The internet is reeling today at the "news" that a rare make of computer-aided gunsight can under certain circumstances be hacked into, permitting a hacker to interfere with a suitably-equipped rifle's aim.
The gunsight in question is the much-hyped but seldom purchased TrackingPoint kit, a system with a Linux machine at its heart which can be fitted to a range of different rifles.
The TrackingPoint (details on its capabilities are at the end of this article) is mainly a curiosity. People who would be interested in it - experienced long-range marksmen - basically don't need it, and people who need it - those who have seldom or never fired a rifle - typically don't want it. And very few in either group can afford it.
Serialization and, more importantly, deserialization of data is unsafe due to the simple fact that the data being processed is trusted implicitly as being “correct.” So if you’re taking data such as program variables from a non trusted source you’re making it possible for an attacker to control program flow. Additionally many programming languages now support serialization of not just data (e.g. strings, arrays, etc.) but also of code objects. For example with Python pickle() you can actually serialize user defined classes, you can take a section of code, ship it to a remote system, and it is executed there.
The United States Federal Communications Commission (FCC) has introduced ‘software security requirements’ obliging WiFi device manufacturers to “ensure that only properly authenticated software is loaded and operating the device”. The document specifically calls out the DD-WRT open source router project, but clearly also applies to other popular distributions such as OpenWRT. This could become an early battle in ‘The war on general purpose computing’ as many smartphones and Internet of Things devices contain WiFi router capabilities that would be covered by the same rules.
The Jeep Cherokee brought to a halt by hackers last week exposed wireless networks as the weakest link in high-tech vehicles, underscoring the need to find fast over-the-air fixes to block malicious intrusions.
Features that buyers now expect in most modern automobiles, such as driving directions and restaurant guides, count on a constant connection to a telecommunications network. But that link also makes cars vulnerable to security invasions like those that threaten computers in homes and businesses.
Open source Copyright Hub unveiled with '90+ projects' in the pipeline
The web has grown up without letting people own and control their own stuff, but a British-backed initiative might change all that, offering a glimpse of how the internet can work in the future. Their work will all be open sourced early next year.
Britain's much-anticipated Copyright Hub was given ministerial blessing when it finally opened its kimono today, boasting a pipeline of over 90 projects covering commercial and free uses.
DNF Might Handle System Upgrades in Fedora 23 Linux, Obsoletes and Retires Fedup
Kevin Fenzi posted a new message on the Fedora devel-announce mailing list a couple of days ago, informing all users and developers about a new proposal for the upcoming Fedora 23 Linux operating system, called DNF System Upgrades.
Windows 10, The Matrix, and Linux Heros
Wow, it sure was a busy Thursday in the news feeds today. Windows 10 is getting a lot of headlines, some right in Open Source World. The Free Software Foundation issued a public statement urging folks to reject Windows 10 and LinuxBSDos.com advised dual-boot upgraders. The CEO of Mozilla even posted an open letter to Microsoft CEO concerning Windows 10. Elsewhere, Christine Hall blogged about the advancement of artificial intelligence, a LibreOffice update was announced, and Swapnil Bhartiya shared his pick of top five heros of Linux.
At the Tizen Developer Summit 2015 (TDS) event in Bengaluru, India July 30-31, Samsung has announced new Tizen SDKs for their Smartphones, Smartwatches, and Smart TVs. The Summit is focused in helping to grow the Tizen ecosystem by educating developers to the Tizen Operating System. Samsung are still offering developers 100% revenue for their apps until January 2016, making it an attractive proposition.
AIDA64 is a Hardware and software information utility for tizen based devices. Based on the extensive hardware knowledge of the AIDA64 for Windows application, AIDA64 for Tizen is capable of showing various diagnostic information for the phones and tablets including:
Soon after LG launched its Android 5.1 Lollipop-based Gentle flip phone, Samsung has followed its South Korean counterpart with the launch of the Galaxy Folder flip phone. The new Samsung clamshell smartphone has been launched in South Korea at KRW 297,000 (approximately Rs. 16,350). The smartphone is expected to go on sale next month in Korea.
Motorola announced three new Android 5.1.1 (Lollipop) phones on Tuesday, including a high-end model that will be sold this fall in the U.S. as the Moto X Style Pure Edition, starting at the low price of $400 unlocked.
Imagine you're at a family get-together. For the first time all day, everyone is in the perfect position and smiling, just waiting for you to snap the picture. You position your Android's camera and click.
Tablets and smartphones are invaluable parenting resources, whether it’s providing new ways of educating and informing kids or simply entertaining them. Learning apps, creative thinking games, and streaming video apps make your Android device an incredibly handy thing to have around (even if you’re trying to limit screen time).
At an event in California earlier today, Volkswagen officially announced that upcoming 2016 VW models will be Android Auto-ready. Which models? For now, what we know is this: most model year 2016 VWs at "SE" trim and above will likely pack the generation two MIB infotainment system, which has Android Auto (and Apple CarPlay). There are 6.5" and 8" versions of MIB 2, but both offer the same Auto experience.
HTC's One M8 flagships will not be receiving the Android 5.1.1 Lollipop update. Instead, the Taiwanese tech giant is heavily speculated to directly roll out the Android M upgrade later this year for both the handsets.
As we saw in previous leaks, the update brings a full fledged Android Wear app which allows users to select accounts, browse and view entire conversations, as well as reply by either voice, emoji, or canned response. What wasn’t known is whether or not Android Wear users would be able to actually initiate a message using an “Ok Google” voice command on their smartwatch. We are now able to confirm in our version, this does, in fact, work.
Motorola announced brand new Android hardware on Tuesday, including the sleek and affordable Moto X Pure Edition phablet and the significantly updated budget-friendly Moto G. But there’s also one other thing Motorola plans to do starting with these phones in order to fix the most annoying thing about Android.
Toyota and Telenav are announcing today that certain 2016 vehicles will be the first to support Scout GPS Link, a feature that ferries route and destination information between the dashboard and a version of Telenav's Scout app for iPhone and Android. Scout already has an in-car turn-by-turn mode that you can use directly on your phone, but this makes it easier — all the interactions (including voice commands) happen through the car's display and audio system instead of the phone's.
The Android 5.1.1 Lollipop is gradually being rolled out to different Samsung flagships. The firmware update is not a major update but brings fixes for various bugs that came along with the previous Android builds.
Sony’s Z3 is a good phone, handicapped with a skinned version of Android that looks dated, and comes with a dump-truck of superfluous crap. Thanks to this quietly-leaked Sony Android Concept, which strips away all the junk and leaves a experience that looks plain fantastic.
Oracle is the latest company to get on the Docker bandwagon, having announced support for the application container technology to come in a future version of Solaris Unix.
Docker arose out of the Linux world, and its original implementation takes advantage of a number of Linux kernel features, including LXC, cgroups, and namespaces.
Solaris, meanwhile, has had native support for containers since 2005, in the form of Solaris Zones. Rather than aping how Docker handles containers on Linux, Oracle plans to stick with this arguably superior technology.
Lakhani's current role involves promoting the use of applications like Drupal, WordPress, Magento, and Redline through free tools and services. But, this Denver-based executive's experience shows most in forming the global, distributed team of developers and support staff inherent to success.
OpenBSD is going through something of a minimalist phase right now, but that wasn’t always the case. There was definitely an era of aggressive importation as well. Times change, priorities change, projects change. I wasn’t involved with OpenBSD during the early years, but I think I can explain the shift in attitudes. This is part three of an apparently ongoing series that started with Pruning and Polishing and out with the old, in with the less.
Two IT trade associations in the Slovak Republic are objecting the renewal of a proprietary software licence contract negotiated by the country’s Ministry of Finance for all government organisations. Instead of continuing to rely on proprietary office suites, the groups want the Slovakian government to explore a transition to open source alternatives.
Through their brief webinar Marijke and Marco will share with the audience how the Dutch Government is promoting the adoption of open standards through BOMOS, a method (initiated by Dr. Erwin Folmer, TNO with contribution from Marijke) which describes how to maintain and manage open standards.