An anonymous reader writes “Havok has released the free version of its widely-used physics and animation engine (but without source code), including tools that integrate with Autodesk 3ds Max and Maya. Developers may use Havok for free for non-commercial games, middleware, and academic projects. Here are the SDK and tools.”
Read more of this story at Slashdot.
D. J. Keenan notes that the cover story of the current issue of National Journal reports in depth on China’s cyber-aggression against US targets in the government, military, and business. We have discussed China’s actions on numerous occasions over the years. The news in this report is the suggestion that Chinese cyber-attakers may have been involved in major power outages in the US. “Computer hackers in China, including those working on behalf of the Chinese government and military, have penetrated deeply into the information systems of US companies and government agencies, stolen proprietary information from American executives in advance of their business meetings in China, and, in a few cases, gained access to electric power plants in the United States, possibly triggering two recent and widespread blackouts in Florida and the Northeast, according to US government officials and computer-security experts…”
Read more of this story at Slashdot.
danielstoner writes “Recently UML was pronounced dead as a tool for all programming needs by an article posted on Little Tutorials: 13 reasons for UML’s descent into darkness. The author suggests UML was killed by, among other causes, greed, heavy process, and design-by-committee. Is UML really a fading technology? Is it useful beyond a whiteboard notation for designers? Is there any value in code generation?”
Read more of this story at Slashdot.
An anonymous reader writes “Well known iPhone hacker Jonathan Zdziarski gave a talk at O’Reilly’s Ignite Boston 3 this week in which he called for the iPhone hacking community to embrace full disclosure and stop keeping secrets that were leading to the iPhone’s demise. He has followed up with an article about full disclosure and why vendors hate it. He argues that vendor-only disclosure protects the vendors and not the consumer, and that vendors easily abuse this to downplay privacy concerns while continuing to sell insecure products. In contrast, he paints full disclosure as a capitalist means to keep the vendor accountable, and describes how public outcry can be one of the best motivating factors to get a vulnerability addressed.”
Read more of this story at Slashdot.
benjymouse writes “The Register has picked up on a recent Microsoft security bulletin which urges Windows users to “restrict use of Safari as a web browser until an appropriate update is available from Microsoft and/or Apple”. This controversy comes after Apple has officially refused to promise to do anything about the carpet bombing vulnerability in the Safari browser. Essentially, Apple does not see unsolicited downloads of hundreds or even thousands of executable files to users’ desktops as being a security problem.” Now while downloading a hundred files to your desktop won’t automatically execute them, Microsoft’s position is that a secondary attack could execute them for you.
Read more of this story at Slashdot.
Doofus brings us a CNet story about a discussion from Google’s Jeff Dean spotlighting some of the inner workings of the search giant’s massive data centers. Quoting: “‘Our view is it’s better to have twice as much hardware that’s not as reliable than half as much that’s more reliable,’ Dean said. ‘You have to provide reliability on a software level. If you’re running 10,000 machines, something is going to die every day.’ Bringing a new cluster online shows just how fallible hardware is, Dean said. In each cluster’s first year, it’s typical that 1,000 individual machine failures will occur; thousands of hard drive failures will occur; one power distribution unit will fail, bringing down 500 to 1,000 machines for about 6 hours; 20 racks will fail, each time causing 40 to 80 machines to vanish from the network; 5 racks will “go wonky,” with half their network packets missing in action; and the cluster will have to be rewired once, affecting 5 percent of the machines at any given moment over a 2-day span, Dean said. And there’s about a 50 percent chance that the cluster will overheat, taking down most of the servers in less than 5 minutes and taking 1 to 2 days to recover.”
Read more of this story at Slashdot.
Lucas123 brings news that Bank of New York Mellon Corp. has admitted they lost a box of unencrypted data storage tapes. The tapes contained personal information for over 4.5 million people. From Computerworld: “The bank informed the Connecticut State Attorney General’s Office that the tapes … were lost in transport by off-site storage firm Archive America on Feb. 27. The missing backup tapes include names, birth dates, Social Security numbers, and other information from customers of BNY Mellon and the People’s United Bank in Bridgeport, Conn., according to a statement by Connecticut Attorney General Richard Blumenthal.
Read more of this story at Slashdot.
IdaAshley points out the latest from IBM developerWorks’ Web development section, which talks about shoring up potential weaknesses in Ajax applications. It follows another recent guide for improving Ajax performance. “In this article, you’ll learn about Ajax security tools, which you’ll be using to scan for SQL injection and cross-site scripting vulnerabilities; to set a master password; and to restore the state of all windows after crashes. You’ll take a look at tools and utilities that ensure that linked Web sites in applications are not on the blocked lists and which prevent hackers from altering browser functionality, defacing Web applications, and achieving malicious results. You’ll find these utilities divided into three types within the article: hardening tools, Firefox tools, and Firefox add-ons.”
Read more of this story at Slashdot.
It can display an HTML table with the current month of the Persian calendar.
The table displays links to browse calendars of other months and years.
Dr. Jim writes “The good folks over at the Gartner Group have revealed the top 10 technologies that they believe will change the world over the next four years. The usual suspects including multi-core chips, virtualization, and cloud computing are on the list. Multicore servers and virtualization will mean that firms will need fewer boxes, and apps can be easily moved from box to box (and right out the door to an outsourced data center). Workplace social networks and cloud computing means that the need for a centralized IT department will go away. Firms will no longer need to own/maintain the boxes that they use to run their firm’s apps. With no need to touch a box, there will be no need to have the IT staff co-located with the boxes.”
Read more of this story at Slashdot.