Great songs rise above ugly intentions, and Sweet Home Alabama deserves to be listened to with a critical and attentive ear. Beneath the redneck rumble and tumbling there's a slice of American History to be discovered.

The post Sweet Home Alabama – the twists and turns of a contested song appeared first on Three Monkeys Online Magazine.

Italy is an amazing country to visit, but it can be expensive – particularly if you’re travelling around from city to city trying to take in all the sites. Planning a trip to Italy on a budget isn’t as difficult as it may seem, though, and we’ve put some of our local writers onto the […]

The post Planning a trip to Italy on a budget – tips appeared first on Three Monkeys Online Magazine.

The Austrian novelist Stefan Zweig was once among the most popular and most translated writers in the world. English Heritage's widely criticised refusal to commemorate his residence in London provides an entry point into a discussion on the role of the intellectual, Brexit, and the meaning of Europe.

The post Unseasonably Speaking – Stefan Zweig, Brexit and the meaning of Europe appeared first on Three Monkeys Online Magazine.

Our favorite operating system is now changing the default shell (ksh) to enforce not allowing invalid NUL characters in input that will be parsed as parts of the script.

The commit message reads,

List:       openbsd-cvs
Subject:    CVS: cvs.openbsd.org: src
From:       Theo de Raadt <deraadt () cvs ! openbsd ! org>
Date:       2024-09-23 21:18:33

CVSROOT:	/cvs
Module name:	src
Changes by:	deraadt@cvs.openbsd.org	2024/09/23 15:18:33

Modified files:
	bin/ksh        : shf.c 

Log message:
If during parsing lines in the script, ksh finds a NUL byte on the
line, it should abort ("syntax error: NUL byte unexpected").  There
appears to be one piece of software which is misinterpreting guidance
of this, and trying to depend upon embedded NUL.  During research,
every shell we tested has one or more cases where a NUL byte in the
input or inside variable contents will create divergent behaviour from
other shells.  (ie. gets converted to a space, is silently skipped, or
aborts script parsing or later execution).  All the shells are written
in C, and majority of them use C strings for everything, which means
they cannot embed a NUL, so this is not surprising.  It is quite
unbelievable there are people trying to rewrite history on a lark, and
expecting the world to follow alone.

Read more…

There has been a significant change to the behaviour of sysupgrade(8):

CVSROOT:	/cvs
Module name:	src
Changes by:	florian@cvs.openbsd.org	2024/09/24 01:33:35

Modified files:
	usr.sbin/sysupgrade: sysupgrade.8 sysupgrade.sh 

Log message:
Remove -r toggle and generally be less smart.

The default is to install the next release. Snapshots are only
installed when invoked with -s.

Read more…

The work of improving ssh security by segregating functionality into separate binaries contiues, this time by introducing sshd-auth as a separate binary.

The commit message summarizes why this makes sense,

Splitting this code into a separate binary ensures that the crucial
pre-authentication attack surface has an entirely disjoint address
space from the code used for the rest of the connection. It also
yields a small runtime memory saving as the authentication code will
be unloaded after thhe authentication phase completes.

The code is in snapshots as we type.

Read the whole thing after the fold -

Read more…

Why did Willie Sutton rob banks? "Because that's where the money is."

Why does the government want to tax your IRA and ROTH retirement savings? Because that's where the money is.

When the income tax first went into effect in 1915, the top rate was a mere 7% and fell only on those making $500,000 a year or more -- that's $13.5 million in today's dollars. The vast majority of Americans paid the lowest 1% rate.

Today, the federal income tax ranges from 10%-37% and that's on top of all the FICA withholding. Today's top rate -- more than five times higher than it was in 1915 -- falls on those making about $500,000.

Which means top rate-payers are paying 5.5 more income tax on about one-thirtieth of the income.

The lowest rate-payers are paying 10 times more on about the same fraction -- and that still doesn't count FICA deductions, which hit the poorest the hardest.

The income tax was sold by early 20th Century progressives as a way to sock it to the rich, but progressives made sure it become a way to sock it to everybody.

You can bet your bottom dollar -- if Congress doesn't confiscate that, too -- that today's "Billionaire Income Tax" is tomorrow's "Tax Your Middle Class Retirement Accounts Before You Even Retire."

Our government is too big, too unaccountable, too incompetent, and entirely dedicated to growing its own power. Anything that can't go on forever, won't.

Alice Evans writes that working-age men in America aren't working.

7 million men aged 25-54 in the USA are not working

What are they doing?

Volunteering? Worship? Care-work?

"Playing Call of Duty stoned"

They report 2000 hours a year of screen time (w/ pain meds)

This phenomenon is far less severe in Western Europe

She has many charts and graphs that dig into the details.

My opinion is that we're beginning to see human workers displaced by automation in a way that doesn't create new jobs for the displaced humans. Men are more affected than women because women dominate "caring professions" that are harder to automate.

(I posted this to the DnD subreddit also: link.)

The Open Gaming License fiasco with Dungeons & Dragons producer Wizards of the Coast is a symptom of a larger problem: our insane Intellectual Property system that currently protects material for the life of the author plus 70 years. As a comparison, patents generally only protect inventions for 20 years.

The purpose of intellectual property laws is to balance public and private interests. IP law is an agreement between society and creators: the creator is guaranteed an exclusive right to their creation for a period of time, and in exchange the public gets rights to the creation afterwards. It's intended to be a balance of interests, but the balance has gotten completely out of whack thanks to (obviously) lobbying throughout the 20th century by major copyright holders like Disney.

In my opinion, the current copyright term, life of the author plus 70 years, is grossly unfair to the public. I believe that the internet era has demonstrated that creators would be incentivized to create even without such a long period of exclusivity. Think about it: would you create less stuff if your great-grandkids didn't get exclusive rights? I doubt it.

Listen: creators should be able to make money from their work. I don't think copyright should go to zero, but why not bring it in line with patent protection with a 20-year term?

Disney, DnD, and many other creations are part of our generation's cultural legacy, part of a 10,000+ year inheritance that has been handed down through time to our grandparents, our parents, and now us. It's morally wrong for our ancestors and corporations to lock our inheritance away from us.

Copyright protections must be re-balanced to protect both creators and the public. This problem with WotC shouldn't be just about a license, it should be about the IP laws that grant them exclusive rights to creations that are over 50 years old. Our generation should re-open these negotiations and come up with a fair copyright term.

It seems that most conservatives are calling the new Bank Term Funding Program a "bailout" for the rich, but as far as I can tell preventing a contagious bank-run is good for everyone. Shareholders and bondholders of any failed banks are not being guaranteed in anyway, only depositors (i.e., bank customers).

The additional funding will be made available through the creation of a new Bank Term Funding Program (BTFP), offering loans of up to one year in length to banks, savings associations, credit unions, and other eligible depository institutions pledging U.S. Treasuries, agency debt and mortgage-backed securities, and other qualifying assets as collateral. These assets will be valued at par. The BTFP will be an additional source of liquidity against high-quality securities, eliminating an institution's need to quickly sell those securities in times of stress.

Silicon Valley Bank and Signature Bank are being "resolved" and shareholders are being wiped out. Bondholders will probably get some of their money back, but they won't be made whole. Depositors will be fully protected. Bank runs are caused by depositors panicking and withdrawing their money, so the BTFP should be sufficient to forestall that catastrophe without "bailing out" banks using taxpayer dollars. I guess we'll find out.

I've been wondering for a long time why we haven't seen anything like this: X PRIZE Healthspan.

The XPRIZE Foundation is proud to announce its newest competition, XPRIZE Healthspan. XPRIZE Healthspan is a 7-year, $101 million global competition to revolutionize the way we approach human aging.

Modern medicine focuses on treating symptoms of injury, illness, or disease once they develop. This reactive system extends life, but doesn't proactively improve health, leaving millions grappling with poor quality of life and related economic challenges in their later years.

Success from XPRIZE Healthspan would profoundly change our approach to aging and positively affect quality-of-life and healthcare costs. Working across all sectors, we can democratize health and create a future where aging is full of potential.

The thing is... if I found a way to reverse aging I could probably make more than $101m selling it.

League tables revealing failing NHS trusts and cancelled pay rises or dismissal for managers who don't turn things around are part of plans to improve the health service.

Keir Starmer's arrival at COP29, with a promise to drastically cut the UK's carbon emissions by 81%, will be a small ray of sunshine in an otherwise gloomy start to the climate talks.

Headlights illuminate a group of soldiers smoking and drinking steaming cups of coffee on the side of a road in northeastern Ukraine.

A serving Gloucestershire police officer has been arrested on suspicion of a terrorism offence.

A 29-year-old man has been jailed for more than three years for loading illicit TV streaming services onto Amazon Fire Sticks.

Fines of £10,000 for social media bosses who don't remove illegal knife adverts are being considered by the government.

The billionaire will partner with biotech investor Vivek Ramaswamy to "dismantle" bureaucracy, Trump says.

Tweaking the routes of a small number of planes could reduce the warming effect of contrails by half and cost less than €4 per ticket, according to a study.

P&O Ferries spent more than £47m summarily sacking hundreds of seafarers in 2022, helping it cut losses by more than £125m and putting it on a path to profitability, according to accounts due to be published in the coming days.

The Range, the privately owned general merchandise retailer, is closing in on a deal to snap up a large chunk of Homebase which will save close to 1,500 jobs but raise doubts about at least 1,700 more.

The Church of England's deputy lead bishop for safeguarding has said it is "not a safe institution" in some ways - and that others may need to step down following the Archbishop of Canterbury's resignation.

An American warship that was sunk by Japanese dive bombers during the Second World War has finally been found, more than 80 years later.

New trenches and berms are being constructed along the frontier in the occupied Golan Heights.

Audrey F tells a court how a 13-year-old student's lie to her parents led to Samuel Paty's murder.

BAFTA will not revoke individual awards won by disgraced news presenter Huw Edwards, Sky News understands.

Several people have been injured after a bus carrying school children collided with a lorry in Leicestershire.

It’s been less than a week, and late Friday night we reached the fundraiser goal of €2500 (it sat at 102% when I closed it) on Ko-Fi! I’m incredibly grateful for each and every donation, big or small, and every new Patreon that joined our ranks. It’s incredible how many of you are willing to support OSNews to keep it going, and it means the absolute world to me. Hopefully we’ll eventually reach a point where monthly Patreon income is high enough so we can turn off ads for everyone, and be fully free from any outside dependencies. Of course, it’s not just those that choose to support us financially – every reader matters, and I’m very thankful for each and every one of you, donor/Patreon or not. The weekend’s almost over, so back to regular posting business tomorrow. I wish y’all an awesome Sunday evening.

Some months ago, I got really fed up with C. Like, I don’t hate C. Hating programming languages is silly. But it was way too much effort to do simple things like lists/hashmaps and other simple data structures and such. I decided to try this language called Odin, which is one of these “Better C” languages. And I ended up liking it so much that I moved my game Artificial Rage from C to Odin. Since Odin has support for Raylib too (like everything really), it was very easy to move things around. Here’s how it all went.. Well, what I remember the very least. ↫ Akseli Lahtinen You programmers might’ve thought you escaped the wrath of Monday on OSNews, but after putting the IT administrators to work in my previous post, it’s now time for you to get to work. If you have a C codebase and want to move it to something else, in this case Odin, Lahtinen’s article will send you on your way. As someone who barely knows how to write HTML, it’s difficult for me to say anything meaningful about the technical details, but I feel like there’s a lot of useful, first-hand info here.

NetBSD is an open-source, Unix-like operating system known for its portability, lightweight design, and robustness across a wide array of hardware platforms. Initially released in 1993, NetBSD was one of the first open-source operating systems based on the Berkeley Software Distribution (BSD) lineage, alongside FreeBSD and OpenBSD. NetBSD’s development has been led by a collaborative community and is particularly recognized for its “clean” and well-documented codebase, a factor that has made it a popular choice among users interested in systems programming and cross-platform compatibility. ↫ André Machado I’m not really sure what to make of this article, since it mostly reads like an advertisement for NetBSD, but considering NetBSD is one of the lesser-talked about variants of an operating system family that already sadly plays second fiddle to the Linux behemoth, I don’t think giving it some additional attention is really hurting anybody. The article is still gives a solid overview of the history and strengths of NetBSD, which makes it a good introduction. I have personally never tried NetBSD, but it’s on my list of systems to try out on my PA-RISC workstation since from what I’ve heard it’s the only BSD which can possibly load up X11 on the Visualize FX10pro graphics card it has (OpenBSD can only boot to a console on this GPU). While I could probably coax some cobbled-together Linux installation into booting X11 on it, where’s the fun in that? Do any of you lovely readers use NetBSD for anything? FreeBSD and even OpenBSD are quite well represented as general purpose operating systems in the kinds of circles we all frequent, but I rarely hear about people using NetBSD other than explicitly because it supports some outdated, arcane architecture in 2024.

Speaking of Steam, the Linux version of Valve’s gaming platform has just received a pretty substantial set of fixes for crashes, and Timothee “TTimo” Besset, who works for Valve on Linux support, has published a blog post with more details about what kind of crashes they’ve been fixing. The Steam client update on November 5th mentions “Fixed some miscellaneous common crashes.” in the Linux notes, which I wanted to give a bit of background on. There’s more than one fix that made it in under the somewhat generic header, but the one change that made the most significant impact to Steam client stability on Linux has been a revamping of how we are approaching the setenv and getenv functions. One of my colleagues rightly dubbed setenv “the worst Linux API”. It’s such a simple, common API, available on all platforms that it was a little difficult to convince ourselves just how bad it is. I highly encourage anyone who writes software that will run on Linux at some point to read through “RachelByTheBay”‘s very engaging post on the subject. ↫ Timothee “TTimo” Besset This indeed seems to be a specific Linux problem, and due to the variability in Linux systems – different distributions, extensive user customisation, and so on – debugging information was more difficult to parse than on Windows and macOS. After a lot of work grouping the debug information to try and make sense of it all, it turned out that the two functions in question were causing issues in threads other than those that used them. They had to resort to several solutions, from reducing the reliance setenv and refactoring it with exevpe, to reducing the reliance on getenv through caching, to introducing “an ‘environment manager’ that pre-allocates large enough value buffers at startup for fixed environment variable names, before any threading has started”. It was especially this last one that had a major impact on reducing the number of crashes with Steam on Linux. Besset does note that these functions are still used far too often, but that at this point it’s out of their control because that usage comes from the libraries of the operating system, like x11, xcb, dbus, and so on. Besset also mentions that it would be much better if this issue can be addressed in glibc, and in the comments, a user by the name of Adhemerval reports that this is indeed something the glibc team is working on.

Głównym celem tego oszustwa jest zachęcenie potencjalnej ofiary do podania danych logowania do swojego konta bankowości internetowej, aby następnie wyłudzić przechowywane pieniądze.

Zespół CERT Polska zaobserwował nowy wariant oszustwa, w którym przestępcy wykorzystują wizerunek Ministerstwa Finansów. Celem tego oszustwa jest zachęcenie potencjalnej ofiary do udostępnienia swoich danych uwierzytelniających do bankowości internetowej.

Ostrzegamy - fałszywe reklamy w serwisie Google Search wykorzystywane do propagacji szkodliwego oprogramowania.

Ostrzegamy przed kampanią phishingową ukierunkowaną na klientów serwisu Netflix. Celem przestępców jest wyłudzenie danych dostępowych do konta oraz poufnych informacji związanych z kartą płatniczą.

Spear phishing jest oszustwem o charakterze socjotechnicznym, wykorzystującym presję autorytetu i czasu, aby skłonić atakowanego do podjęcia niekorzystnego dla niego działania. Fakt, że zazwyczaj informacje potrzebne do przeprowadzenia ataku są publicznie dostępne lub łatwe do uzyskania, czyni to oszustwo popularnym wśród cyberprzestępców.

Jednym z najczęstszych zagrożeń dla internautów, obserwowanych przez nasz zespół, pozostaje phishing. Pozornie nieszkodliwe maile, często wzywające do pilnego działania, mogą prowadzić do fałszywych witryn wyłudzających dane.

W oprogramowaniu routera Hongdian H8951-4G-ESP wykryto 10 podatności różnego typu (od CVE-2023-49253 do CVE-2023-49262).

W oprogramowaniu Online Shopping System Advanced wykryto podatność typu Reflected XSS (CVE-2024-3579).

W oprogramowaniu urządzeń firmy Longse Technology wykryto 4 podatności (od CVE-2024-5631 do CVE-2024-5634).

W oprogramowaniu Stackposts Social Marketing Tool wykryto podatność typu Cross-site Scripting i nadano jej identyfikator CVE-2024-7127.

(EMAILWIRE.COM, October 23, 2024 ) The global SASE Market growth is projected to grow from USD 1.9 billion in 2023 to USD 5.9 billion by 2028, at a Compound Annual Growth Rate (CAGR) of 25.0% during the forecast period. The growing preference for remote working practices, the increase in traffic...

(EMAILWIRE.COM, October 23, 2024 ) LOS ANGELES -- Fare Co-op, a rideshare platform reimagining the future for drivers and riders, is set to revolutionize the industry by offering a unique driver-ownership model. Unlike other companies in the sector that are transitioning to driverless vehicles, Fare...

(EMAILWIRE.COM, October 24, 2024 ) The global phishing protection market is estimated to be worth USD 2.2 billion in 2023 and is projected to reach USD 4.1 billion by 2028, at a CAGR of 13.5% during the forecast period. Download PDF Brochure@ https://www.marketsandmarkets.com/pdfdownloadNew.asp?id=103391093&utm_source=emailwire.com&utm_medium=paidpr&utm_campaign=phishing-protection-market The...

(EMAILWIRE.COM, October 24, 2024 ) The report "Extrusion Coating Market by Material Type (LDPE, EVA, PP, PET), Substrate (Paper, Paperboard, Aluminium Foils, Polymer Films), Application (Packaging, Liquid, Flexible, Commercial, Photographic), and Region - Global Forecast to 2029 " is projected to...

(EMAILWIRE.COM, October 24, 2024 ) The mRNA synthesis & manufacturing market is projected to reach USD 2,958.3 million in 2029 from USD 2,231.4 million in 2024. This market is projected to grow at a CAGR of 5.8% over the forecast period. The primary drivers behind the expansion of this market are...

Simply Amazing! Another 3D Mind Success Story,simply,success,Simply Uk Gadgets , siti di Simply Uk Gadgets , informazioni su.

They say a picture is worth a thousand words. net - Simplyukgadgets. gadgets with SearchTwice. Here's one to the kid that never finishes anything! ...

water pearls and the the gemstone is fresh viesearch com simplyukgadgets all about new gadgets. ... Informazioni su Signore Anello Simplyukgadgets Forums . ...

Simplyukgadgets Forums, . GADGET, gadget promozionali , gadget personalizzati , gadget . Cerca in play free casino game online Simply Uk Gadgets ...