institutions that hold any consumer account, or other account for which there is a reasonably foreseeable risk of identity theft, to develop and implement an Identity Theft Prevention Program for combating identity theft in connection with new and existing accounts, the FTC said." -
Time To Cut the Ethernet Cable?
coondoggie writes in with a Network World piece that begins "A range of companies with wireless LANs are discovering that 50% to 90% or more of Ethernet ports now go unused, because Wi-Fi has become so prevalent. They look at racks of unused switches, ports, Ethernet wall jacks, the cabling that connects them all, the yearly maintenance charges for unused switches, electrical charges, and cooling costs. So why not formally drop what many end users have already discarded — the Ethernet cable? 'There's definitely a right-sizing going on,' says Michael King, research director, mobile and wireless, for Gartner. 'By 2011, 70% of all net new ports will be wireless. People are saying, "we don't need to be spending so much on a wired infrastructure if no one is using it."' ... There is debate over whether WLANs, including the high-throughput 802.11n networks, will be able to deliver enough bandwidth." Cisco, which makes both wireless and wired gear, has a spokesman quoted calling this idea of right-sizing a "shortsighted message from a wireless-only provider. It's penny-wise and pound-foolish." -
Time To Cut the Ethernet Cable?
coondoggie writes in with a Network World piece that begins "A range of companies with wireless LANs are discovering that 50% to 90% or more of Ethernet ports now go unused, because Wi-Fi has become so prevalent. They look at racks of unused switches, ports, Ethernet wall jacks, the cabling that connects them all, the yearly maintenance charges for unused switches, electrical charges, and cooling costs. So why not formally drop what many end users have already discarded — the Ethernet cable? 'There's definitely a right-sizing going on,' says Michael King, research director, mobile and wireless, for Gartner. 'By 2011, 70% of all net new ports will be wireless. People are saying, "we don't need to be spending so much on a wired infrastructure if no one is using it."' ... There is debate over whether WLANs, including the high-throughput 802.11n networks, will be able to deliver enough bandwidth." Cisco, which makes both wireless and wired gear, has a spokesman quoted calling this idea of right-sizing a "shortsighted message from a wireless-only provider. It's penny-wise and pound-foolish." -
ARIN Letter Says Two More Years of IPv4
dew4au writes "A reader over at SANS Internet Storm Center pointed out a certified letter his organization received from ARIN. The letter notes that all IPv4 space will be depleted within two years and outlines new requirements for address applications. New submissions will require an attestation of accuracy from an organizational officer. It also advises organizations to start addressing publicly accessible assets with IPv6. Is ARIN hoping to scare companies into action with the specter of scarce resources? This may be what's needed to spur adoption since there appears to be no business case for IPv6 deployment." -
What Kind of Data Center Can You Build With $500M?
coondoggie writes "So, if the government gave your company $500 million to spend on building a new data center what would you buy and how would you build it? Well, the Social Security Administration is about to find out. As part of the stimulus bill, or the American Recovery and Reinvestment Act of 2009, the SSA got the tidy little sum to replace its National Computer Center. The SSA in fact says it will need closer to $800 million to fund a new IT infrastructure, including the new data center — the physical building, power and cooling infrastructure, IT hardware, and systems applications. (This is addition to a $72 million backup facility currently under construction in Durham, North Carolina)." -
What Kind of Data Center Can You Build With $500M?
coondoggie writes "So, if the government gave your company $500 million to spend on building a new data center what would you buy and how would you build it? Well, the Social Security Administration is about to find out. As part of the stimulus bill, or the American Recovery and Reinvestment Act of 2009, the SSA got the tidy little sum to replace its National Computer Center. The SSA in fact says it will need closer to $800 million to fund a new IT infrastructure, including the new data center — the physical building, power and cooling infrastructure, IT hardware, and systems applications. (This is addition to a $72 million backup facility currently under construction in Durham, North Carolina)." -
Military Enlists Open Source Community
jmwci1 writes "The US Defense Department is enlisting an open source approach to software development — an about-face for such a historically top-down organization. In recent weeks, the military has launched a collaborative platform called Forge.mil for its developers to share software, systems components and network services. The agency also signed an agreement with the Open Source Software Institute to allow 50 internally developed workforce management applications to be licensed to other government agencies, universities and companies." -
Researchers Show How To Take Control of Windows 7
alphadogg writes "Security researchers demonstrated how to take control of a computer running Microsoft's upcoming Windows 7 operating system at the Hack In The Box Security Conference (HITB) in Dubai on Thursday. Researchers Vipin Kumar and Nitin Kumar used proof-of-concept code they developed, called VBootkit 2.0, to take control of a Windows 7 virtual machine while it was booting up. 'There's no fix for this. It cannot be fixed. It's a design problem,' Vipin Kumar said, explaining the software exploits the Windows 7 assumption that the boot process is safe from attack. While VBootkit 2.0 shows how an attacker can take control of a Windows 7 computer, it's not necessarily a serious threat. For the attack to work, an attacker must have physical access to the victim's computer. The attack can not be done remotely." Which makes me wonder why I'm posting this :) -
Intel Cache Poisoning Is Dangerously Easy On Linux
Julie188 writes "A researcher recently released proof-of-concept code for an exploit that allows a hacker to overrun an Intel CPU cache and plant a rootkit. A second, independent researcher has examined the exploit and noted that it is so simple and so stealthy that it is likely out in the wild now, unbeknownst to its victims. The attack works best on a Linux system with an Intel DQ35 motherboard with 2GB of memory. It turns out that Linux allows the root user to access MTR registers incredibly easily. With Windows this exploit can be used, but requires much more work and skill and so while the Linux exploit code is readily available now, no Windows exploit code has, so far, been released or seen. This attack is hardware specific, but unfortunately, it is specific to Intel's popular DQ35 motherboards." -
The Road To Terabit Ethernet
stinkymountain writes "Pre-standard 40 Gigabit and 100 Gigabit Ethernet products — server network interface cards, switch uplinks and switches — are expected to hit the market later this year. Standards-compliant products are expected to ship in the second half of next year, not long after the expected June 2010 ratification of the 802.3ba standard. Despite the global economic slowdown, global revenue for 10G fixed Ethernet switches doubled in 2008, according to Infonetics. There is pent-up demand for 40 Gigabit and 100 Gigabit Ethernet, says John D'Ambrosia, chair of the 802.3ba task force in the IEEE and a senior research scientist at Force10 Networks. 'There are a number of people already who are using link aggregation to try and create pipes of that capacity,' he says. 'It's not the cleanest way to do things...(but) people already need that capacity.' D'Ambrosia says even though 40/100G Ethernet products haven't arrived yet, he's already thinking ahead to terabit Ethernet standards and products by 2015. 'We are going to see a call for a higher speed much sooner than we saw the call for this generation' of 10/40/100G Ethernet, he says." -
Sophisticated Balloons Could Help Steer Spacecraft
coondoggie writes "Getting spacecraft traveling at hypersonic speeds to slow down and land or achieve a particular orbit on a dime is no easy feat. But researchers are developing a tool that will let engineers model and ultimately build advanced flight control systems that meld balloon and parachute technologies known as a ballute (BALLoon-parachUTE). Basically a ballute is a large, inflatable device that takes advantage of atmospheric drag to decelerate and capture a spacecraft into orbit around a planet, according to NASA who is funding Global Aerospace to build such a tool." -
Sophisticated Balloons Could Help Steer Spacecraft
coondoggie writes "Getting spacecraft traveling at hypersonic speeds to slow down and land or achieve a particular orbit on a dime is no easy feat. But researchers are developing a tool that will let engineers model and ultimately build advanced flight control systems that meld balloon and parachute technologies known as a ballute (BALLoon-parachUTE). Basically a ballute is a large, inflatable device that takes advantage of atmospheric drag to decelerate and capture a spacecraft into orbit around a planet, according to NASA who is funding Global Aerospace to build such a tool." -
Cinder Mobile OS Lets Users Send More Power To Slow Apps
alphadogg writes with this excerpt from Network World: "Stanford University researchers are designing an operating system from the ground up to handle the power and security requirements of mobile devices. The Cinder operating system is already working on an Arm chip, and members of the team are working on making it run on the HTC G1 handset, according to Philip Levis, a Stanford assistant professor. Levis spoke about Cinder at the Stanford Computer Forum on Tuesday. If an application isn't running as fast as the user wants, a Cinder-based phone could include a button to boost the energy allocated to that application, Levis said. Cinder also could allow users to download any code and run it safely on their phones in a 'sandbox' mode." -
NASA Taking Ethernet Into Deeper Space
coondoggie writes "While Ethernet technology has gone places no one would have envisioned 36 years ago, NASA today signed an agreement with a German Ethernet vendor to build highly fault-tolerant networks for space-based applications. TTTech builds a set of time-triggered services called TTEthernet that is implemented on top of standard IEEE802.3 Ethernet. Its technology is designed to enable design of synchronous, highly dependable embedded computing and networking, capable of tolerating multiple faults, the company said." -
Twitter Gets Slammed By the StalkDaily XSS Worm
CurtMonash writes "Twitter was hit Saturday by a worm that caused victims' accounts to tweet favorably about the StalkDaily website. Infection occurred when one went to the profile page of a compromised account, and was largely spread by the kind of follower spam more commonly used by multi-level marketers. Apparently the worm was an XSS attack, exploiting a vulnerability created in a recent Twitter update that introduced support for OAuth, and it was created by the 17-year-old owner of the StalkDaily website. More information can be found in the comment thread to a Network World post I put up detailing the attack, or in the post itself. By evening, Twitter claimed to have closed the security hole." -
Twitter Gets Slammed By the StalkDaily XSS Worm
CurtMonash writes "Twitter was hit Saturday by a worm that caused victims' accounts to tweet favorably about the StalkDaily website. Infection occurred when one went to the profile page of a compromised account, and was largely spread by the kind of follower spam more commonly used by multi-level marketers. Apparently the worm was an XSS attack, exploiting a vulnerability created in a recent Twitter update that introduced support for OAuth, and it was created by the 17-year-old owner of the StalkDaily website. More information can be found in the comment thread to a Network World post I put up detailing the attack, or in the post itself. By evening, Twitter claimed to have closed the security hole." -
Twitter Gets Slammed By the StalkDaily XSS Worm
CurtMonash writes "Twitter was hit Saturday by a worm that caused victims' accounts to tweet favorably about the StalkDaily website. Infection occurred when one went to the profile page of a compromised account, and was largely spread by the kind of follower spam more commonly used by multi-level marketers. Apparently the worm was an XSS attack, exploiting a vulnerability created in a recent Twitter update that introduced support for OAuth, and it was created by the 17-year-old owner of the StalkDaily website. More information can be found in the comment thread to a Network World post I put up detailing the attack, or in the post itself. By evening, Twitter claimed to have closed the security hole." -
Using Linux To Make a Slow, Awful WAN Connection
Julie188 writes "This is a brilliant little Linux trick from Windows fanboy Tyson Kopczynski. He wanted to test a new Windows 7 feature called Branch Cache, which caches remote data on the local machine to reduce traffic on a stressed out WAN connection. But how to fake a crappy WAN? Linux. 'The command that I executed (tc) made use of Linux Traffic Control (a kernel thing) which allows me to easily interject 100ms latency on eth1. Boff, Bonk, Pow, Plop, Kapow, swa-a-p, whamm, zzzzzwap, bam ... instant WAN crappiness,' he writes." -
Pentagon Cyber Defense Bill Comes To $100M For 6 Months
coondoggie writes "Protecting defense departments networks cost taxpayers more than $100 million over the past six months, US Strategic Command officials said yesterday. The motives of those attacking the networks go from just plain vandalism to theft of money or information to espionage. Protecting the networks is a huge challenge for the command, Air Force Gen. Kevin P. Chilton told a cyber security conference in Omaha, Neb., this week. 'Pay me now or pay me later,' Davis said. 'In the last six months, we spent more than $100 million reacting to things on our networks after the fact. It would be nice to spend that money proactively to put things in place so we'd be more active and proactive in posture rather than cleaning up after the fact.'" -
Largest High-Tech Tornado Chase Set To Begin
coondoggie writes "Next month, with the help of a variety of high-tech gear, researchers will begin a wide-ranging project to better understand the origin, structure and evolution of tornadoes. The National Science Foundation has given $9.1 million to the project called Vortex2 (of course it has a convoluted backronym), which will take place from May 10-June 13. Researchers say Vortex2 is the largest attempt in history to study tornadoes, and will involve more than 50 scientists, 40 research vehicles, and 10 mobile radars, and will cover 900 square miles in southern South Dakota, western Iowa, eastern Colorado, Nebraska, Kansas, the Texas panhandle, and western Oklahoma." -
Largest High-Tech Tornado Chase Set To Begin
coondoggie writes "Next month, with the help of a variety of high-tech gear, researchers will begin a wide-ranging project to better understand the origin, structure and evolution of tornadoes. The National Science Foundation has given $9.1 million to the project called Vortex2 (of course it has a convoluted backronym), which will take place from May 10-June 13. Researchers say Vortex2 is the largest attempt in history to study tornadoes, and will involve more than 50 scientists, 40 research vehicles, and 10 mobile radars, and will cover 900 square miles in southern South Dakota, western Iowa, eastern Colorado, Nebraska, Kansas, the Texas panhandle, and western Oklahoma." -
Netscape Alums Tackle Cloud Storage
BobB-nw writes "A new cloud storage vendor is entering the market, promising an enterprise-class file system with snapshots, replication, and other features designed to simplify adoption for existing users and applications. Zetta, founded in 2007 by veterans of Netscape, has $11 million in funding and is coming out of stealth mode Monday with Enterprise Cloud Storage, a Web-based storage platform that will compete against Amazon's Simple Storage Service and a growing number of cloud vendors. Zetta's goal was to build a Web-based storage system that would be accepted by enterprise IT professionals for storing primary data. 'Data growth rates are staggering. In businesses you see growth rates of 40 to 60 percent year over year,' says CEO Jeff Treuhaft, a Zetta cofounder and formerly one of Netscape's first employees. Another Zetta cofounder is Lou Montulli, an early Netscape employee who invented Web cookies."