The Register Columnists

Thomas Claburn

Contact Mail Follow RSS feed

Microsoft concedes to Mozilla: Redmond will point web API docs at Moz Dev Network

A few years ago, programmer and writer Bernard Meisler argued that coders write bad software because they're bad writers. "Most engineers can't write a single coherent sentence, never mind string together a paragraph," he wrote. So when software engineers write documentation, he reasoned, their incoherent API descriptions …
Thomas Claburn, 18 Oct 2017
code on-screen

Programming bootcamp compiles $375,000 check after triggering New York AG's error handlers

Analysis New York State Attorney General Eric Schneiderman last week agreed to settle charges that New York City-based code bootcamp Flatiron School operated without a license and failed to adequately disclose information about the employment outcomes of graduates. Flatiron School has agreed to pay $375,000 in restitution to eligible …
Thomas Claburn, 18 Oct 2017
angry_woman_mobile_cropped_648

Fancy fone folks filched fast file flinging, filing fumes: Now Essential accused of slurping wireless chip secrets

Android phone maker Essential, which needs stronger sales, also needs a legal defense. Keyssa, having developed a short-range high-speed wireless communication chip, on Monday sued the handset biz in US federal court in San Francisco, California, claiming theft of trade secrets after being snubbed as a vendor. The lawsuit …
Thomas Claburn, 17 Oct 2017

Kubernetes has won. Docker Enterprise Edition will support rival container-wrangling tech

Container darling Docker plans to make peace with its orchestration rival, Kubernetes, at its European conference this week. For the past two years or so, Docker Swarm, Kubernetes, and Mesos have been vying to provide the most compelling orchestration layer for containers. Mesos has been around longer, but the arrival of …
Thomas Claburn, 17 Oct 2017
Arcady http://www.shutterstock.com/gallery-450076p1.html

Google isn't saying Microsoft security sucks but Chrome for Windows has its own antivirus

In its ongoing effort to improve browser security, school Microsoft on security, and retain its search audience, Google is today rolling out several Chrome for Windows fortifications. The search biz has modded Chrome for Windows to detect when extensions switch people's Chrome settings, such as the default search engine, …
Thomas Claburn, 16 Oct 2017
Dice, photo via Shutterstock

An oil industry hacker facing jail, a $20m damages bill, and claims of counter-hacking

Analysis David Kent, of Spring, Texas, USA, was sentenced to prison earlier this month for hacking Rigzone.com, a oil and gas industry website he founded and sold to employment data biz DHI Group, in an effort to build a second site, Oilpro.com, into an acquisition target. Kent is expected to report to prison in Texas for a year and a …
Thomas Claburn, 14 Oct 2017
PWX_image

IT at sea makes data too easy to see: Ships are basically big floating security nightmares

Updated If there's anything worse than container security, it would appear to be container ship security. Ken Munro, a researcher for UK-based Pen Test Partners, has been exploring maritime satellite communication systems used to keep ships connected while at sea. His findings don't inspire much confidence. Munro, in a blog post today …
Thomas Claburn, 13 Oct 2017
Grafeas diagram from Google

Google Grafeas can handle the truth: Web giant and pals emit tool to wrangle containers

Managing software applications in large organizations can be quite complicated, particularly for codebases with lots of dependencies. Add in virtualized machines, containers, clusters, multiple service providers, multiple development teams, deployment pipelines, external partners, policy requirements, and other contextual …
Thomas Claburn, 13 Oct 2017

I picked the wrong week to quit sniffing Gluon: Amazon, Microsoft hope easy AI dev tool sticks

Amazon and Microsoft on Thursday rolled out open-source software called Gluon in the stated hope of simplifying the implementation of machine learning. Gluon provides an interface, in the form of an API, for building neural networks, something that's not all that easy to do for those not steeped in the art. The software, …
Thomas Claburn, 12 Oct 2017
Sonos_PLAY_5_Box

Rejecting Sonos' private data slurp basically bricks bloke's boombox

In August, when wireless speaker maker Sonos decided to update its privacy policy to allow it to gather more data on its customers from their devices, it characterized the consequences of refusing to accept the change as being left out of future feature upgrades. Sonos' policy change, outlined by chief legal officer Craig …
Thomas Claburn, 11 Oct 2017
Chris Wanstrath at GitHub Universe

'We think autonomous coding is a very real thing' – GitHub CEO imagines a future without programmers

At Pier 70 in San Francisco, California, on Wednesday, where ships once were built, code-hosting biz GitHub held forth on building and shipping code, and on the people who do so. Following a manic Looney Tunes-inspired cartoon intro, Chris Wanstrath, cofounder and departing chief exec, opened the keynote presentation by …
Thomas Claburn, 11 Oct 2017

Don't fear the reap... er, automation: Puppet hopes to make IT boring, says that's a good thing

The revolution will not be televised because IT automation is boring. But it will be scripted and play out unseen, because boring is the desired state for computing infrastructure. Businesses just want their systems to work, without drama or excitement. Puppet, a maker of devops software, is trying to broaden the boredom. …
Thomas Claburn, 11 Oct 2017
screenshot from Felix Krause's blog

Apple's iOS password prompts prime punters for phishing: Too easy now for apps to swipe secrets, dev warns

Apple, we have a problem. A bug report filed Monday through Open Radar – which mirrors bug reports developers submit to Apple's private bug tracking system – suggests that password prompts in iOS apps can be misused to steal passwords and other secrets. In a blog post today describing the issue, developer Felix Krause, founder …
Thomas Claburn, 10 Oct 2017
Kotlin screenshot

Kotlin's killin' Java among Android devs

Java on Android is dying, and before long will be dominated by Kotlin, or so says a selective slice of developer data. Realm, which offers a real-time database popular among mobile application makers, has crunched the numbers from its pool or 100,000 or so active developers. The company on Tuesday published its findings, a …
Thomas Claburn, 10 Oct 2017

After selling his site for millions, founder hacked it for a second payday

"Operation Resume Hoard" was going well. Initiated around April 1, 2015, it represented David W. Kent's plan to build the membership of his oil and gas industry networking site Oilpro.com. Court documents indicate that Kent, 41, of Spring, Texas, USA, had a buyer in mind: DHI Group, the employment data biz that in 2010, when …

npm adds two-factor auth, security tokens in wake of JS typo attack

Code registry npm, home to some 550,000 Node.js packages and millions of users, on Wednesday added support for two-factor authentication (2FA) and read-only authentication tokens in an effort to shore up its defenses. Software registries, which store modules required by modern apps, have attracted the attention of malware …

Dumb bug of the week: Apple's macOS reveals your encrypted drive's password in the hint box

Video Apple on Thursday released a security patch for macOS High Sierra 10.13 to address vulnerabilities in Apple File System (APFS) volumes and its Keychain software. Matheus Mariano, a developer with Brazil-based Leet Tech, documented the APFS flaw in a blog post a week ago, and it has since been reproduced by another programmer, …
Keybase.io encrypted git screenshot

Keybase Git gets keys, basically: Secure chat app encrypts your repos

Keybase.io, which began as a cloud key database and has since evolved into a secure messaging and collaboration service, on Wednesday added support for encrypted Git repositories. Git, a version control system widely used for managing source code, doesn't encrypt files stored in Git repositories. It can, however, be used in …

US Senate stamps the gas pedal on law to flood America's streets with self-driving cars

America-wide rules for self-driving cars inched a bit closer on Wednesday when a US Senate transportation committee agreed to bring the AV START Act before the full Senate for consideration. The American Vision for Safer Transportation through Advancement of Revolutionary Technologies (AV START) Act, due before the Senate, is …

Google backs up Firebase with a second realtime NoSQL silo

Google's twin fetish manifested itself in its Firebase platform-as-a-service offering on Tuesday through the introduction of a second realtime NoSQL database. Firebase has been growing in popularity among mobile and web developers thanks in part to the Firebase Realtime Database, which provides a way to synchronize data across …
Georges Saab at JavaOne '17

Oracle VP: 'We want the next decade to be Java first, Java always'

Analysis In the wake of a safe harbor disclaimer insisting Oracle could not be held to anything said during its JavaOne conference keynote on Monday, Georges Saab, veep of software development for the Java platform, talked his way through a Java victory lap. "Over the past 22 years, Java has grown and matured to the point that the …
Oracle OpenWorld/JavaOne

Java EE 8 takes final bow under Oracle's wing: Here's what's new

OpenWorld Java EE 8 arrived last month rather later than expected – but it landed in time for Oracle OpenWorld and JavaOne, which are taking place this week in San Francisco, California. Enterprise-flavored Java hasn't seen an update since June 2013. Linda DeMichiel, Java EE 8 specification lead at Oracle, recounted the long road to …
Chairman Mao exhorting chinese workers to do their utmost for the nation

JS code at the network edge. Oh, you're still here and not running, screaming? Read on

Bit caching biz Cloudflare on Friday teased website publishers with the prospect of being able to run JavaScript at the edge of its content delivery network, a capability that promises performance, security, and reliability improvements. The outfit puts copies of customers' websites and content at various locations around the …
Thomas Claburn, 30 Sep 2017

Java security plagued by crappy docs, complex APIs, bad advice

Relying on search engines to find answers to coding problems has become so common that two years ago it was suggested computer programming be renamed "googling Stack Overflow," in reference to the oft-visited coding community website. But researchers from Virginia Tech contend more care needs to be taken when copying code from …
Thomas Claburn, 29 Sep 2017
image of a conductor

Cluster coordinator Kubernetes claims crisp care clip

Kubernetes, the popular open-source software for managing containerized applications, is scheduled for a feature infusion on Thursday, in accordance with its bump to version 1.8. Backed by the likes of Google, IBM, Microsoft, Oracle, and Red Hat, Kubernetes provides more than half of the Fortune 100 companies with a way to …
Thomas Claburn, 29 Sep 2017

Biting the hand that feeds IT © 1998–2017