Slashdot Mirror

"It's a legit pwn, but if it requires Flash, it's not a Chrome pwn. Do Java bugs count as a Chrome pwn too, because we support NPAPI?" link

Do they bundle Java, or the Java plugin? No? Then Java bugs are not Chrome pwns.

"It's a legit pwn, but if it requires Flash, it's not a Chrome pwn. Do Java bugs count as a Chrome pwn too, because we support NPAPI?" link

funny... there's a jam3s on twitter who appears to be an intern at Intel in the UK. but surely that must just be a coincidence.

and there's a picture of him camping:
http://yfrog.com/h4lltkrj

funny... there's a jam3s on twitter who appears to be an intern at Intel in the UK. but surely that must just be a coincidence.

http://twitter.com/#!/arubin/status/27808662429

the definition of open: "mkdir android ; cd android ; repo init -u git://android.git.kernel.org/platform/manifest.git ; repo sync ; make"

So has his definition changed or have we always been at war with Eastasia?

Thanks! (I work on Milkymist One) You can follow the project at http://twitter.com/milkymistvj

Anonymous free speech is a by-product of public free speech and is useless if the society doesn't allow public free speech from a known individual. The uncited source is useless if the government doesn't allow the brave individual to include their reference in a public, non-anonymous article. Without someone, anyone standing up to vouch for a story, publicly, anonymous free speech is easily dismissed, easily forgotten, easily covered up.

What good would the Deep Throat informant have done if Bob Woodward and Carl Bernstein didn't publicly vouch for his information?

What are the Federalist Papers without people like Patrick Henry publicly stating "Give me Liberty or give me death?"

Which affected Iran and the world more? Reading @persiankiwi's tweets or seeing Neda Agha-Soltan, dying on a street with the entire world watching?

'Anonymous' (at least in this article) refers to the group AnonOps Communications, who host the numerous IRC channels, have a loose leader base, publish various 'flyers' of propaganda, and are the people behind 'Operation: Payback'. There is a difference between the group itself and an anonymous hacker, even if the anonymous hacker was acting out in the 'name' of anonymous.
what this article is saying is that the 'AnonOps' group had no involvement in the stealing of sony data, even if an anonymous hacker did.

references:
http://anonops.blogspot.com/
http://anonops.blogspot.com/2011/04/we-didnt-do-it-sony-incompetent.html
http://anonops.blogspot.com/2011/04/anonymous-hacks-westboro-baptist-church.html
http://twitter.com/intent/user?screen_name=anonops

This from this twitter makes me think it wasn't an apache or php vulnerability, though 'application server' is a broad enough term that it could mean almost anything.
Some random security researcher posited that because they had outdated apache server versions (with no known exploits) that it might have been an apache vulnerability. News sources elsewhere repeated that nonsense.

I'm sure no one believes that this is not an example of vigilante justice being played out against Sony. This is deeply concerning.

I don't believe it is. This is too big, and too deep an intrusion to simply be people trying to get back at Sony for being royal assholes. This has all the makings of a large-scale criminal hack with the intention of obtaining lots of information on Sony's customers and (at least hopefully) their credit card information. And there have been reports from people that claim that the credit cards they used with PSN have been seeing unauthorized charges, so it's possible that those responsible for the break-in were successful. That the intrusion was apparently deeper than Sony originally suspected, and also impacted SOE's services puts Sony's assurances that the credit card data was encrypted and unlikely to have been obtained into question. What if the hackers managed to obtain the encryption keys? It's starting to sound like Sony's entire network may have been compromised so that's a definite possibility. And if you believe the security researcher Kevin Stevens, they absolutely were successful and have been trying to sell the credit card database.

So no, this isn't likely to be vigilante justice. It's most likely it was done for profit, and any ideas of screwing Sony over were a secondary objective, if any objective at all. Now I will buy that the hackers who did this may have been attracted by the PS3's root key being lost, but that would have been a case of "if their security is that bad in the PS3, maybe their network security sucks too and they're an easy target" kind of thing, not a vigilante attack idea.

http://twitter.com/#!/ReallyVirtual/status/64783440226168832

The reports say that Bin Laden was actually killed about a week ago by a bomb in Pakistan, and the time taken to confirm his identity via DNA testing helped delay the news.

I couldn't find any reference to this in any of the linked articles, so I'm wondering where the claim came from.

An Abbottabad resident is being credited for inadvertently liveblogging the event as it happened, and his first reference to a helicopter flying over the suburb was 16 hours ago.

So either the claim that Bin Laden died a week ago is false, or the helicopter was brought down in a separate incident. Or the 'liveblog' is a rather elaborate hoax.

The twitter feed from his ghost is better: http://twitter.com/#!/ghostosama

You mean this Twitter account?

http://twitter.com/#!/Voyager2

Speaking of which: http://twitter.com/#!/Voyager2

In case you didn't know voyager 2 already does have a twitter account which is updated regularly.

Wikileaks mocked this Pentagon Press Secretary tweet this morning:

I saw that, for anyone who missed it, Wikileaks response was:

How the heart bleeds: Pentagon spokesman whines about spending easter weekend spinning Gitmo Files http://is.gd/cmVVLS

https://twitter.com/#!/wikileaks/status/62548661418213376

Wikileaks mocked this Pentagon Press Secretary tweet this morning:

https://twitter.com/#!/PentagonPresSec/status/62531762345091072

Thx to Wikileaks we spent Easter weekend dealing w/NYT & other news orgs publishing leaked classified GTMO docs http://1.usa.gov/fWbGED

The hypocrisy here is thick enough to cut with a knife. Every minute of every day US corporations (from Microsoft to Monsanto to Chevron and thousands of others) and the US military break the law in over 100 countries, heedlessly and without accountability or redress. Yet the FBI has the astonishing chutzpah to make a statement like, "Foreign firms that choose to operate in the United States are not free to flout the laws they don’t like simply because they can’t bear to be parted from their profits".

The iconic example of US corporate intransigence might be Union Carbide/Dow's all-but-deliberate poisoning of Bhopal, India, where tons of toxic, unstable nerve poison, improperly and carelessly stored in an American pesticide plant, killed 8,500 horribly in one night, and permanently injured 100,000s. No proper reparations have been made and nobody has been held to account.

In the Amazon, Chevron has committed one of the largest environmental crimes in US history - and thousands of US companies are doing the same every day.

More recently, the behaviour of Blackwater has illustrated that indiscriminate murder of foreign citizens is now just an accepted part of American corporate practice. Countless Iraqi citizens killed and injured by Blackwater (and other mercenary firm) employees have not seen justice.

Another example from this morning's timeline.

Here's another: Indonesia is just one of many countries now being flooded by a tsunami of toxic electronic waste from the United States.

Funny thing about karma...

@Warney lol. Does it count if the friend is the composer?

"I didn't jump to conclusions. I just took a a tiny little step, and there conclusions were."

LMAO.

And no, I most definitely am NOT TomHudson.

And you are not Alexander Peter Kowalski. You've been using my name for at least 10 years, tho. And putting it on your CRAPWARE!!! BUT YOU ARE NOT ME.

Maybe you are Yuri Klastalov?

Don't forget, I know where you live. "...your days are numbered"

You are completely pathetic.

"The REAL" APK.

Part of the genius that garrys way is: The error message will quickly be identified as not a real error by anyone who has a tiny bit of knowledge on graphics.
Additionally, he made sure to make fun at everyone that asked for help. This is the important part, as he said he doesn't expect this to be secure, he just wants everyone to laugh at the pirates https://twitter.com/garrynewman/status/58109191595892736

Courtesy of @humble:

How to use Jack Claw without a 360 controller

Download this file (right-click and "Save as"), and put it in your Jack Claw\Config folder. It should overwrite the original file, that's ok.

After that, keyboard & mouse should be enabled - pressing the left mouse button (or ESC) will proceed to the game.

Controls:
WASD - Character movement
Mouse - Claw movement
Left Mouse Click - Press once to grab an object, press again to release
Right Mouse Click - When holding an object, throws the object

Note: You can quit only by opening the console with the F8 key and writing "quit" there. We'll try to fix this shortly.

Who the hell is "Pastabagel"? How did this get onto Slashdot?

He has a Twitter feed, where you can read his blithering on other subjects.

Magnitude 6.5 - VERACRUZ, MEXICO http://goo.gl/b591M

Adam's bio on twitter "I play a scientist on TV". And i think he is right. He plays a scientist.

http://twitter.com/#!/donttrythis

I can back up the claim that the CLI is making a huge come back. I run a feed on twitter and identi.ca called @climagic that is becoming very popular. I think that people are trying to find ways to do the things that they need to do in GUIs and when it can't be done, they find that it is easier to access and manipulate your data using Unix command line tools in very efficient ways. Does that mean that its great for everything? No of course not, I'll admit that I use the GUI for many things too, in fact, I do graphical work in Blender and Inkscape and listen to music in Pandora and do my browsing in Firefox because it works well for me, but in many places, I can get my work done using the CLI and still wow people with iPhones and Androids in 2011.

http://twitter.com/newtgingrich?

I bet Newt Minow would be tweeting too, probably about the vast intellectual wasteland that is the Internet, were he still around.

That's often what happens with April Fools jokes. Most are silly, but some are silly enough that they actually raise a point.

I'm just worried that the one I'll be posting in a few hours on @climagic will not end up with someone patching the source to accomplish such a thing.

...There's a lot of red tape (permitting, bidding, etc) that has to be cut before they can even start construction which could easily take until 2012. ...

First of all to become one of the Google's Think Big With a Gig communities, most if not all of the red tape issues needed to be already taken care just to be considered for selection. Definitely a commitment by those lucky enough to be selected to move forward.

LMAO I would love to hear any politician tell their citizen's that the reason they did not succeed in becoming one of the first 5 Google's Think Big With a Gig Community was because the telco or cable company paid me to sabotage the process.

Are your community's politicians bought and paid for by your local telco-cable-cellular oligopoly? How would you know?

Think about that real hard because if your community can not get Fiber To The Home (FTTH). Perhaps your politicians are corrupt and not putting you, your family, your friends, your neighbors FIRST as they should.

If the local incumbent provider can lobby your politicians and prevent your family from getting FTTH, than so can other mega-corporations.

Given the Citizens United vs FEC decision you will never be allowed to hear the truth, only the negative campaign ads against any honest citizen politician! You should solve that in the next election for the sake of your family, friends and neighbors.

EPB in Chattanooga finished their FTTH, Fiber To The Home, build-out years ahead of schedule. The first build-out took a total of only 3 years...so getting another community done in two years with Google's backing is most definitely possible. Even easier when you consider the preparation a community has to go through just to be considered for the Fiber. In Chattanooga, with a minimal influx of additional cash (a $112M federal grant) they were able to finish ahead of schedule. Chattanooga now serves 20,000 residential customers and 2,500 business customers.

I think everyone reading this would agree that Google can pump way more than $112M, $300M or even $600M into any FTTH community it decides too. So what's your point!

More important will be the prices. Check out prices for Synchronous FTTH with EPB of Chattanooga:

$57.99: 30Mbps; Internet 30 (30Mb/30Mb or 30 Mb Downstream / 30 Mb Upstream)
$69.99: 50Mbps; Internet 50 (50Mb/50Mb)
$139.99: 100Mbps; Internet 100 (100Mb/100Mb)
$349.99; 1000Mbps; Internet 1,000 (1000Mb/1000Mb or 1Gb/1Gb)

And here are prices per cbemerine comment in The Real Reason to Cut the Cable? :

Until Google announces there five FTTH communities, there are the 16 plus communities in Utah via Utopia ($49 - $79) where the resident owns the Fiber (UOF) and can select from one of many providers. Other than that you can get 10Mb/10Mb in Wilson N.C. from Greenlight for $34.95 per month; 10Mb/10Mb in Lafayette, LA from LUS for $28.95 per month; 30Mb/30Mb in Chattanooga, TN from EPB for $57.99.

While I might wait through the end of this year to figure out where Google is going to go, there is no reason to wait until 2012, 2015 or 2020 and beyond. All of us can move today, this this map shows

Any app that uses the statuses/mentions API call (which is every app I've ever seen) will receive a list of every message that contains the string "@username" somewhere in it. The Twitter version of "reply all" is to write message like "@user1 @user2 Hi, guys!". In fact, that's what every app I've seen does when you hit "reply all": it starts a new message containing every username that was in the message you're replying to (minus your own).

The etiquette for mentions is the same as email: reply to anything you feel like you should reply to, ignore what you don't.

Turning them off is client-specific, but every one I've seen lets you disable the "mention" notification in some way.

The conversation thing is client-specific, too. Keep in mind that you only conversations including you, or which originate with and mention people you know, will show up in your stream of messages. But say you're interested in a particular user and you sneak a peek at their timeline to see if you want to follow them. If you tap on a message, many recent clients will expand it to show the conversation by recursing back through the list of replies.

I wonder if these numbers include "entity" accounts on Facebook/Twitter like @slashdot

The hacker has some interesting things to say: on twitter (the account seems pretty damn legit)

Using a Twitter account named @FreeNYT, an anonymous user aggregated every article the newspaper posted to Twitter. The site caught The Times' notice and before long, The Times requested that Twitter suspend the account, arguing that it violated its trademark.

That is incorrect. @FreeNYT wrote, "The @NYTimes took exception with @FreeNYTimes using their logo. @FreeNYT never did and was never shut down. #clarification."
Source: http://twitter.com/FreeNYT/status/51326909027594240
All this person did was create a Twitter list consisting of 40 New York Times accounts.

Incidentally, no one seems to have mentioned that the easiest way to bypass the paywall is to use the RefControl add-on for Firefox. Configure it to fake the referrer information to tell the nytimes.com that you are always coming from Twitter, and you can then navigate through their site at will.

I've started the canvassing to be the candidate in Laval - Les Îles
I figured that I can't just wait for someone else to do it for me.

I've just opened a twitter account if anyone cares to follow me.
http://twitter.com/stephanebakhos

It's part of the Castle, or for you ESR fans part of the "Cathedral".

Google has essentially closed off the open-source Honeycomb project to outside development. I think /. is out of the loop. The fact wasn't even covered here.

Read all about it here

Also, there's a funny parody account on Twitter exposing Google's hypocrisy by withholding the source for honeycomb.

http://twitter.com/Arubin/status/27808662429

What is the definition of "open" today, Google...?

Here, let me show you what the definition means now:

mkdir android
cd android
repo init -u git://android.git.kernel.org/platform/manifest.git
No command 'repo' found, did you mean:
Command 'rep' from package 'rep' (universe)
Command 'repl' from package 'nmh' (universe)
Command 'repl' from package 'mailutils-mh' (universe)
repo: command not found

repo sync
No command 'repo' found, did you mean:
Command 'rep' from package 'rep' (universe)
Command 'repl' from package 'nmh' (universe)
Command 'repl' from package 'mailutils-mh' (universe)
repo: command not found

make
make: *** No targets specified and no makefile found. Stop.

Since Google will not be releasing the Android sources (just the GPL Linux Kernel code, I presume), their definition of open is now:
open: command not found

That's how Andy Rubin sees it. Of course, Motorola got to peek at the source early for the Xoom, but they did that the old-fashioned way, with a license.

I guess that's hypocrisy -- I wouldn't bitch about Google being hypocritical, it's a company after all and it has no beliefs to contradict. But when a single large corporation basically runs an OSS project you have to consider exactly why they release source. And the Xoom basically shows us the strategy: if you're a big corporation that can manufacturer millions of units and you're willing to play by Google's proprietary licensing terms, you get a sneek peak at the new platform. If you're not important enough for Google to do business with, you'll get the Android source the same time the rest of the world does. It's a two-tier system: Google's OHA partners, and everyone else.

http://twitter.com/Arubin/status/27808662429

What is the definition of "open" today, Google...?

I guess I remembered it a bit wrong, it was a lot less. But still a lot:

"How much costs ONE revocation? 0.2 KB x ~12,000,000 CRL downloads x 52 weeks x 7 years = More than 850 GB for ONE revocation."

http://twitter.com/eddy_nigg/status/11729927248

(Eddy Nigg owns/operates StartSSL)

Maybe some other CA need get more requests (more sites using their certs ?) and maybe the numbers also go up in the years (more users)

You don't need an app at all. In Rio de Janeiro, where DUI checkpoints have become a daily occurrence and where there is a zero-alcohol policy for drivers, people have been using a Twitter feed to keep track of checkpoints. Any device that can access Twitter can be used, and it is free.

I don't see how recognizing that the music sucks should translate to hating on Bieber as a person. Similar goes for Rebecca Black. Speaking of which:

"It is rad that the girl is having fun, the bad part is that someone is trying to make money off it... I am mad at the system, not the girl" - DJ White Shadow
http://twitter.com/#!/DJWS/status/49979187750121472

P.S.
I find Bieber-is-female and other such comments to be immature

the NY Times tweets their headlines under 20 or so different accounts (nytimesarts, nytimesopinions, etc). freenyt has a list of all of them. You could do the same with any twitter client, too.

The twitter account in question isn't retweeting the URLs.

There is no automated bot in play here.

All this guy did was create a "Twitter List" of the ~40 official Twitter Accounts used by the NYTimes (they seem to have one per section of their site) ...

https://twitter.com/#!/FreeNYT/firehose/members

...if you follow that "list" you get access to all of those URLs.

You would get access to the same URLs if you followed each of those ~40 individual twitter accounts directly.

Essentially the NYT is complaining that someone is promoting the existence of their twitter accounts.

Anonymous Coward writes

"According to PCMag.com, the New York Times has asked Twitter to shut down the FreeNYT Twitter feed that basically retweets all of the Times' articles. Is this really possible? After all, the feed just points to a list of Times Twitter accounts, all of which can also be found on the Times' website. If the Times succeeds in shutting this down, it could have a chilling effect for Twitter and online free speech in general."

Anonymous Coward writes

"According to PCMag.com, the New York Times has asked Twitter to shut down the FreeNYT Twitter feed that basically retweets all of the Times' articles. Is this really possible? After all, the feed just points to a list of Times Twitter accounts, all of which can also be found on the Times' website. If the Times succeeds in shutting this down, it could have a chilling effect for Twitter and online free speech in general."

"According to PCMag.com, the New York Times has asked Twitter to shut down the FreeNYT Twitter feed that basically retweets all of the Times' articles. Is this really possible? After all, the feed just points to a list of Times Twitter accounts, all of which can also be found on the Times' website. If the Times succeeds in shutting this down, it could have a chilling effect for Twitter and online free speech in general."

"According to PCMag.com, the New York Times has asked Twitter to shut down the FreeNYT Twitter feed that basically retweets all of the Times' articles. Is this really possible? After all, the feed just points to a list of Times Twitter accounts, all of which can also be found on the Times' website. If the Times succeeds in shutting this down, it could have a chilling effect for Twitter and online free speech in general."

I should have looked it up before I rattled off a first post without being logged in, but it would indeed violate the standard TOS (unless NYT agreed to a custom version, which I doubt):

You retain your rights to any Content you submit, post or display on or through the Services. By submitting, posting or displaying Content on or through the Services, you grant us a worldwide, non-exclusive, royalty-free license (with the right to sublicense) to use, copy, reproduce, process, adapt, modify, publish, transmit, display and distribute such Content in any and all media or distribution methods (now known or later developed).

http://twitter.com/tos

Leads to an article, about an article, about an article that links to: http://twitter.com/FMCNL