Internet Explorer Mobile contains four unpatched vulnerabilities (SC Magazine) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:59 pm)

OpenSSL Alternative Chains Certificate Forgery (CVE-2015-1793) MITM Proxy (Reddit) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:59 pm)

Friday Squid Blogging: How a Squid Changes Color (Schneier blog) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:59 pm)

Pluto's Haze Slashdotby Soulskill on nasa at January 1, 1970, 1:00 am (cached at July 24, 2015, 11:32 pm)

Today brings another release of images from NASA's New Horizons probe. This time, it includes an image taken seven hours after closest approach, when the probe was looking back at Pluto. It captured the dwarf planet in silhouette: the body of the planet is in darkness, but the atmosphere is luminous with deflected sunlight. "A preliminary analysis of the image shows two distinct layers of haze -- one about 50 miles (80 kilometers) above the surface and the other at an altitude of about 30 miles (50 kilometers)." Before this picture, scientists didn't expect to see such haze more than 30 kilometers above the surface. Other findings released today include preliminary indications that Pluto's atmospheric pressure has dropped sharply from early observations. This may indicate that the atmosphere is in the process of freezing and falling to Pluto's surface. Finally, new close-up pictures of the surface transmitted back to Earth show direct evidence of nitrogen ice floes reminiscent of glacier movement on Earth. The dwarf planet also seems to be rich in methane ice and carbon dioxide ice.

Read more of this story at Slashdot.

Ask Slashdot: Building an Open Source Community For a Proprietary Software Product? Slashdotby Soulskill on opensource at January 1, 1970, 1:00 am (cached at July 24, 2015, 11:32 pm)

An anonymous reader writes: I run a company that develops scientific computing software. Our core product is a traditional proprietary application — we develop the software and deliver the "binaries" to our customers. We're considering changing our deployment to include all of the source code and giving our customers some additional rights to explore and extend it. The codebase is HTML/JavaScript/Python/SQL, so a lot of the code is available in some form already, albeit minified or byte compiled. Because we are in a scientific domain, most of our customers use Open Source software alongside our product. We also maintain Open Source projects and directly support others. We're strong supporters of Open Source and understand the value of having access to the source code. We also support a free (as in beer) version of the software with a smaller feature set (production and enterprise elements that individual users don't need are removed). We'd like that version to use the same model as well to give users that don't need the full commercial version the ability to extend the software and submit patches back to us for inclusion in future releases. Overall, we'd really like to find a model that allows our core product to work more like an Open Source product while maintaining control over the distribution rights. We'd like to foster a community around the product but still generate revenue to fund it. In our space, the "give the product away but pay for support" model has never really worked. The market is too small and, importantly, most customers understand our value proposition and have no problem with our annual license model. We've looked at traditional dual licensing approaches, but don't think they're really right fit, either. A single license that gives users access to the code but limits the ability to redistribute the code and distribute patches to the "core" is what we'd prefer. My questions for the Slashdot community: Does anyone have direct experience with models like this? Are there existing licenses that we should look at? What companies have succeeded doing this? Who has failed?

Read more of this story at Slashdot.

Why do Russians love Putin so much? AL JAZEERA ENGLISH (AJE)(cached at July 24, 2015, 11:29 pm)

Despite Russia's struggling economy under western sanctions, the popularity of its president has gone up.
Turkey allows anti-ISIL coalition to use its air bases AL JAZEERA ENGLISH (AJE)(cached at July 24, 2015, 11:29 pm)

Ankara approves coalition strikes to be launched from its soil as Turkey begins air attacks on ISIL positions in Syria.
Hackers Take Remote Control of Jeep in Planned Experiment (July 21, 2015) (SANS New SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

Winklevoss twins file paperwork to operate Gemini bitcoin exchange (Yahoo Security) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

Federal appeals court rules no expecation of privacy for preventable 'butt dials' (S SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

US Legislators Want to Increase DHS's Cyber Authority (July 22 23, 2015) (SANS New SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

FBI Probes 'Hundreds' of China Spy Cases (July 23, 2015) (SANS Newsbites) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

How ERP Will Maximize the Inventory Distribution Process (IT Toolbox Blogs) SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

Court says Facebook can't challenge warrants from Manhattan prosecutors (SC Magazine SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)

The 404 Show 1,623: Car hacking, eSports doping, scathing Pixels reviews, Ghostbuste SANS ISC SecNewsFeed(cached at July 24, 2015, 11:29 pm)