Language Selection

English French German Italian Portuguese Spanish

today's leftovers

Filed under
Misc
  • Missouri Governor Still Lying About Reporters Who Uncovered Ridiculous Bad State Computer Security; Still Insists They Were Hackers

    Missouri Governor Mike Parson is nothing if not committed to shamelessly lying. As you'll recall, after journalists from the St. Louis Post-Dispatch ethically informed the state that the Department of Elementary and Secondary Education (DESE) website included a flaw that revealed the social security numbers of over 600,000 state teachers and school administrators, Parson responded by calling the reporters hackers and vowing to prosecute them. Again, the DESE system displayed this information directly in the HTML, available for anyone to see if they knew where to look. That's not hacking. That's incompetent computer security.

  • Canada Charges Its “Most Prolific Cybercriminal”

    A 31-year-old Canadian man has been arrested and charged with fraud in connection with numerous ransomware attacks against businesses, government agencies and private citizens throughout Canada and the United States. Canadian authorities describe him as “the most prolific cybercriminal we’ve identified in Canada,” but so far they’ve released few other details about the investigation or the defendant. Helpfully, an email address and nickname apparently connected to the accused offer some additional clues.

  • Microsoft error could open the door to the most damaging phishing scam to date

    A DS_STORE file was left open on a Microsoft-owned web server

  • Life360 Scandal Once Again Shows Nobody In The U.S. Actually Wants To Fix Our Rampant Privacy Problems

    For several years now a steady parade of scandals have showcased how the collection and sale of consumer location data (to governments and data brokers alike) is a hugely unaccountable mess with few if any guardrails. And every week or so a new scandal emerges making that point abundantly clear. This week it's the unsurprising revelation that "security" and "family safety" app Life360, which lets parents track the location of their kids, has been selling access to this data to data brokers for years:

  • Apple Notifies More Victims Of NSO Malware Hacking Attempts

    Apple's announcement that it was suing Israeli malware purveyor NSO Group for targeting iPhone users was coupled with another, equally dismaying (I mean, for NSO…) announcement: it would be informing targets of malware anytime it detected a suspected intrusion.

  • Controversial Facial Recognition Company Calls Out Clearview, Demands It Ditch Its Database Of 10 Billion Scraped Images

    Clearview has burned its bridges inside the facial recognition tech industry. Despite it being largely morally malleable, the industry as a whole appears to have cut ties with CEO Hoan Ton-That's startup, which relies on more than 10 billion images scraped from the web to generate a database for its customers to match faces with.

  • Microsoft's $19.7B Nuance buy hits a snag with EU antitrust probe

    Several months after the U.S. Department of Justice (DOJ) signed off on Microsoft’s plan to acquire the artificial intelligence software developer Nuance Communications, its watchdog counterpart across the pond is taking a closer look at the proposed buyout.

    The European Commission’s competition authority is quizzing the companies’ clients and competitors about their views of the transaction, according to a report from Reuters, which viewed one of the questionnaires compiled in November.

  • Microsoft Office prices going up 20% for some business clients unless they move from monthly to annual subscriptions
  • Social media giants have released their Compliance Reports for the month of September. We’ve analysed them.

    Google (including YouTube), Facebook, Instagram, WhatsApp, and Twitter have released their reports in compliance with Rule 4(1)(d) of the Information Technology (Guidelines for Intermediaries and Digital Media Ethics Code) Rules, 2021 for the month of September. The reports continue to suffer from the same deficiencies - lack of reporting on government requests, use of misleading metrics, and lack of transparency on algorithms used for proactive monitoring. You can read our analysis of the previous reports here. We have also analysed the compliance report of ShareChat and transparency reports of LinkedIn and Snap this time!

    [...]

    As per its reports (which now has a Meta logo instead!), Facebook and Instagram adopt the metrics of (Sleepy ‘content actioned’ which measures the number of pieces of content (such as posts, photos, videos or comments) that they take action on for going against their standards and guidelines, (ii) proactive rate which refers to the percentage of ‘content actioned’ that they detected proactively before any user reported for the same. This metric is problematic because the proactive rate only gives a percentage of that content on which action was taken, and excludes all content on Facebook (which may otherwise be an area of concern) on which action was not taken. This problem in the metric becomes a glaring concern in light of the documents leaked by Frances Haugen which show that Facebook has boasted of proactive removal of over 90% of identified hate speech in its “transparency reports” when internal records showed that “as little as 3-5% of hate” speech was actually removed. These documents confirm what civil society organizations have been asserting for years, that Facebook has been fueling hate speech around the world because of its failure to moderate content and its use of algorithms to amplify inflammatory content.

    Be that as may, as per the metrics provided, the proactive rate for actioning of content for bullying and harassment still stands at the lowest at 48.7% which has fallen from last month’s 50.9%. This figure is particularly low as compared to 8 other issues (including hate speech and violent content) where the rate is more than 96%. This means that maximum user complaints were received under this category, and that Facebook is consistently failing to curb the menace of bullying and harassment.

  • Principles for License Enforcement published

More in Tux Machines

digiKam 7.7.0 is released

After three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. Read more

Dilution and Misuse of the "Linux" Brand

Samsung, Red Hat to Work on Linux Drivers for Future Tech

The metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. Read more

today's howtos

  • How to install go1.19beta on Ubuntu 22.04 – NextGenTips

    In this tutorial, we are going to explore how to install go on Ubuntu 22.04 Golang is an open-source programming language that is easy to learn and use. It is built-in concurrency and has a robust standard library. It is reliable, builds fast, and efficient software that scales fast. Its concurrency mechanisms make it easy to write programs that get the most out of multicore and networked machines, while its novel-type systems enable flexible and modular program constructions. Go compiles quickly to machine code and has the convenience of garbage collection and the power of run-time reflection. In this guide, we are going to learn how to install golang 1.19beta on Ubuntu 22.04. Go 1.19beta1 is not yet released. There is so much work in progress with all the documentation.

  • molecule test: failed to connect to bus in systemd container - openQA bites

    Ansible Molecule is a project to help you test your ansible roles. I’m using molecule for automatically testing the ansible roles of geekoops.

  • How To Install MongoDB on AlmaLinux 9 - idroot

    In this tutorial, we will show you how to install MongoDB on AlmaLinux 9. For those of you who didn’t know, MongoDB is a high-performance, highly scalable document-oriented NoSQL database. Unlike in SQL databases where data is stored in rows and columns inside tables, in MongoDB, data is structured in JSON-like format inside records which are referred to as documents. The open-source attribute of MongoDB as a database software makes it an ideal candidate for almost any database-related project. This article assumes you have at least basic knowledge of Linux, know how to use the shell, and most importantly, you host your site on your own VPS. The installation is quite simple and assumes you are running in the root account, if not you may need to add ‘sudo‘ to the commands to get root privileges. I will show you the step-by-step installation of the MongoDB NoSQL database on AlmaLinux 9. You can follow the same instructions for CentOS and Rocky Linux.

  • An introduction (and how-to) to Plugin Loader for the Steam Deck. - Invidious
  • Self-host a Ghost Blog With Traefik

    Ghost is a very popular open-source content management system. Started as an alternative to WordPress and it went on to become an alternative to Substack by focusing on membership and newsletter. The creators of Ghost offer managed Pro hosting but it may not fit everyone's budget. Alternatively, you can self-host it on your own cloud servers. On Linux handbook, we already have a guide on deploying Ghost with Docker in a reverse proxy setup. Instead of Ngnix reverse proxy, you can also use another software called Traefik with Docker. It is a popular open-source cloud-native application proxy, API Gateway, Edge-router, and more. I use Traefik to secure my websites using an SSL certificate obtained from Let's Encrypt. Once deployed, Traefik can automatically manage your certificates and their renewals. In this tutorial, I'll share the necessary steps for deploying a Ghost blog with Docker and Traefik.