SpacemanukBEJY.53u (3309653) writes "It took security researcher Willem Pinckaers all of 15 minutes to spot a flaw in code created by Akamai that the company thought shielded most of its users from one of the pernicious aspects of the Heartbleed flaw in OpenSSL. More than a decade ago, Akamai modified parts of OpenSSL it felt were weak related to key storage. Akamai CTO Andy Ellis wrote last week that the modification protected most customers from having their private SSL stolen despite the Heartbleed bug. But on Sunday Ellis wrote Akamai was wrong after Pinckaers found several flaws in the code. Akamai is now reissuing all SSL certificates and keys to its customers."
Slashdot Deals: Deal of the Day - Pay What You Want for the Learn to Code Bundle, includes AngularJS, Python, HTML5, Ruby, and more. ×
theodp (442580) writes "Gigaom reports that while speaking at the Bloomberg Energy Summit on Wednesday, former NYC Mayor Michael Bloomberg said he gives 'a lot of money to the Sierra Club' to help close dirty coal plants, but added that as a society we have to 'have some compassion to do it gently.' Subsidies to help displaced workers are one option, said Bloomberg, while retraining is another option. But, in a slight to the tech industry's sometimes out-of-touch nature with workers outside of Silicon Valley, he said retraining needs to be realistic, 'You're not going to teach a coal miner to code,' argued Bloomberg. 'Mark Zuckerberg says you teach them to code and everything will be great. I don't know how to break it to you... but no.'"
nk497 (1345219) writes "The Heartbleed bug in OpenSSL wasn't placed there deliberately, according to the coder responsible for the mistake — despite suspicions from many that security services may have been behind it. OpenSSL logs show that German developer Robin Seggelmann introduced the bug into OpenSSL when working on the open-source project two and a half years ago, according to an Australian newspaper. The change was logged on New Year's Eve 2011. 'I was working on improving OpenSSL and submitted numerous bug fixes and added new features,' Seggelmann told the Sydney Morning Herald. 'In one of the new features, unfortunately, I missed validating a variable containing a length.' His work was reviewed, but the reviewer also missed the error, and it was included in the released version of OpenSSL."
curtwoodward (2147628) writes "Entrepreneurs in Massachusetts say the state's legal enforcement of non-competition agreements hurts innovation — if you're going to get sued by Big Company X, you're probably not going to leave for a startup in the same industry. But those contracts have powerful supporters, including EMC, which is by far the state's largest tech company. Gov. Deval Patrick is finally picking a side in the debate by introducing his own bill to outlaw non-competes and adopt trade-secrets protections instead. Just one catch: he's a lame duck, and will be out of office in January."
theodp (442580) writes "'Public school teachers,' reads the headline at Khan Academy (KA), 'introduce your students to coding and earn $1000 or more for your classroom!' Read the fine print, however, and you'll see that the Google-bankrolled offer is likely to ensure that girls, not boys, are going to be their Computer Science teachers' pets. 'Google wants public high school students, especially girls, to discover the magic of coding,' KA explains to teachers. 'You'll receive a $100 DonorsChoose.org gift code for every female student who completes the [JS 101: Drawing & Animation] course. When 4 or more female students complete it, we'll email you an additional $500 gift code as a thank-you for helping your students learn to code.' While 'one teacher cannot have more than 20 of the $100 gift codes activated on their DonorsChoose.org projects,' adds KA, 'if the teacher has more than 20 female students complete the curriculum, s/he will still be sent gift codes, and the teacher can use the additional gift codes on another teacher's DonorsChoose.org project.' So, is girls-are-golden-boys-are-worthless funding for teachers' projects incongruent with Khan Academy's other initiatives, such as its exclusive partnership with CollegeBoard to eliminate inequality among students studying for the SAT?"
redletterdave writes "Eben Upton is the CEO of the Raspberry Pi Foundation's trading company, where he oversees production and sales of the Raspberry Pi. In a lengthy interview with ReadWrite, Upton shares how he invented Raspberry Pi, and what's coming next for the $35 microcomputer. Quoting: 'There's a big difference between [just] making a platform like Raspberry Pi available and offering support for it. I think if you just make it available, you'll find one percent of eight-year-olds will be the one percent who love that sort of thing and will get into it, regardless of how much or how little support you give them. ... [S]ince we can afford to pay for the development of educational material, we can afford to advocate for good training for teachers throughout this. There's an opportunity to get more than one percent. There's an opportunity to reach the bright kids who don't quite have the natural inclination to personally tackle complicated technical tasks. If you give them good teaching and compelling material that's relevant and interesting to them, you can reach ten percent, twenty percent, fifty percent, many more. We look back to the 1980s as this golden era [of learning to program], and in practice, only a very few percent of people were learning to program to any great degree. ... I think the real opportunity for us now, because we can intervene on the material and teacher training levels, we can potentially blow past where we were in the 1980s.'"
theodp writes: "Still hanging on to a dog-eared copy of BASIC Computer Games? Back issues of Creative Computing? Well then, Bunky, mark your calendar for April 30th, because Dartmouth College is throwing BASIC a 50th birthday party that you won't want to miss! From the 'invite' to BASIC at 50: 'At 4 a.m. on May 1, 1964, in the basement of College Hall, Professor John Kemeny and a student programmer simultaneously typed RUN on neighboring terminals. When they both got back correct answers to their simple programs, time-sharing and BASIC were born. Kemeny, who later became Dartmouth's 13th president, Professor Tom Kurtz, and a number of undergraduate students worked together to revolutionize computing with the introduction of time-sharing and the BASIC programming language. Their innovations made computing accessible to all Dartmouth students and faculty, and soon after, to people across the nation and the world [video — young Bill Gates cameo @2:18]. This year, Dartmouth is celebrating 50 years of BASIC with a day of events on Wednesday, April 30. Please join us as we recognize the enduring impact of BASIC, showcase innovation in computing at Dartmouth today, and imagine what the next 50 years may hold.' Be sure to check out the vintage photos on Flickr to see what real cloud computing looks like, kids!"
DorianGre writes: "I'm working on a new independent project. It involves iPhones and Android phones talking to PHP (Symfony) or Ruby/Rails. Each incoming call will be a data element POST, and I would like to simply write that into the database for later use. I'll need to be able to pull by date or by a number of key fields, as well as do trend reporting over time on the totals of a few fields. I would like to start with a NoSQL solution for scaling, and ideally it would be dead simple if possible. I've been looking at MongoDB, Couchbase, Cassandra/Hadoop and others. What do you recommend? What problems have you run into with the ones you've tried?"
First time accepted submitter ControlsGeek (156589) writes "The Raspberry Pi Foundation has developed a new product. It is basically a Raspberry Pi model A processor, memory, and flash memory on a DDR2-style SODIMM connector. Also available will be a development board that breaks out all the internal connections. The board design will be open sourced so you can develop your own devices using the BCM2835 processor. No network, but support for 2 HDMI displays and 2 cameras, so 3D TV is a possibility.
theodp (442580) writes "Over at Microsoft on the Issues, Microsoft continues to lament the computer programming skills gap of American kids, while simultaneously lobbying for more H-1B visas to fill that gap. Saying that states must do more to 'help students gain critical 21st century skills,' Microsoft credits itself and partner Code.org for getting 30,606,732 students to experience coding through the Hour of Code, claiming that K-12 kids have 'written 1,332,784,839 lines of code' (i.e., dragged-and-dropped puzzle pieces), So, if it's concerned about helping students gain programming skills, shouldn't Microsoft be donating fully-functional desktop versions of MS-Office to schools, which would allow kids to use Visual Basic for Applications (VBA)? While Microsoft's pledge to give 12 million copies of its Office software to schools was heralded by the White House and the press, a review of the 'fine print' at Microsoft suggests it's actually the online VBA-free version of Office 365 Education that the kids will be getting, unless their schools qualify for the Student Advantage program by purchasing Office for the faculty and staff. Since Microsoft supported President Obama's call for kids to 'Don't Just Play on Your Phone, Program It', shouldn't it give kids the chance to program MS-Office, too?"
An anonymous reader writes "Linux kernel developers are currently evaluating the possibility of using QR codes to display kernel oops/panic messages. Right now a lot of text is dumped to the screen when a kernel oops occurs, most of which isn't easily archivable by normal Linux end-users. With QR codes as Linux oops messages, a smart-phone could capture the display and either report the error string or redirect them to an error page on Kernel.org. The idea of using QR codes within the Linux kernel is still being discussed by upstream developers."
xyourfacekillerx writes "Not long ago, Slashdot readers answered a question for someone seeking to finish a BS in CS online. I am in a similar situation with a different question. I have spent five years frivolously studying philosophy at a very expensive university, and now I want to start towards an Associate's in CS, and then perhaps a Bachelor's (I want to program for a living; I write code daily anyways). After four hours of combing through Google results, I still don't have much useful information. Problem 1: I am out of money and I have an 8 to 5 job, so on-campus enrollment is not an option. Problem 2: and I have very little to transfer due to the specificity of my prior studies: I don't even have my core English/Language or even math cores to transfer. My questions are: 1) Just where are the open CS courses? Who offers it in a way that's more than just lecture notes posts online? 2) Can any of it help or hinder me getting a degree (i.e. does any of it transfer, potentially? Is it a waste of time? Additionally, any tips about accredited online universities (preferably self-paced) where I can start to get my associates and/or bachelor's in CS at low cost would be useful. I intend to be enrolled online somewhere by Fall, and I am starting my own search among local (Colorado) junior colleges who don't demand on-campus presence like most four-years schools do."
An anonymous reader writes "The F# programming language team has been providing source code releases for years, but all contributions to the core implementation were internal. Microsoft is now changing that. They've announced that they'll be accepting code contributions from the community for the core F# language, the compiler, library, and Visual F# tools. They praised the quality of work currently being done by the F# community: 'The F# community is already doing high-quality, cross-platform open engineering using modern tools, testing methodology and build processes. Some particularly active projects include the Visual F# Power Tools, FSharp.Data, F# Editing Support for Open Editors, the Deedle DataFrame library and a host of testing tools, web tools, templates, type providers and other tools.' Microsoft is actively solicited bug fixes, optimizations, and library improvements."
alphadogg writes: "An argument between developers of some of the most basic parts of Linux turned heated this week, resulting in a prominent Red Hat employee and code contributor being banned from working on the Linux kernel. Kay Sievers, a well-known open-source software engineer, is a key developer of systemd, a system management framework for Linux-based operating systems. Systemd is currently used by several prominent Linux distributions, including two of the most prominent enterprise distros, Red Hat and SUSE. It was recently announced that Ubuntu would adopt systemd in future versions as well. Sievers was banned by kernel maintainer Linus Torvalds on Wednesday for failing to address an issue that caused systemd to interact with the Linux kernel in negative ways."
An anonymous reader writes "By the end of next week, NASA will release a master catalog of over 1,000 software projects it has conducted over the years and will provide instructions on how the public can obtain copies of the source code. NASA's goal is to eventually 'host the actual software code in its own online repository, a kind of GitHub for astronauts.' This follows NASA's release of the code running the Apollo 11 Guidance Computer a few years back. Scientists not affiliated with NASA have already adapted some of NASA's software. 'In 2005, marine biologists adapted the Hubble Space Telescope's star-mapping algorithm to track and identify endangered whale sharks. That software has now been adapted to track polar bears in the arctic and sunfish in the Galapagos Islands.' The Hubble Space Telescope's scheduling software has reportedly also been used to schedule MRIs at hospitals and as control algorithms for online dating services. The possibilities could be endless."
itwbennett (1594911) writes "Hackathons have stirred up their share of controversy — mostly around too-big prizes and the inevitable cheating that follows. But for some developers they also can be the ultimate job interview — not just a coding test, but an opportunity to show off your people skills. Take the case of the January 2014 GlobalHack contest in St. Louis that was initially attended by several hundred programmers. The story of the contest isn't who took away the top $50,000 prize but about the other participants who didn't finish in the money but came away with something else that is arguably more important."
v3rgEz (125380) writes "Founders at a number of Boston startups shared their stories of building and growing a company while battling depression. One founder didn't even realize he was depressed until glucose and blood tests came back normal, while another said it was worse than her life struggles growing up in the projects. All shared different coping mechanisms. Any advice for dealing with the same?"
atrader42 (687933) writes "Microsoft announced a new .NET compiler that compiles .NET code to native code using the C++ compiler backend. It produces performance like C++ while still enabling .NET features like garbage collection, generics, and reflection. Popular apps have been measured to start up to 60% faster and use 15% less memory. The preview currently only supports Windows Store applications, but is expected to apply to more .NET applications in the long term. A preview of the compiler is available for download now. (Caveat: I both work for MS and read Slashdot.)"
Nerval's Lobster (2598977) writes "Amazon is serious about conquering the living room: the online retailer has launched Fire TV, a set-top box that not only allows viewers to stream content, but also play games. That streaming-and-gaming capability makes Amazon a threat to Apple, which rumors suggest is hard at work on an Apple TV capable of doing the same things. In addition, Fire TV puts the screws to other streaming hardware, including Roku and Google's Chromecast, as well as smaller game consoles such as Ouya (a $99, Android-based device). Much of Amazon's competitive muscle comes from its willingness to sell hardware for cheap (the Fire TV retails for $99) on the expectation that owners will use it to stream and download digital content from Amazon, including television shows and apps. Those developers who've developed Android games have an advantage when it comes to migrating software to Amazon's new platform. "Porting You Don't Know Jack was really like developing for Android, with the exception of the store and the new controller library," Jackbox Games Designer/Director Steve Heinrich told Gamasutra after the Fire TV announcement. "The store itself is the same as the Kindle version, which we've used many times now, and the way the controller works is very close to what we did for Ouya." While Fire TV could represent yet another opportunity for game developers looking to make a buck, it also raises a pressing question: with so many platforms out there (iOS, PC, etc.), how's an indie developer or smaller firm supposed to allocate time and resources to best advantage?"
Nerval's Lobster writes: "An article in the Harvard Business Review does its best to punch a small hole in the startup-hype balloon. 'Encouraging kids to blow off schoolwork to write apps, or skip college to become entrepreneurs, is like advising them to take their college money and invest it in PowerBall,' Jerry Davis, Wilbur K. Pierpont professor of management at the Ross School of Business and the editor of Administrative Science Quarterly, wrote in that column. 'A few may win big; many or most will end up living with their moms.' Whether or not the unfortunate developer ends up back in the childhood bedroom, it's true that, with millions of apps available across all mobile platforms, it's increasingly difficult for independent developers to stand out. Compounding the problem, some of the hottest companies out there for developers and programmers don't have nearly enough job openings to absorb the flood of graduates from the world's universities. So what's a developer to do? Continue to plow forward, with adjusted expectations: the prospect of becoming the next Mark Zuckerberg is just too tantalizing for many people to pass up, even if the chances of wild success are smaller than anyone rational would like to admit."