LastPass bug leaks credentials from previous site

Attackers could lure users on malicious pages and exploit the vulnerability to extract the credentials users had entered on previously-visited sites. According to Ormandy, this isn’t as hard as it sounds, as an attacker could easily disguise a malicious link behind a Google Translate URL, trick users into visiting the link, and then extract credentials from a previously visited site.

Source: LastPass bug leaks credentials from previous site | ZDNet

Los Angeles OKs a deal for record-cheap solar power and battery storage

Under the 25-year deal with developer 8minute Solar Energy, the city would buy electricity from a sprawling complex of solar panels and lithium-ion batteries in the Mojave Desert of eastern Kern County, about two hours north of Los Angeles. The Eland project would meet 6% to 7% of L.A.’s annual electricity needs and would be capable of pumping clean energy into the grid for four hours each night.

Source: Los Angeles OKs a deal for record-cheap solar power and battery storage – Los Angeles Times

Is Perl 6 Being Renamed?

The BBC, the world’s largest broadcaster, had Perl everywhere. They decided to ditch it. MongoDB claims that their clients aren’t developing any new projects in Perl, so they’re ditching Perl 5 support. Other companies are continuing this trend and this is, as potential clients have told me, because they’re tired of waiting for Perl 6. They think Perl 6 is the successor to Perl 5 and given the name, it makes perfect sense. Combine that with the negative press about Perl 5 and you get into “nobody got fired for buying IBM” territory, but s/Perl/$other_language/g.

Source: Is Perl 6 Being Renamed? | Ovid [blogs.perl.org]

How malformed packets caused CenturyLink’s 37-hour, nationwide outage

The switching module sent these malformed packets “as network management instructions to a line module,” and the packets “were delivered to all connected nodes,” the FCC said. Each node that received the packet then “retransmitted the packet to all its connected nodes.”

Source: How malformed packets caused CenturyLink’s 37-hour, nationwide outage | Ars Technica

But the outage continued because “the malformed packets continued to replicate and transit the network, generating more packets as they echoed from node to node,” the FCC wrote. Just after midnight, at least 20 hours after the problem began, CenturyLink engineers “began instructing nodes to no longer acknowledge the malformed packets.” They also “disabled the proprietary management channel, preventing it from further transmitting the malformed packets.”

Counterintuitive physics property found to be widespread in living organisms

Ever since the late 19th century, physicists have known about a counterintuitive property of some electric circuits called negative resistance. Typically, increasing the voltage in a circuit causes the electric current to increase as well. But under some conditions, increasing the voltage can cause the current to decrease instead. This basically means that pushing harder on the electric charges actually slows them down

Source: Counterintuitive physics property found to be widespread in living organisms

Why putting a script in /etc/cron.hourly is not working?

As you’ve probably seen in the comments to your question, the cronjobs in /etc/cron.hourly (and the other, similar directories) are executed by run-parts. run-parts is a little picky about filenames. By default it doesn’t execute files whose filenames contain anything other than (all of those from ASCII)

  • uppercase letters
  • lowercase letters
  • digits
  • underscores
  • dashes (“minus signs”)

So if your script has a filename of for example “myscript.sh”, it just is ignored, because run-parts does not like the dot.

Source: Why putting a script in /etc/cron.hourly is not working? – Ask Ubuntu

LOL!

Facebook (FB) Paid Contractors to Transcribe User Audio Files

In follow-up answers for Congress, the company said it “only accesses users’ microphone if the user has given our app permission and if they are actively using a specific feature that requires audio (like voice messaging features.)” The Menlo Park, California-based company doesn’t address what happens to the audio afterward.

Source: Facebook (FB) Paid Contractors to Transcribe User Audio Files – Bloomberg

Facebook first started allowing Messenger users to have their audio transcribed in 2015. “We’re always working on ways to make Messenger more useful,” David Marcus, the executive in charge of the service at the time, said in a Facebook post.

Scientists invented air conditioners for the climate change age

Their invention looks a lot like a solar panel. A flat metal panel is covered in a sheet of the material—a high-tech film—the trio invented. The material reflects the light and heat of the sun so effectively that the temperature beneath the film can drop 5 to 10-degrees Celsius (9 to 18-degrees Fahrenheit) lower than the air around it. A system of pipes behind the metal panel are exposed to that colder temperature, cooling the fluid inside before it’s sent out to current-day refrigeration systems.

Source: Scientists invented air conditioners for the climate change age — Quartz

Why NASA Should Bake Cookies in Space

Those hotel chocolate-chip cookies will be the closest astronauts have come to truly baking something in their high-flying kitchens. NASA says astronauts won’t actually eat the cookies, because they are, technically, a science experiment. The treats will be returned home for examination.

Source: Why NASA Should Bake Cookies in Space – The Atlantic

NanoRacks created a cylinder-shaped oven lined with heating components that can bring the interior temperature to 350 degrees Fahrenheit. It bakes one slab of cookie dough, which is held in place inside a sealed tray, at a time. The oven will plug into an apparatus about the size of carry-on luggage that supports scientific experiments with electricity, cooling, and other needs.