The OpenBSD project has announced OpenBSD 7.6, its 57^th release.

The new release contains a number of significant improvements, including but not limited to:

• There is initial support for Qualcomm Snapdragon X Elite [arm64] laptops.
• Initial support for Suspend-to-Idle has been added on amd64 and i386, enabling suspend on machines which do not support S3.
• UDP parallel input has been enabled. [See earlier report]
• Libva's VA-API (Video Acceleration API) was imported into xenocara. [See earlier report]
• The default write format for tar(1) has changed to "pax". [See earlier report]
• pfctl(8) and systat(1) now display fragment reassembly statistics. [See earlier report]
• A configurable passphrase timeout for disk decryption at boot (a potential battery lifesaver) has been added. [See earlier report]
• Local-to-anchor tables are now available in pf(4) rules. [See earlier report]
• rport(4), a driver providing point-to-point interfaces for layer 3 connectivity between rdomain(4) instances, has been added.
• dhcp6leased(8), a DHCPv6 client daemon for IPv6 PD has been added. [See earlier report]
• dhclient(8) has been removed (now that dhcpleased(8) is well established). [See earlier report]
• OpenSSH 9.9, featuring:
  • sshd(8) has been split into multiple binaries. [See earlier report]
  • Options to penalize undesirable behavior [See earlier report]
  • support for a new hybrid post-quantum key exchange [See earlier report]

and of course there is the full changelog which details the changes made over this latest six month development cycle.

Installation Guide details how to get the system up and running with a fresh install, while those who already run earlier releases should follow the Upgrade Guide, in most cases using sysupgrade(8) to upgrade their systems.

Now please dive in and enjoy the new release, and while the installer runs, please do donate to the project to support further development and more future goodies for us all!

Omar Polo (op@) has announced the release of version 7.6.0p0 of OpenSMTPD.

The changes (including the table protocol change on which we reported earlier) are:

 - Introduced a new K_AUTH service to allow offloading the credentials
   to a proc table for non-crypt(3) authentication.  Helps with use
   cases like LDAP or custom auth.

 - Implement report responses for proc-filters too.

 - Changed the table protocol to a simpler text-based one.  Existing
   proc tables needs to be updated since old ones won't work.  The new
   protocol is documented in smtpd-tables(7).

 - Fixed the parsing of IPv6 addresses in file-backed table(5)

 - Document expected MDA behavior and the environment set by OpenSMTPD.

 - Set ORIGINAL_RECIPIENT in the environment of MDA scripts for
   compatibility with postfix.

 - Updated the bundled libtls.

See the release announcement for full details.

The LibreSSL project, a closely associated subproject of the OpenBSD project, has announced the availability of their new stable release, LibreSSL 4.0.0, which comes with a number of improvements and a sprinkling of fixes.

The release announcement reads,

Subject:    LibreSSL 4.0.0 Released
From:       Brent Cook <busterb () gmail ! com>

We have released LibreSSL 4.0.0, which will be arriving in the
LibreSSL directory of your local OpenBSD mirror soon. This is the
first stable release for the 4.0.x branch, also available with OpenBSD 7.6

It includes the following change from LibreSSL 3.9.2:

  * Portable changes
    - Added initial Emscripten support in CMake builds.
    - Removed timegm() compatibility layer since all uses were replaced
      with OPENSSL_timegm(). Cleaned up the corresponding test harness.
    - The mips32 platform is no longer actively supported.
    - Fixed Windows support for dates beyond 2038.

Read more…

Version 0.104 of Game of Trees has been released (and the port updated).

* got 0.104; 2024-10-22
  see git repository history for per-change authorship information
- gotd.conf: document the macro syntax
- tog: prevent a segfault upon unexpected object type in ref list view
- fix pack file creation in the presence of tagged tag objects
- plugged some memory leaks
- fix a crash when unstaging a file which has been removed from disk
- gotwebd: fix out of bounds access while handling the configuration

Long term MSX user and wife of MCWF chairman

read more

A new RPG coming from the Land of the Rising Sun.

read more

A classic 1996 game has been rebranded and updated

read more

President Eisenhower famously warned America about the risk of the military-industrial complex, but he also foresaw the risk that public policy would be captured by a scientific-technological elite.

Today, the solitary inventor, tinkering in his shop, has been over shadowed by task forces of scientists in laboratories and testing fields. In the same fashion, the free university, historically the fountainhead of free ideas and scientific discovery, has experienced a revolution in the conduct of research. Partly because of the huge costs involved, a government contract becomes virtually a substitute for intellectual curiosity. For every old blackboard there are now hundreds of new electronic computers.

The prospect of domination of the nation's scholars by Federal employment, project allocations, and the power of money is ever present and is gravely to be regarded.

Yet, in holding scientific research and discovery in respect, as we should, we must also be alert to the equal and opposite danger that public policy could itself become the captive of a scientific-technological elite.

(HT: American Experiment and Victory Girls.)

Many people I talk to are eager for "prices to get back to normal", but that's not how inflation works. Medora Lee does a good job reminding us of that.

When talking about inflation, it's important to remember that inflation is a rate that measures how fast prices are rising. If the consumer inflation rate drops from its 40-year high of 8.6% in May, prices are still rising - just not as fast.

Consumers won't feel immediate relief even as the inflation rate slows because many of those elevated prices are likely here to stay, said Michael Ashton, managing principal at Enduring Investments in Morristown, NJ.

"The price level has permanently changed," said Ashton. "Until your wages catch up (to inflation), it will continue to hurt."

Even when inflation returns to target 2% levels, prices won't return to "normal" 2019 levels. Prices will continue to grow, but at a slower and more predictable rate.

"Once core prices go up, generally they don't come down," Roussanov said. "In the last 40 to 50 years, we've never seen deflation in core goods. Most durable goods and services don't really come down in price."

And deflation is more dangerous than inflation because it can lead to a total economic collapse. When people believe that their money will buy more in a year than it will now, they stop consuming and just wait.

Additionally, modest, predictable inflation is seen as a sign of a growing economy. It incentivizes people to spend money now rather than waiting, allows wages to increase either in line or above inflation to boost the standard of living and makes it easier for businesses to plan, according to the Federal Reserve and IMF.

Louise Perry writes that she was betrayed by the lies of the sexual revolution. As a father of daughters this is heartbreaking to read.

It's precisely because I'm a feminist that I've changed my mind on sexual liberalism. It's an ideology premised on the false belief that the physical and psychological differences between men and women are trivial, and that any restrictions placed on sexual behavior must therefore have been motivated by malice, stupidity or ignorance.

The problem is the differences aren't trivial. Sexual asymmetry is profoundly important: One half of the population is smaller and weaker than the other half, making it much more vulnerable to violence. This half of the population also carries all of the risks associated with pregnancy. It is also much less interested in enjoying all of the delights now on offer in the post-sexual revolution era. ...

The new sexual culture isn't so much about the liberation of women, as so many feminists would have us believe, but the adaptation of women to the expectations of a familiar character: Don Juan, Casanova, or, more recently, Hugh Hefner.

It's almost as if our ancestors were wiser than we realized.

It seems that most conservatives are calling the new Bank Term Funding Program a "bailout" for the rich, but as far as I can tell preventing a contagious bank-run is good for everyone. Shareholders and bondholders of any failed banks are not being guaranteed in anyway, only depositors (i.e., bank customers).

The additional funding will be made available through the creation of a new Bank Term Funding Program (BTFP), offering loans of up to one year in length to banks, savings associations, credit unions, and other eligible depository institutions pledging U.S. Treasuries, agency debt and mortgage-backed securities, and other qualifying assets as collateral. These assets will be valued at par. The BTFP will be an additional source of liquidity against high-quality securities, eliminating an institution's need to quickly sell those securities in times of stress.

Silicon Valley Bank and Signature Bank are being "resolved" and shareholders are being wiped out. Bondholders will probably get some of their money back, but they won't be made whole. Depositors will be fully protected. Bank runs are caused by depositors panicking and withdrawing their money, so the BTFP should be sufficient to forestall that catastrophe without "bailing out" banks using taxpayer dollars. I guess we'll find out.

League tables revealing failing NHS trusts and cancelled pay rises or dismissal for managers who don't turn things around are part of plans to improve the health service.

A serving Gloucestershire police officer has been arrested on suspicion of a terrorism offence.

A member of the Massachusetts Air National Guard who leaked classified Pentagon information has been jailed for 15 years.

A 29-year-old man has been jailed for more than three years for loading illicit TV streaming services onto Amazon Fire Sticks.

Fines of £10,000 for social media bosses who don't remove illegal knife adverts are being considered by the government.

The homes of Kansas City Chiefs stars Patrick Mahomes and Travis Kelce were both broken into last month, according to police and media reports.

Some of Britain's biggest retailers have warned the chancellor that last month's budget will stoke inflation in the economy and spark job losses as tax hikes add nearly £2.5bn to the industry's annual tax bill.

The singer and actress stars in Emilia Pérez, a new Netflix musical which has been tipped for awards.

The Range, the privately owned general merchandise retailer, is closing in on a deal to snap up a large chunk of Homebase which will save close to 1,500 jobs but raise doubts about at least 1,700 more.

The Post Office has announced that more than a hundred larger crown branches - those owned by the company directly - could close with the possible loss of hundreds of jobs.

Train companies are set to face a review over how they prosecute and enforce rail fare evasion after reports of disproportionate action taken against passengers.

New trenches and berms are being constructed along the frontier in the occupied Golan Heights.

BAFTA will not revoke individual awards won by disgraced news presenter Huw Edwards, Sky News understands.

Several people have been injured after a bus carrying school children collided with a lorry in Leicestershire.

Microsoft has confirmed the general availability of Windows Server 2025, which, as a long-term servicing channel (LTSC) release, will be supported for almost ten years. This article describes some of the newest developments in Windows Server 2025, which boasts advanced features that improve security, performance, and flexibility. With faster storage options and the ability to integrate with hybrid cloud environments, managing your infrastructure is now more streamlined. Windows Server 2025 builds on the strong foundation of its predecessor while introducing a range of innovative enhancements to adapt to your needs. ↫ What’s new in Windows Server 2025 article It should come as no surprise that Windows Server 2025 comes loaded with a ton of new features and improvements. I already covered some of those, such as DTrace by default, NVMe and storage improvements, hotpatching, and more. Other new features we haven’t discussed yet are a massive list of changes and improvements to Active Directory, a feature-on-demand feature for Azure Arc, support for Bluetooth keyboards, mice, and other peripherals, and tons of Hyper-V improvements. SMB is also seeing so many improvements it’s hard to pick just a few to highlight, and software-defined networking is also touted as a major aspect of Server 2025. With SDN you can separate the network control plane from the data plane, giving administrators more flexibility in managing their network. I can just keep going listing all of the changes, but you get the idea – there’s a lot here. You can try Windows Server 2025 for free for 180 days, as a VM in Azure, a local virtual machine image, or installed locally through an ISO image.

Today, Microsoft announced the general availability of Windows Server IoT 2025. This new release includes several improvements, including advanced multilayer security, hybrid cloud agility, AI, performance enhancements, and more. Microsoft claims that Windows Server IoT 2025 will be able to handle the most demanding workloads, including AI and machine learning. It now has built-in support for GPU partitioning and the ability to process large datasets across distributed environments. With Live Migration and High Availability, it also offers a high-performance platform for both traditional applications and advanced AI workloads. ↫ Pradeep Viswanathan at Neowin Windows Server IoT 2025 brings the same benefits, new features, and improvements as the just-released regular Windows Server 2025. I must admit I’m a little unclear as to what Windows Server IoT has to offer over the regular edition, and reading the various Microsoft marketing materials and documents don’t really make it any clearer for me either, since I’m not particularly well-versed in all that enterprise networking lingo.

Old-school Apple fans probably remember a time, just before the iPhone became a massive gaming platform in its own right, when Apple released a wide range of games designed for late-model clickwheel iPods. While those clickwheel-controlled titles didn’t exactly set the gaming world on fire, they represent an important historical stepping stone in Apple’s long journey through the game industry. Today, though, these clickwheel iPod games are on the verge of becoming lost media—impossible to buy or redownload from iTunes and protected on existing devices by incredibly strong Apple DRM. Now, the classic iPod community is engaged in a quest to preserve these games in a way that will let enthusiasts enjoy these titles on real hardware for years to come. ↫ Kyle Orland at Ars Technica A nice effort, of course, and I’m glad someone is putting time and energy into preserving these games and making them accessible to a wider audience. As is usual with Apple, these small games were heavily encumbered with DRM, being locked to both the the original iTunes account that bought them, but also to the specific hardware identifier of the iPod they were initially synchronised to using iTunes. A clever way around this DRM exists, and it involves collectors and enthusiasts creating reauthorising their iTunes accounts to the same iTunes installation, and thus adding their respective iPod games to that single iTunes installation. Any other iPods can then be synced to that master account. The iPod Clickwheel Games Preservation Project takes this approach to the next level, by setting up a Windows virtual machine with iTunes installed in it, which can then be shared freely around the web for people to the games to their collection. This is a rather remarkably clever method of ensuring these games remain accessible, but obviously does require knowledge of setting up Qemu and USB passthrough. I personally never owned an iPod – I was a MiniDisc fanatic until my Android phone took over the role of music player – so I also had no clue these games even existed. I assume most of them weren’t exactly great to control with the limited input method of the iPod, but that doesn’t mean there won’t be huge numbers of people who have fond memories of playing these games when they were younger – and thus, they are worth preserving. We can only hope that one day, someone will create a virtual machine that can run the actual iPod operating system, called Pixo OS.

A long, long time ago, back when running BeOS as my main operating system had finally become impossible, I had a short stint running QNX as my one and only operating system. In 2004, before I joined OSNews and became its managing editor, I also wrote and published an article about QNX on OSNews, which is cringe-inducing to read over two decades later (although I was only 20 when I wrote that – I should be kind to my young self). Sadly, the included screenshots have not survived the several transitions OSNews has gone through since 2004. Anyway, back in those days, it was entirely possible to use QNX as a general purpose desktop operating system, mostly because of two things. First, the incredible Photon MicroGUI, an excellent and unique graphical environment that was a joy to use, and two, because of a small but dedicated community of enthousiasts, some of which QNX employees, who ported a ton of open source applications, from basic open source tools to behemoths like Thunderbird, the Mozilla Suite, and Firefox, to QNX. It even came with an easy-to-use package manager and associated GUI to install all of these applications without much hassle. Using QNX like this was a joy. It really felt like a tightly controlled, carefully crafted user experience, despite desktop use being so low on the priority list for the company that it might as well have not been on there at all. Not long after, I think a few of the people inside QNX involved with the QNX desktop community left the company, and the entire thing just fizzled out afterwards when the company was acquired by Harman Kardon. Not long after, it became clear the company lost all interest, a feeling only solidified once Blackberry acquired the company. Somewhere in between the company released some of its code under some not-quite-open-source license, accompanied by a rather lacklustre push to get the community interested again. This, too, fizzled out. Well, it seems the company is trying to reverse course, and has started courting the enthusiast community once again. This time, it’s called QNX Everywhere, and it involves making QNX available for non-commercial use for anyone who wants it. No, it’s not open source, and yes, it requires some hoops to jump through still, but it’s better than nothing. In addition, QNX also put a bunch of open source demos, applications, frameworks, and libraries on GitLab. One of the most welcome new efforts is a bootable QNX image for the Raspberry Pi 4 (and only the 4, sadly, which I don’t own). It comes with a basic set of demo application you can run from the command line, including a graphical web browser, but sadly, it does not seem to come with Photon microGUI or any modern equivalent. I’m guessing Photon hasn’t seen a ton of work since its golden days two decades ago, which might explain why it’s not here. There’s also a list of current open source ports, which includes chunks of toolkits like GTK and Qt, and a whole bunch of other stuff. Honestly, as cool as this is, it seems it’s mostly aimed at embedded developers instead of weird people who want to use QNX as a general purpose operating system, which makes total sense from QNX’ perspective. I hope Photon microGUI will make a return at some point, and it would be awesome – but I expect unlikely – if QNX could be released as open source, so that it would be more likely a community of enthusiasts could spring up around it. For now, without much for a non-developer like me to do with it, it’s not making me run out to buy a Raspberry Pi 4 just yet.

LXQt, the desktop environment that is to KDE what Xfce is to GNOME, has released version 2.1.0, and while the version number change seems average, it’s got a big ace up its sleeve: you can now run LXQt in a Wayland session, and they claim it works quite well, too, and it supports a wide variety of compositors. Through its new component lxqt-wayland-session, LXQt 2.1.0 supports 7 Wayland sessions (with Labwc, KWin, Wayfire, Hyprland, Sway, River and Niri), has two Wayland back-ends in lxqt-panel (one for kwin_wayland and the other general), and will add more later. All LXQt components that are not limited to X11 — i.e., most components — work fine on Wayland. The sessions are available in the new section Wayland Settings inside LXQt Session Settings. At least one supported Wayland compositor should be installed in addition to lxqt-wayland-session for it to be used. There is still hard work to do, but all of the current LXQt Wayland sessions are quite usable; their differences are about what the supported Wayland compositors provide. ↫ LXQt 2.1.0 release announcement This is great news for LXQt, as it ensures the desktop environment is ready to keep up with what modern Linux distributions provide. Crucially and in line with what we’ve come to expect from LXQt, X11 support is a core part of the project, and they even go so far as to say “the X11 session will be supported indefinitely”, which should set people preferring to stay on X11 at ease. I personally may have gleefully left X11 in the dustbin of history, but many among us haven’t, and it’s welcome to see LXQt’s clear promise here. Many of the other improvements in this release are tied to Wayland, making sure the various components work and Wayland settings can be adjusted. On top of that, there’s the usual list of bug fixes and smaller changes, too.

Speaking of Steam, the Linux version of Valve’s gaming platform has just received a pretty substantial set of fixes for crashes, and Timothee “TTimo” Besset, who works for Valve on Linux support, has published a blog post with more details about what kind of crashes they’ve been fixing. The Steam client update on November 5th mentions “Fixed some miscellaneous common crashes.” in the Linux notes, which I wanted to give a bit of background on. There’s more than one fix that made it in under the somewhat generic header, but the one change that made the most significant impact to Steam client stability on Linux has been a revamping of how we are approaching the setenv and getenv functions. One of my colleagues rightly dubbed setenv “the worst Linux API”. It’s such a simple, common API, available on all platforms that it was a little difficult to convince ourselves just how bad it is. I highly encourage anyone who writes software that will run on Linux at some point to read through “RachelByTheBay”‘s very engaging post on the subject. ↫ Timothee “TTimo” Besset This indeed seems to be a specific Linux problem, and due to the variability in Linux systems – different distributions, extensive user customisation, and so on – debugging information was more difficult to parse than on Windows and macOS. After a lot of work grouping the debug information to try and make sense of it all, it turned out that the two functions in question were causing issues in threads other than those that used them. They had to resort to several solutions, from reducing the reliance setenv and refactoring it with exevpe, to reducing the reliance on getenv through caching, to introducing “an ‘environment manager’ that pre-allocates large enough value buffers at startup for fixed environment variable names, before any threading has started”. It was especially this last one that had a major impact on reducing the number of crashes with Steam on Linux. Besset does note that these functions are still used far too often, but that at this point it’s out of their control because that usage comes from the libraries of the operating system, like x11, xcb, dbus, and so on. Besset also mentions that it would be much better if this issue can be addressed in glibc, and in the comments, a user by the name of Adhemerval reports that this is indeed something the glibc team is working on.

Ostrzegamy przed kampanią phishingową ukierunkowaną na klientów serwisu Netflix. Celem przestępców jest wyłudzenie danych dostępowych do konta oraz poufnych informacji związanych z kartą płatniczą.

Jednym z najczęstszych zagrożeń dla internautów, obserwowanych przez nasz zespół, pozostaje phishing. Pozornie nieszkodliwe maile, często wzywające do pilnego działania, mogą prowadzić do fałszywych witryn wyłudzających dane.

Dwudziesta szósta edycja Secure za nami. „Bezpieczeństwo w dobie zmian” – to hasło przewodnie zakończonej właśnie konferencji.

Secure to dwudniowa konferencja poświęcona strategicznym wyzwaniom w cyberprzestrzeni. Wydarzenie odbędzie się w dniach 16-17 kwietnia w Muzeum Historii Polski w Warszawie. Tegoroczna edycja odbywa się pod hasłem "Horyzont cyberwyzwań".

Za nami 27. edycja konferencji Secure. Były to dwa dni wypełnione wiedzą i ważnymi dyskusjami, ale także znakomita okazja do nawiązania kontaktów z innymi specjalistami z dziedziny cyberbezpieczeństwa. Przestrzeń naszej konferencji to miejsce, w którym mogą się spotkać różne spojrzenia, podejścia i aspekty (cyber)bezpieczeństwa.

W oprogramowaniu Ant Media Server (Community Edition) wykryto podatność typu Incorrect Authorization (CVE-2024-3462).

W oprogramowaniu urządzeń firmy Longse Technology wykryto 4 podatności (od CVE-2024-5631 do CVE-2024-5634).

(EMAILWIRE.COM, October 23, 2024 ) The global SASE Market growth is projected to grow from USD 1.9 billion in 2023 to USD 5.9 billion by 2028, at a Compound Annual Growth Rate (CAGR) of 25.0% during the forecast period. The growing preference for remote working practices, the increase in traffic...

(EMAILWIRE.COM, October 23, 2024 ) The Asset Performance Management Market is expected to grow from USD 1.91 billion in 2024 to USD 3.19 billion by 2029 at a Compound Annual Growth Rate (CAGR) of 10.8% during the forecast period. A need for optimizing cost efficiency will boost the growth of the...

(EMAILWIRE.COM, October 24, 2024 ) The paper-based consumer bags market is experiencing growth due to increasing environmental regulations, rising consumer awareness, and growing demand from various end-use industries. Stricter regulations regarding plastic bags are driving the shift towards paper-based...

(EMAILWIRE.COM, October 24, 2024 ) The oligonucleotide synthesis market is experiencing significant growth due to its applications in diagnostics, therapeutics, and research. North America holds the largest market share due to established research infrastructure and strong demand. Asia Pacific...

(EMAILWIRE.COM, October 24, 2024 ) Okra being a nutritious powerhouse is a rich source of protein and oil. The decreasing arable land is driving demand for high-yielding hybrid okra seeds.The rising awareness about okra’s benefits is rising the demand of the vegetable. However, fructans in okra...

Blogger is a free blog publishing tool from Google ... Push-Button Publishing. Nathan. My Blogs. Team Members. Simplyukgadgets. User Stats. On Blogger Since ...

Simply Amazing! Another 3D Mind Success Story,simply,success,Simply Uk Gadgets , siti di Simply Uk Gadgets , informazioni su.

Simply UK Gadgets, Simplyukgadgets Forums. Simplyukgadgets Forums ... photos, internet search engine and free downloads. www.simplyukgadgets.co. uk. ...

Simply UK Gadgets, Simplyukgadgets Forums. Simply Uk Gadgets . xml ... Simplyukgadgets Forums, . Super Computing UK Shopping Directory of . ...

Simplyukgadgets All About New Gadgets, GizmosAnd Well, Boys Toys. Bearing in mind that the majority of the Institute's members arepractitioners and not on ...

rss feeds pdf Computers & Internet Security Simplyukgadgets All about new gadgets, gizmos and well, boys toys. Get all the latest tech news on this Gadgets ...

Simplyukgadgets All About New Gadgets, Gizmos And Well, Boys Toys. ... Simply UK Gadgets, Simplyukgadgets Forums. htm Such unrealistic expectations ...