Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

Home Assistant's Internet Accessibility Security Flaw

2024-12-15

Frederik Braun attempted to use Home Assistant for remote smart home control but discovered a significant security vulnerability. While Home Assistant offers username/password and two-factor authentication, its inability to handle URLs with embedded credentials and its requirement for root path deployment prevent additional security layers like web server authentication or obfuscated paths. This leaves Home Assistant's security solely reliant on its internal mechanisms, creating a security risk. The author calls on the Home Assistant community to improve its security configuration flexibility.

Read more
(frederikbraun.de)
Development Remote Access

Network Security Breakthrough: Trapping Intruders in a 'Network from Hell'

2024-12-17
Network Security Breakthrough: Trapping Intruders in a 'Network from Hell'

Researchers at the University of Oulu's SensorFu team have developed a novel network security defense system inspired by the LaBrea tarpit technique. The system intercepts ARP requests and delays SYN-ACK responses, creating a multitude of virtual devices on the network to confuse intruders. This forces attackers to waste significant time identifying real devices, providing administrators with crucial time to patch vulnerabilities. Tests showed the system extends scan times to hours, drastically reducing attack success rates. Lightweight, efficient, and easy to deploy, this system offers robust network protection for organizations of all sizes.

Read more
(medium.com)
Development intrusion detection proactive defense

Clinical Trials Bottleneck: Culture, Regulation, and Innovation Stalled

2024-12-20
Clinical Trials Bottleneck: Culture, Regulation, and Innovation Stalled

This blog post explores the high costs and inefficiencies of clinical trials. The authors argue the root problem lies in industry culture—an overemphasis on safety that neglects the risks of inaction. This leads to regulatory overreach, such as restrictions on patient compensation and slow adoption of innovative methods (like risk-based monitoring). The post calls for a cultural shift, increased transparency, and policy adjustments to incentivize innovation, ultimately speeding up drug development.

Read more
(www.writingruxandrabio.com)
Tech clinical trials regulation

JMAP Turns 10: A Decade of Open Email Protocol

2024-12-23
JMAP Turns 10: A Decade of Open Email Protocol

Fastmail celebrates the 10th anniversary of JMAP, its open-source email protocol. Over the past decade, JMAP has evolved from initial concept to a mature standard, incorporating email, contacts, and calendar functionalities, through industry workshops, collaborations with developers, and IETF standardization. Looking ahead, Fastmail plans to enhance the Cyrus IMAP server and continue promoting JMAP adoption to improve user experience and make it the industry standard for email.

Read more
(www.fastmail.com)
Development open-source protocol email

Google Proposes Remedies in DOJ Search Distribution Case

2024-12-21
Google Proposes Remedies in DOJ Search Distribution Case

Google strongly disagrees with and will appeal the Department of Justice's (DOJ) ruling in the search distribution lawsuit. Ahead of an April 2025 hearing, Google submitted its own remedies proposal, focusing on contracts with browser and Android device makers. The proposal aims to give browser companies and device makers more flexibility in choosing default search engines, while ensuring compliance with the court's order and avoiding harm to consumer privacy and US tech leadership. In contrast, the DOJ's proposal is seen as overly interventionist and potentially harmful to consumers and US tech competitiveness.

Read more
(blog.google)
Tech

CenterClick NTP200 Series: Offline GPS Time Servers for Precise Synchronization

2024-12-15

CenterClick introduces the NTP200 series of GPS-based NTP servers, offering precise time synchronization without internet connectivity. The series includes models like NTP200, NTP250, NTP220, and NTP270, each with varying RAM and features such as PoE and alarm outputs. These appliances feature built-in GPS antennas, supporting multiple GNSS constellations, and offer various interfaces and protocols including HTTP, HTTPS, SNMP, and SSH. Management and configuration are handled via a web interface, CLI, or USB, with NTP client tracking capabilities. Suitable for a wide range of applications, from ISPs to hobbyists, the series offers optional accessories such as different antenna lengths and power supplies.

Read more
(centerclick.com)
Hardware GPS time server NTP server time synchronization

Whittaker's Keynote at NDSS 2024: AI, Encryption, and a New Era of Threats

2024-12-18
Whittaker's Keynote at NDSS 2024: AI, Encryption, and a New Era of Threats

At the 2024 NDSS Symposium, Meredith Whittaker, president of the Signal Foundation, delivered a keynote address reflecting on the 'Crypto Wars' of the 90s. She highlighted how political, technical, and commercial pressures have shaped today's encryption landscape. Whittaker warned against viewing the current situation as simply 'Crypto Wars 2.0,' arguing that an economic engine driven by personal data, surveillance technology, and AI/ML poses a fundamentally different threat than the government-dominated encryption landscape of the 90s. She stressed the need for a new approach, with NDSS research at the forefront of this response.

Read more
(www.ndss-symposium.org)
AI Encryption

Link Rot Investigation: Personal Blogs Face High Risk

2024-12-24
Link Rot Investigation: Personal Blogs Face High Risk

Blogger Wouter Groeneveld conducted a link rot investigation on his blog, Brain Baking. He checked 3179 external links across 453 posts, discovering approximately 7% were broken, with 404 and 403 errors being the most prevalent. Broken links stemmed primarily from personal blogs, followed by corporate sites and other resources. The findings highlight the lower stability of links on personal websites and a high link rot rate in academic papers. The blogger recommends website builders use permalinks, linkers carefully choose their targets, and consider local storage for external resources.

Read more
(brainbaking.com)
Misc link rot

Genesis Engine: A Universal Physics Engine Ushering in a New Era for Robotics and AI

2024-12-22

Genesis is a powerful, general-purpose physics engine and robotics simulation platform capable of simulating a wide range of materials and physical phenomena at unprecedented speeds. It can even generate physically accurate videos and robotic policies from natural language descriptions. For example, it can simulate Sun Wukong performing somersaults, a samurai practicing boxing, and various robots completing complex tasks, with Sim2Real policy transfer capabilities. Currently open-source, the engine will gradually release its generative framework in the future, promising to revolutionize data generation for robotics and AI.

Read more
(genesis-embodied-ai.github.io)
AI AI data generation

Cultivated Meat: From a $330,000 Burger to the Future of Food

2024-12-16
Cultivated Meat: From a $330,000 Burger to the Future of Food

From Winston Churchill's 1931 prediction to the world's first lab-grown burger in 2013, the cultivated meat industry has overcome challenges to become a booming sector. The initial high cost (the first burger cost $330,000) fueled innovation, leading to over 100 companies worldwide investing a total of $2.6 billion. Technological advancements have reduced costs, such as serum-free growth media, and increased efficiency with innovations like PluriMatrix. Regulatory approvals in countries like the US and Singapore are paving the way for wider adoption, though mainstream acceptance is projected to take 20-30 years.

Read more
(www.synbiobeta.com)
Tech cultivated meat cell-based meat food technology

The Future of Dashboard Design?

2024-12-23
The Future of Dashboard Design?

This article explores the shortcomings of current dashboard design. The author points out that existing dashboards are often poorly designed and fail to effectively utilize the human visual system to process large amounts of information. The article reviews cognitive systems engineering research from the 80s and 90s on dashboard design, such as ecological interface design and visual momentum, and notes the current industry's lack of focus on improving dashboard design. The author calls for greater attention to dashboard design, to better integrate query functions and improve information processing efficiency.

Read more
(surfingcomplexity.blog)
Development dashboard design observability user interface

Proxmox Datacenter Manager Alpha Release Announced

2024-12-19
Proxmox Datacenter Manager Alpha Release Announced

Proxmox has released an alpha preview of its Datacenter Manager. This software centralizes management of all nodes and clusters, offering basic features like virtual machine migration without requiring a cluster network. Developed entirely in Rust, from the backend API to the new frontend, it boasts a modern web UI for improved speed and compatibility. This alpha release aims to gather user feedback, test core features, and foster collaboration. While some features are incomplete and bugs are expected, it's already capable of managing thousands of remotes and virtual machines.

Read more
(forum.proxmox.com)
Development Datacenter Management Alpha Release

Otto-m8: A No-Code Visual Platform for AI Workflows

2024-12-23
Otto-m8: A No-Code Visual Platform for AI Workflows

Otto-m8 is a flowchart-based automation platform that allows users to interconnect LLMs and Hugging Face models via a simple visual interface and deploy them as REST APIs. It abstracts the complex process of running AI models into an Input, Process, Output paradigm, enabling users to build various AI workflows, such as chatbots or custom APIs, with minimal to no code. Currently in its MVP stage, Otto-m8's source code is publicly available.

Read more
(github.com)
AI No-code Workflow Automation

Surfer Protocol: Open-Source Framework for Personal Data Control

2024-12-17
Surfer Protocol: Open-Source Framework for Personal Data Control

Surfer Protocol is an open-source framework that empowers users to export and build applications based on their personal data. Addressing the issue of data siloed across numerous platforms, Surfer Protocol offers a solution. It comprises a desktop application for exporting data from various apps and services, and a Python SDK for building applications using this data. Users can leverage Surfer Protocol to create personalized AI models, reclaim control of their data from big tech, or leave a digital legacy.

Read more
(github.com)
Development personal data open-source framework data export

In Praise of the 100-Page Idea: A Case for Brevity in Nonfiction

2024-12-22

Tracy Durnell argues for the value of concise nonfiction books, specifically those around 100 pages long. She finds these shorter works ideal for exploring a single, impactful idea without excessive detail, fitting modern readers' shorter attention spans. Durnell highlights several examples of excellent books in this length, contrasting them with longer works that she believes often dilute their core ideas through padding. She champions the efficiency of a focused approach, emphasizing the benefits of connecting multiple concise ideas to build a broader understanding over consuming lengthy, highly-detailed tomes.

Read more
(tracydurnell.com)
Misc reading books writing

Immutable Linux Distros: Are They Right for You?

2024-12-25
Immutable Linux Distros: Are They Right for You?

This article explores immutable Linux distributions, which enhance stability and security by locking down the core system as read-only. It explains the concept, advantages, and selection criteria for immutable distros, recommending several desktop and server options like Fedora Silverblue, Vanilla OS, and openSUSE Aeon. The author shares personal experiences and discusses the differences between immutable distros and traditional ones, along with snapshot tools like Timeshift and Btrfs. In essence, immutable Linux distros offer a compelling alternative for users prioritizing stability and security, trading some flexibility for a more maintenance-free experience.

Read more
(linuxblog.io)
Development Linux distributions immutable systems system stability

Princeton University Unveils Infinigen: An Engine for Generating Infinite Photorealistic Worlds

2024-12-23
Princeton University Unveils Infinigen: An Engine for Generating Infinite Photorealistic Worlds

Princeton University's Visual Learning Lab has released Infinigen, an engine that uses procedural generation to create infinitely varied photorealistic worlds. It can generate both indoor and outdoor scenes and offers features like camera configuration, export to various file formats, and the addition of external assets. Built on Blender and incorporating several open-source projects, Infinigen's code is publicly available with comprehensive documentation and tutorials. The research team published papers on the technology at CVPR 2023 and 2024 and encourages community contributions of code, generators, and data.

Read more
(github.com)
AI procedural generation virtual worlds

GribStream: A Fast and Efficient Historical Weather Forecast API

2024-12-20
GribStream: A Fast and Efficient Historical Weather Forecast API

GribStream is a fast, efficient, and easy-to-use historical weather forecast API leveraging the National Blend of Models (NBM) and the Global Forecast System (GFS). It provides access to massive historical weather data; a single HTTP request can retrieve tens of thousands of hourly data points for months in seconds. The API supports various output formats (CSV, Parquet, JSON, etc.) and location queries. Its cost-effective pricing and powerful features allow developers to easily access the data they need without downloading and archiving.

Read more
(gribstream.com)
Development historical data

Quick Start with TideCloak: Secure React App in 10 Minutes

2024-12-19
Quick Start with TideCloak: Secure React App in 10 Minutes

TideCloak is an easy-to-use identity and access management system based on Keycloak and secured by Tide's Cybersecurity Fabric. This guide shows you how to build a secure single-page React application with TideCloak in under 10 minutes. First, install Docker and NPM, then run the TideCloak-Dev Docker container. After activating a free developer license, create your React project, install dependencies, and run the application. Users can log in, register, and view customized content based on predefined roles, all managed by TideCloak and secured by Tide's Cybersecurity Fabric.

Read more
(github.com)
Development Identity Management

Grayjay App: Follow Creators, Not Platforms

2024-12-20

Grayjay is a multi-platform video player that aggregates content from YouTube, PeerTube, Twitch, and more, eliminating the need to switch between different platforms. Prioritizing user privacy, it stores watch history locally and offers data import/export and auto-backup. Features include a personalized content feed, screen casting, and Harbor integration for connecting with audiences and monetizing content.

Read more
(grayjay.app)
Development video player cross-platform

Nottingham Scientists Discover New Type of Magnetism with Potential to Revolutionize Digital Devices

2024-12-16

Researchers at the University of Nottingham have discovered a new class of magnetism called 'altermagnetism,' where magnetic building blocks align antiparallel but with a rotated structure. Published in Nature, this finding could revolutionize digital devices. Altermagnets promise a thousand-fold increase in the speed of microelectronic components and digital memory, while offering improved robustness and energy efficiency, and reducing reliance on rare and toxic heavy elements. The team used X-ray imaging at the MAX IV facility in Sweden to confirm the existence and controllability of this new magnetic order.

Read more
(www.nottingham.ac.uk)
Tech new magnetism digital devices microelectronics

A New Twist: Molecular Machines Loop and Twist Chromosomes

2024-12-17
A New Twist: Molecular Machines Loop and Twist Chromosomes

Scientists have discovered a new function of the molecular motors that shape our chromosomes: SMC proteins not only form long loops in DNA but also significantly twist the DNA during loop formation. Published in Science Advances, the research reveals that SMC proteins introduce a left-handed twist of 0.6 turns in each DNA loop extrusion step. This twisting action is conserved across species, observed in both human and yeast cells, highlighting its evolutionary importance. This finding enhances our understanding of chromosome structure and function and provides insights into developmental diseases like cohesinopathies.

Read more
(phys.org)
Biology molecular motors chromosomes

2025 TV Market: Lower Prices, More Ads, and an OS War

2024-12-16
2025 TV Market: Lower Prices, More Ads, and an OS War

The 2025 TV market will see significant changes: Walmart's acquisition of Vizio transforms TVs into tools for giant retailers' ad businesses, potentially lowering prices but increasing ad volume. Competition between TV operating systems (OSes) will intensify, with companies like Roku facing acquisition risks. Consumer data becomes crucial, requiring users to balance privacy concerns with cost savings. While hardware innovation slows, price wars and OS competition may benefit consumers.

Read more
(arstechnica.com)
Tech TV market advertising operating systems

Best-of-N Jailbreaking: A Novel Attack on AI Systems

2024-12-15
Best-of-N Jailbreaking: A Novel Attack on AI Systems

Researchers have developed a new AI attack algorithm called Best-of-N (BoN) Jailbreaking. This black-box algorithm repeatedly modifies prompts—randomly shuffling or capitalizing text, for example—until it elicits a harmful response from the AI system. BoN achieved impressively high attack success rates (ASRs) on closed-source language models like GPT-4o (89%) and Claude 3.5 Sonnet (78%), effectively circumventing existing defenses. Furthermore, BoN seamlessly extends to vision and audio language models, highlighting the vulnerability of even advanced AI systems to seemingly innocuous input variations. This research underscores significant security concerns in the field of AI.

Read more
(arxiv.org)
AI AI security AI attack Best-of-N Jailbreaking

Former Twitter Founder Launches Mozi, a Social App Focused on Offline Connections

2024-12-12
Former Twitter Founder Launches Mozi, a Social App Focused on Offline Connections

Ev Williams, founder of Twitter and Medium, has launched a new social app called Mozi, aiming to redefine the essence of social interaction. Unlike content-focused social media, Mozi prioritizes helping users build and maintain relationships with people in their real lives. By integrating with users' contact lists, it shows when users and their acquaintances will be in the same location (city or event), facilitating offline meetings. Mozi emphasizes privacy, lacking public profiles and follower counts, aiming to be a private platform promoting genuine social connections.

Read more
(ev.medium.com)
Startup social app relationships privacy

MarkItDown: Free Online Markdown Converter

2024-12-21
MarkItDown: Free Online Markdown Converter

MarkItDown is a free online tool that converts various file formats (like Word, PDF, HTML, etc.) into standard Markdown. Powered by Microsoft's open-source Markitdown project, it offers fast and reliable conversions, perfect for bloggers, note-takers, and technical writers. No downloads or installations are required; simply upload your file and get clean, organized Markdown output. It's a secure and efficient way to manage your content.

Read more
(markitdown.pro)
Development online tool

Xerox to Acquire Lexmark for $1.5 Billion

2024-12-23

Xerox Holdings Corporation announced it will acquire Lexmark International, Inc. for $1.5 billion. This acquisition strengthens Xerox's core print portfolio and builds a broader global print and managed print services business to better meet the evolving needs of clients in the hybrid workplace. The deal, expected to close in the second half of 2025, combines two industry leaders to create a more comprehensive offering and expand geographic reach, particularly in the APAC region.

Read more
(newsroom.lexmark.com)
Tech Merger and Acquisition Printing Industry Hybrid Workplace

Git Project Deadlocked Over Rust Integration

2024-12-13

The Git project is embroiled in a heated debate over the integration of the Rust programming language. Proponents argue that Rust's memory safety and ease of refactoring would enhance Git's security and developer experience. However, opponents express concerns that Rust integration could compromise support for niche platforms like NonStop, potentially hindering Git's long-term viability. NonStop's prevalence in the financial sector, its reliance on Git, and the lack of a Rust compiler for the platform complicate the issue. The discussion ultimately reached no resolution, leaving the Git project grappling with a critical decision between maintaining broad platform support and improving security and developer experience.

Read more
(lwn.net)
Development Platform Support

The 1955 Le Mans Disaster: A Day of Speed and Death

2024-12-14
The 1955 Le Mans Disaster: A Day of Speed and Death

The 1955 24 Hours of Le Mans ended in tragedy when a Mercedes-Benz 300 SLR, driven by Pierre Levegh, crashed into the spectators after colliding with a slower car. Mike Hawthorn's reckless pit maneuver triggered the chain of events, leading to over 80 deaths and numerous injuries. The disaster, a shocking display of the sport's inadequate safety standards, prompted sweeping changes in motorsport safety regulations and marked a turning point in the history of racing.

Read more
(www.essesmag.com)
Game Le Mans 24 Hours racing accident motorsport safety
1 2 258 259 260 262 264 265 266 272 273