|
1825 Monetary Lane Suite #104 Carrollton, TX
Do a presentation at NTLUG.
What is the Linux Installation Project?
Real companies using Linux!
Not just for business anymore.
Providing ready to run platforms on Linux
|
Show Descriptions... (Show All)
(Single Column)
|
|
- FreeRDP 3.16 Released With Better SDL3 Client Support
FreeRDP 3.16 is out today as the newest update to this open-source Remote Desktop Protocol (RDP) library and client implementation. This Apache-licensed project continues to be one of the leading implementations of the Microsoft RDP protocol for use outside the confines of Windows...
- Slowing the flow of core-dump-related CVEs
The handling of core dumps has indeed been a constant source of vulnerabilities for the Linux kernel. With luck, the 6.16 work will result in rather fewer of them in the future.
- Linuxiac Weekly Wrap-Up: Week 24 (Jun 9 – 15, 2025)
Catch up on the latest Linux news: Rocky 10, Kali 2025.2, KDE Frameworks 6.15, Archinstall 3.0.8, XBPS 0.60, Wine 10.10, Gitea 1.24, End of Windows 10: Don’t worry, be happy, and more.
| |
|
|
- Google Cloud Caused Outage By Ignoring Its Usual Code Quality Protections
Google Cloud has attributed last week's widespread outage to a flawed code update in its Service Control system that triggered a global crash loop due to missing error handling and lack of feature flag protection. The Register reports: Google's explanation of the incident opens by informing readers that its APIs, and Google Cloud's, are served through our Google API management and control planes." Those two planes are distributed regionally and "are responsible for ensuring each API request that comes in is authorized, has the policy and appropriate checks (like quota) to meet their endpoints." The core binary that is part of this policy check system is known as "Service Control." On May 29, Google added a new feature to Service Control, to enable "additional quota policy checks." "This code change and binary release went through our region by region rollout, but the code path that failed was never exercised during this rollout due to needing a policy change that would trigger the code," Google's incident report explains. The search monopolist appears to have had concerns about this change as it "came with a red-button to turn off that particular policy serving path." But the change "did not have appropriate error handling nor was it feature flag protected. Without the appropriate error handling, the null pointer caused the binary to crash." Google uses feature flags to catch issues in its code. "If this had been flag protected, the issue would have been caught in staging." That unprotected code ran inside Google until June 12th, when the company changed a policy that contained "unintended blank fields." Here's what happened next: "Service Control, then regionally exercised quota checks on policies in each regional datastore. This pulled in blank fields for this respective policy change and exercised the code path that hit the null pointer causing the binaries to go into a crash loop. This occurred globally given each regional deployment." Google's post states that its Site Reliability Engineering team saw and started triaging the incident within two minutes, identified the root cause within 10 minutes, and was able to commence recovery within 40 minutes. But in some larger Google Cloud regions, "as Service Control tasks restarted, it created a herd effect on the underlying infrastructure it depends on ... overloading the infrastructure." Service Control wasn't built to handle this, which is why it took almost three hours to resolve the issue in its larger regions. The teams running Google products that went down due to this mess then had to perform their own recovery chores. Going forward, Google has promised a couple of operational changes to prevent this mistake from happening again: "We will improve our external communications, both automated and human, so our customers get the information they need asap to react to issues, manage their systems and help their customers. We'll ensure our monitoring and communication infrastructure remains operational to serve customers even when Google Cloud and our primary monitoring products are down, ensuring business continuity."
Read more of this story at Slashdot.
- Intel Will Lay Off 15% To 20% of Its Factory Workers, Memo Says
Intel will lay off 15% to 20% of its factory workforce starting in July, potentially cutting over 10,000 jobs as part of a broader effort to streamline operations amid declining sales and mounting competitive pressure. "These are difficult actions but essential to meet our affordability challenges and current financial position of the company. It drives pain to every individual," Intel manufacturing Vice President Naga Chandrasekaran wrote to employees Saturday. "Removing organizational complexity and empowering our engineers will enable us to better serve the needs of our customers and strengthen our execution. We are making these decisions based on careful consideration of what's needed to position our business for the future." The company reiterated that "we will treat people with care and respect as we complete this important work." Oregon Live reports: Intel announced the pending layoffs in April and notified factory workers last week that the cuts would begin in July. It hadn't previously said just how deep the layoffs will go. The company had 109,000 employees at the end of 2024, but it's not clear how many of those worked in its factory division -- called Intel Foundry. The Foundry business includes a broad array of jobs, from technicians on the factory floor to specialized researchers who work years in advance to develop future generations of microprocessors. Intel is planning major cuts in other parts of its business, too, but employees say the company hasn't specified how many jobs it will eliminate in each business unit. Workers say they believe the impacts will vary within departments. Overall, though, the layoffs will surely eliminate several thousand jobs -- and quite possibly more than 10,000.
Read more of this story at Slashdot.
- Vandals Cut Fiber-Optic Lines, Causing Outage For Spectrum Internet Subscribers
An anonymous reader quotes a report from Ars Technica: Subscribers in Southern California of Spectrum's Internet service experienced outages over the weekend following what company officials said was an attempted theft of copper lines located in Van Nuys, a suburb located 20 miles from downtown Los Angeles. The people behind the incident thought they were targeting copper lines, the officials wrote in a statement Sunday. Instead, they cut into fiber optic cables. The cuts caused service disruptions for subscribers in Van Nuys and surrounding areas. Spectrum has since restored service and is offering a $25,000 reward for information leading to the apprehension of the people responsible. Spectrum will also credit affected customers one day of service on their next bill. "Criminal acts of network vandalism have become an issue affecting the entire telecommunications industry, not just Spectrum, largely due to the increase in the price of precious metals," the officials wrote in a statement issued Sunday. "These acts of vandalism are not only a crime, but also affect our customers, local businesses and potentially emergency services. Spectrum's fiber lines do not include any copper." Outage information service Downdetector showed that thousands of subscribers in and around Van Nuys reported outages starting a little before noon on Sunday. Within about 12 hours, the complaint levels returned to normal. Spectrum officials told the Los Angeles Times that personnel had to splice thousands of fiber lines to restore service to affected subscribers.
Read more of this story at Slashdot.
- Threads Will Let You Hide Spoilers In Your Posts
Threads is testing a new feature that lets users hide spoiler content by blurring images or text, which can then be revealed with a tap. The Verge reports: Meta spokesperson Alec Booker told The Verge that this is a "global test," though it's not clear how many people will gain access to it. Spoilers will also look a bit different depending on which device you're using. On desktop, spoilers are hidden by a gray block, but they appear behind a bunch of floating dots on mobile (which you can see in the GIF embedded [here]). "This feature is currently optimized for mobile, but we're working to improve the experience for desktop," Booker said.
Read more of this story at Slashdot.
- Salesforce Study Finds LLM Agents Flunk CRM and Confidentiality Tests
A new Salesforce-led study found that LLM-based AI agents struggle with real-world CRM tasks, achieving only 58% success on simple tasks and dropping to 35% on multi-step ones. They also demonstrated poor confidentiality awareness. "Agents demonstrate low confidentiality awareness, which, while improvable through targeted prompting, often negatively impacts task performance," a paper published at the end of last month said. The Register reports: The Salesforce AI Research team argued that existing benchmarks failed to rigorously measure the capabilities or limitations of AI agents, and largely ignored an assessment of their ability to recognize sensitive information and adhere to appropriate data handling protocols. The research unit's CRMArena-Pro tool is fed a data pipeline of realistic synthetic data to populate a Salesforce organization, which serves as the sandbox environment. The agent takes user queries and decides between an API call or a response to the users to get more clarification or provide answers. "These findings suggest a significant gap between current LLM capabilities and the multifaceted demands of real-world enterprise scenarios," the paper said. [...] AI agents might well be useful, however, organizations should be wary of banking on any benefits before they are proven.
Read more of this story at Slashdot.
- The US Navy Is More Aggressively Telling Startups, 'We Want You'
An anonymous reader quotes a report from TechCrunch: While Silicon Valley executives like those from Palantir, Meta, and OpenAI are grabbing headlines for trading their Brunello Cucinelli vests for Army Reserve uniforms, a quieter transformation has been underway in the U.S. Navy. How so? Well, the Navy's chief technology officer, Justin Fanelli, says he has spent the last two and a half years cutting through the red tape and shrinking the protracted procurement cycles that once made working with the military a nightmare for startups. The efforts represent a less visible but potentially more meaningful remaking that aims to see the government move faster and be smarter about where it's committing dollars. "We're more open for business and partnerships than we've ever been before," Fanelli told TechCrunch in a recent episode of StrictlyVC Download. "We're humble and listening more than before, and we recognize that if an organization shows us how we can do business differently, we want that to be a partnership." Right now, many of these partnerships are being facilitated through what Fanelli calls the Navy's innovation adoption kit, a series of frameworks and tools that aim to bridge the so-called Valley of Death, where promising tech dies on its path from prototype to production. "Your granddaddy's government had a spaghetti chart for how to get in," Fanelli said. "Now it's a funnel, and we are saying, if you can show that you have outsized outcomes, then we want to designate you as an enterprise service." In one recent case, the Navy went from a Request for Proposal (RFP) to pilot deployment in under six months with Via, an eight-year-old, Somerville, Massachusetts-based cybersecurity startup that helps big organizations protect sensitive data and digital identities through, in part, decentralization, meaning the data isn't stored in one central spot that can be hacked. (Another of Via's clients is the U.S. Air Force.) The Navy's new approach operates on what Fanelli calls a "horizon" model, borrowed and adapted from McKinsey's innovation framework. Companies move through three phases: evaluation, structured piloting, and scaling to enterprise services. The key difference from traditional government contracting, Fanelli says, is that the Navy now leads with problems rather than predetermined solutions. "Instead of specifying, 'Hey, we'd like this problem solved in a way that we've always had it,' we just say, 'We have a problem, who wants to solve this, and how will you solve it?'" Fanelli said.
Read more of this story at Slashdot.
- Obscure Chinese Stock Scams Dupe American Investors by the Thousands
Thousands of American investors have lost millions of dollars to sophisticated pump-and-dump schemes involving small Chinese companies listed on Nasdaq, prompting the Justice Department to declare the fraud a priority under the Trump administration's white-collar enforcement program. The scams recruit victims through social media ads and WhatsApp messages, directing them to purchase shares in obscure Chinese firms whose stock prices are artificially inflated before collapsing. Since 2020, nearly 60 China-based companies have conducted initial public offerings on Nasdaq raising $15 million or less each, with more than one-third experiencing sudden single-day price drops exceeding 50%. In one recent case, seven traders earned over $480 million by defrauding 600 victims who purchased shares in China Liberal Education Holdings.
Read more of this story at Slashdot.
- OpenAI, Growing Frustrated With Microsoft, Has Discussed Making Antitrust Complaints To Regulators
Tensions between OpenAI and Microsoft over the future of their famed AI partnership are flaring up. WSJ, minutes ago: OpenAI wants to loosen Microsoft's grip on its AI products and computing resources, and secure the tech giant's blessing for its conversion into a for-profit company. Microsoft's approval of the conversion is key to OpenAI's ability to raise more money and go public. But the negotiations have been so difficult that in recent weeks, OpenAI's executives have discussed what they view as a nuclear option: accusing Microsoft of anticompetitive behavior during their partnership, people familiar with the matter said. That effort could involve seeking federal regulatory review of the terms of the contract for potential violations of antitrust law, as well as a public campaign, the people said.
Read more of this story at Slashdot.
- That 'Unsubscribe' Button Could Be a Trap, Researchers Warn
Researchers are cautioning users against clicking unsubscribe links embedded in email bodies, citing new data showing such actions can expose recipients to malicious websites and confirm active email addresses to attackers. DNSFilter found that one in every 644 clicks on unsubscribe links leads users to potentially malicious websites. "You've left the safe, structured environment of your email client and entered the open web," TK Keanini, DNSFilter's chief technology officer, told WSJ. The risks range from confirming to bad actors that an email address belongs to an active user to redirecting victims to fake websites designed to steal login credentials or install malware. Clicking such links "can make you a bigger target in the future," said Michael Bargury, CTO of security company Zenity.
Read more of this story at Slashdot.
- Dutch Court Confirms Apple Abused Dominant Position in Dating Apps
A Dutch court on Monday confirmed a 2021 consumer watchdog's ruling saying that Apple had abused its dominant position by imposing unfair conditions on providers of dating apps in the App Store. From a report: The Rotterdam District Court ruled that the Dutch Authority for Consumers and Markets (ACM) was therefore right to impose an order subject to a penalty for non-compliance. The court ruled that ACM was right in finding that dating app providers had to use Apple's own payment system, were not allowed to refer to payment options outside the App Store, and had to pay a 30% commission (15% for small providers) to Apple.
Read more of this story at Slashdot.
|
- Scattered Spider has moved from retail to insurance
Google threat analysts warn the team behind the Marks & Spencer break-in has moved on
Cyber-crime crew Scattered Spider has infected US insurance companies following a series of ransomware attacks against American and British retailers, according to Google, which urged this sector to be on "high alert."…
- UK students flock to AI to help them cheat
No need to plagiarize if you can have AI do it for you
A series of Freedom of Information requests shows that students in British universities are increasingly getting busted for using AI to cheat.…
- Penn State boffins create silicon-free two-dimensional computer
Clock speed of 25 kHz means 2D CMOS system won't run Doom quite yet
Gaze into the temporal distance and you might spot the end of the age of silicon looming somewhere out there, as a research team at Penn State University claims to have built the first working CMOS computer entirely from two-dimensional materials.…
- Japan builds near $700M fund to lure foreign academic talent
For researchers yearning to earn some yen and escape Trump 2.0
Japan is the latest nation hoping to tempt disgruntled US researchers alarmed by the Trump administration's hostile attitude to academia to relocate to the Land of the Rising Sun.…
| |
|
|
|
