Articles about Open Source

head of 50s-style robot

Docker adds continuous integration to DataKit

Here's a handy tool from Docker's GitHub repository: a continuous integration library to help manage DataKit projects. DataKit went open source in May last year. At the time, Anil Madhavapeddy explained it was part of the strategy to let users run Docker natively on Windows and Mac machines. DataKit provides the software …
Image by Ensuper http://www.shutterstock.com/gallery-585532p1.html

Dovecot mailserver graded 'nearly impenetrable'

POP and IMAP mailserver suite Dovecot has passed an extensive audit by hackers, who were able to find only three minor vulnerabilities. Dovecot is especially popular with service providers, so the news that four Cure53 researchers have given it a "thoroughly all-encompassing" audit and found the software to have "excellent …
Darren Pauli, 17 Jan 2017

Google floats prototype Key Transparency to tackle secure swap woes

Google has released an open-source technology dubbed Key Transparency, which is designed to offer an interoperable directory of public encryption keys. Key Transparency offers a generic, secure way to discover public keys. The technology is built to scale up to internet size while providing a way to establish secure …
John Leyden, 13 Jan 2017
Opera Neon

Opera scolds stale browsers with shocking Neon experiment

Opera, the Norwegian browser maker acquired last year by a Chinese investment consortium, on Thursday introduced the browser equivalent of a concept car. Opera Neon, available for macOS and Windows, is intended as an exploration of browser design alternatives. It isn't a replacement for the current desktop version of Opera and …
Thomas Claburn, 13 Jan 2017
D-Wave chip

D-Wave goes public with open-source quantum-classical hybrid software

Want to fool around with some quantum-ish computing? D-Wave has open sourced a software tool that prepares optimisation problems to run on its hardware. You can think of the software, qbsolv, as a D-Wave-specific compiler: in the white paper it's posted along with the tool at GitHub, the company's Michael Booth, Steven …
Karmera secured Pixel phone photo2 by Kaymera

Security hardened, pah! Expert doubts Kaymera's mighty Google's Pixel

The arrival of a security hardened version of Google’s supposed "iPhone killer" Pixel phone from Kaymera has received a sceptical reception from one expert. Kaymera Secured Pixel is outfitted with Kaymera’s own hardened version of the Android operating system and its security architecture. This architecture is made up of four …
John Leyden, 12 Jan 2017
GTA V in game at 4K

Train your self-driving car AI in Grand Theft Auto V – what could possibly go wrong?

Developers building self-driving cars can now take their AI agents for a spin in the simulated open world of Grand Theft Auto V – via OpenAI’s machine-learning playground, Universe. The open-source MIT-licensed code gluing GTA V to Universe is maintained by Craig Quiter, who works for Otto – the Uber-owned startup that …
Katyanna Quach, 12 Jan 2017

How to secure MongoDB – because it isn't by default and thousands of DBs are being hacked

The rise in ransomware attacks on MongoDB installations prompted the database maker last week to issue advice on how to avoid being victimized. As of Sunday, security researcher and Microsoft developer Niall Merrigan identified more than 27,000 MongoDB databases seized by ransomware. By Tuesday afternoon Pacific Time, an …
Thomas Claburn, 11 Jan 2017

Google must be Beaming as Apache announces its new top-level projects

The Apache Software Foundation has today announced two new top-level projects, Apache Beam and Apache Eagle. Apache Beam is yet another technology birthed by Google's work on data processing, and its roots can be traced back to Google's initial MapReduce system which revolutionised the science of distributed data processing …
Cookie Monster

EU tosses Europe's cookies... popups

The EU’s most famous contribution to the internet era could be snuffed out soon, and few will mourn it. As expected, Brussels will no longer mandate that websites receive the user’s consent for placing cookies on their device. Scrapping the consent form is one of the options floated in the European Commission new public …
Andrew Orlowski, 10 Jan 2017

Renault goes open source with next-gen electric buggy you might generously call 'a car'

Renault is embracing open source with its new car – an electric vehicle named POM. As the car industry unveils its latest and greatest at the North American International Auto Show, the French carmaker is pushing the POM – which stands for Platform Open Mind – as the future of cars. The space-age golf cart, pictured above, …
Kieren McCarthy, 09 Jan 2017

Splunk: Why we dumped Perforce for Atlassian's Bitbucket of Gits

Analysis Kurt Chase, director of engineering services at Splunk, is effusive about Atlassian's Git-based Bitbucket but doesn't have a lot of nice things to say about jilted source control system Perforce. As it turns out, Perforce has a rather jaundiced view of Git as a way to manage software. But more on that later. Two years ago, …
Thomas Claburn, 06 Jan 2017

Google nukes ad-blocker AdNauseam, sweeps remains out of Chrome Web Store

Google has removed ad blocking and privacy extension AdNauseam from its Chrome Web Store, and has taken the unusual step of flagging the extension as malware, thereby preventing AdNauseam from being used by those who have installed the software via Chrome's developer mode. Chrome users who put their browser into developer mode …
Thomas Claburn, 05 Jan 2017
Lady eating a sandwich checking her mobile phone

CloudByte chews on Elastistor, sinks teeth into OpenEBS

Analysis Startup CloudByte is having a substantial exec and strategy makeover as it embraces an open source approach to containerised storage. We came across CloudByte just over a year ago when it popped up with its ElastiStor software running on OEM’d SanDisk (now WD) InfiniFlash hardware, the box with a bunch of flash inside it. …
Chris Mellor, 05 Jan 2017
Lock on a board. Photo by shutterstock

Researchers work to save trusted computing apps from keyloggers

Intel's Software Guard Extensions started rolling in Skylake processors in October 2015, but it's got an Achilles heel: insecure I/O like keyboards or USB provide a vector by which sensitive user data could be compromised. A couple of boffins from Austria's Graz University of Technology reckon they've cracked that problem, …
Riven Media http://www.shutterstock.com/gallery-1141187p1.html

Hacker: Lol, I pwned FBI.gov! Web devs: Nuh-uh, no you didn't

Updated A hacker is claiming to have breached the FBI's website security, dumping staffers' email addresses and SHA1-scrambled password hashes with salts online. Meanwhile, the makers of the site's publishing software say it's all a hoax. A miscreant using the handle @cyberzeist claims to have infiltrated Plone CMS used by FBI.gov, …
Darren Pauli, 05 Jan 2017

Google's Grumpy code makes Python Go

Google on Wednesday introduced an open-source project called Grumpy to translate Python code into Go programs. The company's front-end server for YouTube and its YouTube API are mainly written in Python, and run on CPython 2.7, as opposed to other implementations (Jython, PyPy, or IronPython). The issue for Google is …
Thomas Claburn, 05 Jan 2017
Netanel Rubin at Chaos Communications Congress 2016.

Hackers could turn your smart meter into a bomb and blow your family to smithereens – new claim

Smart meters are "dangerously insecure," according to researcher Netanel Rubin – who claimed the gear uses weak encryption, relies on easily pwned protocols, and can be programmed to explode. The software vulnerability hunter derided global efforts to roll out the meters as reckless, saying the "dangerous" devices are a risk …
Darren Pauli, 04 Jan 2017
Robot hand human skull photo via Shutterstock

2016: The Rise of the Intelligent (cloud) Machines

Review of 2016 Blame Mark Zuckerberg. Not for the election of Donald Trump as US president, but for Artificial Intelligence becoming the trend du jour in enterprise tech circles in 2016. Back in those now forgotten days of January, before The Great Inversion of 2016, Zuckerberg was surely kicking his heels when he set himself that “personal …
Gavin Clarke, 25 Dec 2016
Dr Strangelove bomb

ClusterHQ? More like Clusterfscked: Cluster bombs, says it came to market too early

Preempting cheap shots at his company's failure, CEO Mark Davis on Thursday announced that ClusterHQ is shutting down with a single, unassailably apt headline: "ClusterF***ed." We couldn't have said it better ourselves at The Register. Our job is done, or nearly. Given how rare it is that a technology company commits the …
Thomas Claburn, 23 Dec 2016
Java image by Gil C via Shutterstock

MicroServices-friendly Java lands on Eclipse

A project for a microservices-friendly Java is to be overseen by the Eclipse Foundation. The MicroProfile project has been accepted by the Eclipse Foundation Board following a vote. MicroProfile is a lightweight profile of enterprise Java using existing elements of the Java EE stack. Backers of MicroProfile initiated the …
Gavin Clarke, 23 Dec 2016

Meet the Internet of big, lethal Things

Silicon Valley’s desire to open up the software that controls heavy vehicles has come under criticism from industry experts. This week the Electronic Frontier Foundation (EFF) renewed its call for the legal protection that manufacturers use to safeguard automotive software to be relaxed. For three years, farm machinery maker …
Andrew Orlowski, 23 Dec 2016

Bad news: Exim hole was going to be patched on Xmas Day. Good news: Keyword 'was'

Updated An information-leaking security hole in widely used email agent Exim – scheduled for repair on Christmas Day – may now be publicly patched earlier, possibly as soon as Friday. System administrators were stunned by the suggestion that a patch for the vulnerability would be released on December 25 when pretty much everyone …
John Leyden, 22 Dec 2016
Surpised man mobile phone photo by Shutterstock

Windows 10 nags, Dirty Cow, Microsoft's Linux man love: The Reg's big ones for 2016

Systems got bigger and more removed from ordinary mortals during 2016 as West Coast tech firms centralised more and more computing on server farms. Google, Facebook and Microsoft wanted us to slap on virtual reality goggles and ask artificial intelligences to serve our voice-activated commands. Cars, lorries and taxis minus …
Gavin Clarke, 22 Dec 2016
Swiss army knife in cloud

Virtualisation got boring in 2016, but the fun's about to start anew

END-OF-YEAR ROUND UP 2016 was a year in which virtualisation became so mainstream, so expected, so accepted that it started to look like a moribund market. But virtualisation's really only just getting started because storage virtualisation, network virtualisation and network function virtualisation are just getting started, while other uses for …
Simon Sharwood, 22 Dec 2016

Gluster techie shows off 'MySQL of object storage' Minio projects

Backgrounder Minio and its µServer were first described by El Reg in December a year ago. Now we have had a closer look, courtesy of a press tour to Silicon Valley earlier this month. The basic product comes as three software items: Open source µServer Open Source Client Software development kit The µServer is a lightweight piece of …
Chris Mellor, 21 Dec 2016

Testing times: Can your crypto-code survive the Google gauntlet?

Google has unleashed Project Wycheproof, a set of security tests to check cryptographic libraries for susceptibility to known weaknesses. The toolkit, maintained by Google’s security engineers, is named after Mount Wycheproof, the smallest mountain in the world, and has set out with commendably modest goals. The aim is to look …
John Leyden, 20 Dec 2016

Technology as a catalyst for cultural change

IT departments can do a lot to improve performance by optimising the infrastructure and the way they work internally, but the level of success ultimately depends on the prevailing business culture. Recognising this is important to achieving the best results. It is also key to understanding how the smart and creative use of …
Dale Vile, 20 Dec 2016
OpenIO_WD_HDD_with_ARM_board

Grab an ARMful: OpenIO's Scale-out storage with disk drive feel

OpenIO has launched its SLS-4U96 product, a box of 96 directly addressed drives offering an object-storage interface and per-drive scale-out granularity. The SLS-4U86 is a 4U box holding up to 96 vertically mounted 3.5-inch disk drives, providing up to 960TB of raw storage with 10TB drives and 1,152 TB with 12TB drives. The …
Chris Mellor, 19 Dec 2016

'So sorry' Evernote rips up privacy changes

Evernote has scrapped changes to its data protection practices after a furious customer backlash. Evernote now says it will not now implement the changes it announced earlier in the week come January 23, as it had planned. “We announced a change to our privacy policy that made it seem like we didn’t care about the privacy of …
Andrew Orlowski, 16 Dec 2016
Hunter photo via Shutterstock

Oracle finally targets Java non-payers – six years after plucking Sun

Oracle is massively ramping up audits of Java customers it claims are in breach of its licences – six years after it bought Sun Microsystems. A growing number of Oracle customers and partners have been approached by Larry Ellison’s firm, which claims they are out of compliance on Java. Oracle bought Java with Sun Microsystems …
Gavin Clarke, 16 Dec 2016
LG Roboking Turbo+Homeview

Could a robot vacuum cleaner monitor your data centre?

Can you monitor a data centre with a vacuum cleaner? The Register decided that question had to be answered after learning about LG's Roboking Turbo+Homeview (model VR66803VMNP), a robot vacuum cleaner packing a webcam and WiFi so the images the camera captures can be viewed from afar. Robot vacuums now are well-known product …
Simon Sharwood, 16 Dec 2016

Wetware disruption transforms Microsoft Australia as MD bails

Microsoft's Australian tentacle has a new leader after managing director Pip Marlow left to take up the position of chief executive officer for Strategic Innovation at financial services outfit Suncorp. All involved are portraying the move as amicable and a little sad, as Marlow didn't put a foot notably wrong since taking up …
Simon Sharwood, 16 Dec 2016
Tavis Ormandy's Symantec exploit

Dear hackers, Ubuntu's app crash reporter will happily execute your evil code on a victim's box

Users and administrators of Ubuntu Linux desktops are being advised to patch their systems following the disclosure of serious security flaws. Researcher Donncha O'Cearbhaill, who discovered and privately reported the vulnerabilities to the Ubuntu team, said that a successful exploit of the bugs could allow an attacker to …
Shaun Nichols, 15 Dec 2016
Top Gun

Red Hat feels the need – the need for OpenStack speed

Red Hat’s released its dual-support mode OpenStack Platform 10, for rapid cloud adoption. The branded OpenStack box continues Red Hat’s drive to reduce the headache of installing and running the open-source cloud for those of us who are not rocket scientists. But OpenStack Platform 10 also accompanies a shift in build, …
Gavin Clarke, 15 Dec 2016

Kids, look at the Deep Learnings! (We’re just going to slurp your data)

Comment Just weeks after Evernote announced that it is migrating users’ data from its own servers to Google’s servers, the company has now casually dropped a privacy bombshell. In order for some (unspecified) occult AI magic to work in the future, your data will be merged with other data. Oh. And Evernote staff can read all your notes …
Andrew Orlowski, 15 Dec 2016

What’s next after hyperconvergence?

So, you’ve had a crack at hyperconverged architecture. You’ve bought your cloud-in-a-box solution from Nutanix, VMware or whomever and tried it out on a pilot project - something manageable and discrete that didn’t interfere with the rest of your architecture too much. And now that you’ve dipped your toe in the water, you’d like …
Danny Bradbury, 15 Dec 2016
Docker CTO Solomon Hykes

Docker opens up crucial container plumbing code cunningly disguised as 'boring infrastructure'

Docker on Wednesday plans offer the open source community a "boring infrastructure" component that nonetheless should excite those focused on software-based containers and benefit the blissfully unaware masses. The container software maker intends to release the source code of containerd, a core container runtime, so that it …
Thomas Claburn, 14 Dec 2016

Crate.io unboxes clustered SQL CrateDB, decamps to California

After more than a million downloads since its introduction two years ago, CrateDB, an open-source distributed SQL database suited for real-time analysis of machine data, has reached to its 1.0 release. And while the door remains open to technical talent from abroad, Crate.io, which began with offices in Berlin, Germany, and …
Thomas Claburn, 14 Dec 2016
Toronto Google Map image via Shutterstock

OpenStreetView? You are no longer hostage to Google's car-driven vision

Open Source Insider One of the great bright lights of open-source software and user-driven community projects is OpenStreetMap, which offers an open-source mapping platform similar to, but also very philosophically different than, Google Maps. It manages to duplicate most of Google Maps using primarily the contributions of enthusiastic users, too …

Pre-rolled stripped, hardened Copperhead Androids hit Oz, NZ

Antipodeans can now buy secure, if pricey, Nexus 5x and 6P phones running the lauded hardened Android operating system dubbed "Copperhead". The stripped-down and fortified Copperhead operating system is an open source effort led by the developer duo James Donaldson and Daniel Micay. Launched in April last year, Copperhead …
Darren Pauli, 13 Dec 2016

Rift rift assists swift shift at crest of adrift Occulus

Facebook-owned virtual reality company Oculus is splitting in two, with one arm working on its Rift standalone high-end headset and the other focused on its Gear VR cellphone headset. As part of the shake-up, CEO Brendan Iribe is stepping down to head up what sounds like product development of the Rift part of the business, …
Kieren McCarthy, 13 Dec 2016

Meet Hyper.is – the terminal written in HTML, JS and CSS

Zeit, a San Francisco-based software startup, has released the 1.0 version of Hyper, a terminal emulator written in JavaScript, HTML, and CSS. Why? Well, why not? Hyper is based on Electron, an open source framework for creating cross-platform desktop applications using HTML and JS. Developed by GitHub for its Atom text …
Thomas Claburn, 13 Dec 2016

CoreOS debuts 'self-driving' Kubernetes

CoreOS, maker of a minimalist version of Linux and software for containers, has made Tectonic, its Kubernetes management application, capable of automatically updating K8s clusters. It also made Tectonic free for up to 10 nodes. Previously the software had to be acquired through contact with the company's sales department. Now …
Thomas Claburn, 12 Dec 2016

Sights of the Realm: Mobile app DB hooks up with IBM Watson for image, text, face recog

Realm, which makes an object-based database for mobile applications, on Monday plans to introduce a version of its software for businesses with mobile apps that want to integrate application data with other services. Realm Mobile Platform Professional Edition, said chief marketing officer Paul Kopacki in a phone briefing with …
Thomas Claburn, 12 Dec 2016

VMware releases 'not cool, but very useful' integrated containers

VMware has released its long-touted vSphere Integrated Containers (VIC), the company's way of making vSphere a fine place to run containers. Plenty of pundits have suggested that containers stand a good chance of killing virtual machines, citing the former as lighter, faster and better-suited to building the kind of apps that …
Simon Sharwood, 12 Dec 2016
Password

US commission whistles to FIDO: Help end ID-based hacks by 2021

A White House commission on improving cybersecurity has come up with a list of recommendations for US president-elect Donald Trump’s administration – including a target for no big hacks to involve identity-based compromises. The US Commission on Enhancing National Cybersecurity has identified 16 key recommendations on security …
John Leyden, 08 Dec 2016
WDC new products Dec 2016

WDC loads its belt-fed drive cannon, blasts out disks 'n' cards galore

Western Digital Corp wowed analysts with exec spiel and five – or was it six? – product announcements. We have helium gas-filled drives, a 3D TLC NAND microSD card, two SSDs and a promised furiously fast flash platform array overflowing with IOPS. We'll start with the rotating rust and an Ultrastar He12, 12TB helium-filled …
Chris Mellor, 08 Dec 2016
A brick tunnel

Santa says you've been nice kids: OpenVPN to get security audit

Johns Hopkins University crypto professor Dr Matthew Green is to lead a security audit of OpenVPN 2.4. The open source VPN project, published at GitHub, has been compiled for everything from Solaris to Windows, passing various Linux and BSD distributions along the way (including OSX); Windows and Android (and jailbroken iOSs …

Fitbit picks up Pebble, throws Pebble as far as it can into the sea

Smartwatch maker Fitbit has confirmed it has bought competitor Pebble – for an undisclosed sum – but only its software. Pebble products are on the scrapheap. The announcement comes a week after news of the purchase leaked, but many had assumed Fitbit would continue to support existing Pebble watches and slowly merge the two …
Kieren McCarthy, 07 Dec 2016