An anonymous reader writes: The popular Linux process viewer htop got a new major revision, and now runs natively on FreeBSD, OpenBSD and Mac OS X. The author discussed the process of making the tool cross-platform earlier this year at FOSDEM. Htop also got some new features, including mouse wheel support via ncurses 6 and listing process environment variables.
Andy Nicholls has been an R programmer and consultant for Mango Solutions since 2011 (where he currently manages the R consultancy team), after a long stint as a statistician in the pharmaceutical industry. He has a serious background in mathematics, too, with a Masters in math and another in Statistics with Applications in Medicine. Andy has taught more than 50 on-site R training courses and has been involved in the development of more than 30 R packages; he's also a regular contributor to events at LondonR, the largest R user group in the UK. But since not everyone can get to London for a user group meeting, you can get some of the insights he's gained as an R expert in Sams Teach Yourself R In 24 Hours (available in print or at Safari), of which he is the lead author. Today, though, you can ask Andy about the much-lauded statistics-oriented free software (GPL) language directly -- Why to use it, how to get started, how to get things done, and where those intriguing release names come from. (The about page is helpful, too.) As usual, please ask as many questions as you'd like, but one question at a time, please.
An anonymous reader writes: In an epic smack-down, Simon Phipps examines a recent article by some VCs with an apparently strong track record in open source startups and finds the way they see the world makes them plain wrong about Red Hat, OSI licenses, Apache and probably everything else they talk about.
campuscodi writes: The Node.js Foundation has taken the Express Node.js framework under its wing. Express will be a new incubation project for the Foundation. IBM, which purchased Express maintainer StrongLoop last September, is contributing the code. Part of the reason for allowing the foundation to oversee Express is to build a diverse contributor base, which is important given the framework's popularity.
munwin99 writes: For the longest time, when bringing up Wayland a recurring question was 'what about network transparency?!' Well, Samsung's Derek Foreman has today published the set of Wayland patches for providing Wayland network transparency by pushing the Wayland protocol over TCP/IP.
v3rgEz writes: Running at over 50 sections and hundreds of subsections, Amazon AWS's terms of service are somewhat exhaustive, but there's one paragraph that might catch your eye. As of yesterday's update, Amazon has added a section that nullifies restrictions on the use of their Lumberyard game platform in the event of a zombie outbreak. Pre-apocalypse, the terms of service prohibit the use of the engine to manage life-or-death situations, but being able to spin up a zombie firefight simulator at a moment's notice might come in handy. You do have to wonder, though: Does Jeff Bezos know something we don't? Lawyers typically don't approve of Easter Eggs in legal documents.
An anonymous reader writes: In the largest study of gender bias [in programming] to date, researchers found that women tend to have their pull requests accepted at a higher rate than men, across a variety of programming languages. This, despite the finding that their pull requests are larger and less likely to serve an immediate project need. At the same time, when the gender of the women is identifiable (as opposed to hidden), their pull requests are accepted less often than men's.
New submitter FlipperPA writes: It has just been announced that the 2016 vintage of DjangoCon US will be held in Philadelphia at The Wharton School of the University of Pennsylvania from July 17th through 22nd. DjangoCon US is a 6-day international community conference for the community by the community, held each year in North America, about the Django web framework. From its humble beginnings in a newsroom in Lawrence, KS, Django now powers some of the better known web sites on the planet, including The Washington Post, Mozilla, Instagram, Disqus, and Pinterest. Considered by many to be the "batteries included" web framework for Python, Django continues to attract new developers across the globe.
martiniturbide writes: To promote some new computer coding books for kids, Uborne Children's Books has put online 15 of its children books from the '80s to learn how to code games. The books are available for free in PDF format and has samples to create your game for Commodore 64, VIC 20, Apple, TRS 80, Spectrum and other. Maybe you read some of them like "Machine Code for Beginners" or "Write your own Adventure Program for MicroComputers." Should other publishers also start to make their '80s and '90s computer books available for free?
Dave Knott writes: Amazon has both announced and released a new, free game engine, Lumberyard, which offers deep integration with its Amazon Web Services server infrastructure to empower online play, and also with Twitch, its video game-focused streaming service. Lumberyard is powerful and full-featured enough to develop triple-A current-gen console games, with mobile support is coming down the road. Its core engine technology is based on Crytek's CryEngine. However, Lumberyard represents a branch of that tech, and the company is replacing or upgrading many of CryEngine's systems. Monetization for Lumberyard will come strictly through the use of Amazon Web Services' cloud computing. If you use the engine for your game, you're permitted to roll your own server tech, but if you're using a third-party provider, it has to be Amazon. Integration of Amazon's Twitch video streaming tools at a low level also helps to cement that platform's dominance in the game streaming space. Alongside Lumberyard, the company has also announced and released GameLift, a new managed service for deploying, operating, and scaling server-based online games using AWS. GameLift will be available only to developers who use Lumberyard, though it's an optional add-on. The game engine is in beta, but is freely usable and downloadable today.
itwbennett writes: On Friday, Oracle published a security advisory recommending that users delete all the Java installers they might have laying around on their computers and use new ones for versions 6u113, 7u97, 8u73 or later. The reason: Older versions of the Java installer were vulnerable to binary planting in the Downloads folder. 'Though considered relatively complex to exploit, this vulnerability may result, if successfully exploited, in a complete compromise of the unsuspecting user's system,' said Eric Maurice, Oracle's software security assurance director, in a blog post.
destinyland writes: Last week GitHub released a new open source tool called Scientist, a Ruby-based library they've been using in-house for several years. "It's the most terrifying moment when you flip the switch," GitHub engineer Jesse Toth told one technology reporter, who notes that the tool is targeted at developers transitioning from a legacy system. "Scientist was born when GitHub engineers needed to rewrite the permissions code — one of the most critical systems in the GitHub application." The tool measures execution duration and other metrics for both test and production code during runtime, and Toth reports that they're now also developing new versions in Node.js, C#, and .Net..
An anonymous reader writes: There's a German security researcher that is arduously testing the installers of tens of software products to see which of them are vulnerable to basic DLL hijacking. Surprisingly, many companies are ignoring his reports. Until now, only Oracle seems to have addressed this problem in Java and VirtualBox. Here's a short (probably incomplete) list of applications that he found vulnerable to this attack: Firefox, Google Chrome, Adobe Reader, 7Zip, WinRAR, OpenOffice, VLC Media Player, Nmap, Python, TrueCrypt, and Apple iTunes. Mr. Kanthak also seems to have paid special attention to antivirus software installers. Here are some of the security products he discovered vulnerable to DLL hijacking: ZoneAlarm, Emsisoft Anti-Malware, Trend Micro, ESET NOD32, Avira, Panda Security, McAfee Security, Microsoft Security Essentials, Bitdefender, Rapid7's ScanNowUPnP, Kaspersky, and F-Secure.
New submitter isisilik writes: For those working in the 'aaS' business the Parse shutdown was the main topic of conversation this weekend. So why did Facebook decide to shut down their developer platform? The author claims that Facebook never wanted to host apps to begin with, they just wanted developers to use Facebook login. And he builds up a good case.
AmiMoJo writes: Four years ago Mozilla moved to a fixed-schedule release model, otherwise known as the Train Model, in which we released Firefox every six weeks to get features and updates to users faster. Now Mozilla is moving to a variable 6-8 week cycle, with the same number of releases per year but some flexibility to 'respond to emerging user and market needs' and allow time for holidays. The new release schedule looks like this:
- 2016-01-26 – Firefox 44
- 2016-03-08 – Firefox 45, ESR 45 (6 weeks cycle)
- 2016-04-19 – Firefox 46 (6 weeks cycle)
- 2016-06-07 – Firefox 47 (7 weeks cycle)
- 2016-08-02 – Firefox 48 (8 weeks cycle)
- 2016-09-13 – Firefox 49 (6 weeks cycle)
- 2016-11-08 – Firefox 50 (8 weeks cycle)
- 2016-12-13 – Firefox 50.0.1 (5 week cycle, release for critical fixes as needed)
- 2017-01-24 – Firefox 51 (6 weeks from prior release)