Microsoft has explained why it's pursuing 'safe systems programming' through efforts like its experimental Rust-inspired Project Verona language and its exploration of the Rust programming language for Windows code written in C++. From a report: The short answer is that Microsoft is trying to eliminate memory-related bugs in software written in languages like C++, according to Microsoft Rust expert Ryan Levick. These bugs cost a lot to fix and make up a large share of Patch Tuesday hassles. Levick has now offered more insights into Microsoft's efforts behind safe systems programming. Systems programming includes coding for platforms like Windows, Xbox, and Azure, as opposed to programming applications that run on them. Key systems programming languages include C++, Google-backed Go, and Mozilla-created Rust, but Rust and Go are 'memory-safe' languages while C++ is not. Other languages are memory safe, such as Swift and Kotlin, but they aren't for systems programming. The thing for Microsoft is that it writes a lot of its platform software in C++ and sometimes still in C. While it works hard to address memory issues, the company says it has "reached a wall". "We can't really do much more than we already have. It's becoming harder and harder and more and more costly to address these issues over time," says Levick, who joined Microsoft via its acquisition of Wanderlist, which has become Microsoft To Do. He gave a rundown of Microsoft's safe systems programming efforts in a session at Build 2020 this week.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Ars Technica: A man from Washington state was arrested in May 2019 and was indicted on several charges related to robbery and assault. The suspect, Joseph Sam, was using an unspecified Motorola smartphone. When he was arrested, he says, one of the officers present hit the power button to bring up the phone's lock screen. The filing does not say that any officer present attempted to unlock the phone or make the suspect do so at the time. In February 2020, the FBI also turned the phone on to take a photograph of the phone's lock screen, which displayed the name "Streezy" on it. Sam's lawyer filed a motion arguing that this evidence should not have been sought without a warrant and should therefore be suppressed. District Judge John Coughenour of the U.S. District Court in Seattle agreed. In his ruling (PDF), the judge determined that the police looking at the phone at the time of the arrest and the FBI looking at it again after the fact are two separate issues. Police are allowed to conduct searches without search warrant under special circumstances, Coughenour wrote, and looking at the phone's lock screen may have been permissible as it "took place either incident to a lawful arrest or as part of the police's efforts to inventory the personal effects" of the person arrested. Coughenour was unable to determine how, specifically, the police acted, and he ordered clarification to see if their search of the phone fell within those boundaries. But where the police actions were unclear, the FBI's were both crystal clear and counter to the defendant's Fourth Amendment rights, Coughenour ruled. "Here, the FBI physically intruded on Mr. Sam's personal effect when the FBI powered on his phone to take a picture of the phone's lock screen." That qualifies as a "search" under the terms of the Fourth Amendment, he found, and since the FBI did not have a warrant for that search, it was unconstitutional. Attorneys for the government argued that Sam should have had no expectation of privacy on his lock screen -- that is, after all, what everyone who isn't you is meant to see when they try to access the phone. Instead of determining whether the lock screen is private or not, though, Coughenour found that it doesn't matter. "When the Government gains evidence by physically intruding on a constitutionally protected area -- as the FBI did here -- it is 'unnecessary to consider' whether the government also violated the defendant's reasonable expectation of privacy," he wrote. Basically, he ruled, the FBI pushing the button on the phone to activate the lock screen qualified as a search, regardless of the lock screen's nature.

Read more of this story at Slashdot.

A security researcher has found an odd issue with how the Nintendo Switch console handles login credentials, potentially making it easier for hackers to figure out peoples' passwords, and raising questions about how Nintendo is storing passwords. From a report: The issue revolves around how users log into the eShop from a Nintendo Switch. As security researcher Runa Sandvik explained it, when logging into the eShop before typing in a password, the 'OK' dialogue box is greyed out. When a user enters their correct password, it lights up and lets the user log in. Expected behaviour, so far. But Sandvik found that the 'OK' box also lights up if the user only enters the first eight characters of their password. The eShop won't let the user actually login -- they still need to enter their complete password -- but it does provide visual feedback to someone trying to guess a password that they're on the right track. Essentially, this could give a hacker a better chance of figuring out your password if they only have to determine what comes after the eighth character, although of course they would still need to get that first section too.

Read more of this story at Slashdot.

The official COVID-19 contact-tracing app for the state of North Dakota, designed to detect whether people have potentially been exposed to the coronavirus, sends location data and a unique user identifier to Foursquare -- and other data to Google and a bug-tracking company -- according to a new report from smartphone privacy company Jumbo Privacy. From a report: The app, called Care19, and produced by a company called ProudCrowd that also makes a location-based social networking app for North Dakota State sports fans, generates a random ID number for each person who uses it. Then, it can "anonymously cache the individual's locations throughout the day," storing information about where people spent at least 10 minutes at a time, according to the state website. If users test positive for the coronavirus, they can provide that information to the North Dakota Department of Health for contact-tracing purposes so that other people who spent time near virus patients can potentially be notified. According to the app's privacy policy, "location data is private to you and is stored securely on ProudCrowd, LLC servers" and won't be shared with third parties "unless you consent or ProudCrowd is compelled under federal regulations."

Read more of this story at Slashdot.

Mike Masnick, writing at TechDirt: Last year, when Spotify purchased a bunch of podcast companies, we worried that it foretold the end of the open world of podcasting. You can get a Spotify account for free, but unlike most podcast apps, you can't get any podcast you want via Spotify. Spotify has to agree to host it, and as a podcast you have to "apply" (indeed, Techdirt's own podcast was initially rejected by Spotify, though has since been let in). That's a "closed, but free" setup. Most podcasts are both open and free -- published as open MP3 files, using an open RSS feed that any regular podcast app can grab. Spotify, so far, hadn't done much to close off the podcasts that it had purchased, but perhaps that's changing. Earlier this week it was announced that one of (if not) the most popular podcasts in the world, Joe Rogan's, would now be moving exclusively to Spotify. News reports have said that Spotify paid over $100 million to get Rogan's podcast on board, while some have put the number closer to $200 million. While it's totally understandable why Rogan would take that deal (who wouldn't?), it does remain a sad day for the concept of an open internet. When we lock up content into silos, we all lose out. The entire concept of podcasts came from the open nature of the internet -- combining MP3s and RSS to make it all work seamlessly and enabling anyone to just start broadcasting. The entire ecosystem came out of that, and putting it into silos and locking it up so that only one platform can control it is unfortunate. I'm sure it will get many people to move to Spotify's podcasting platform, though, and that means those that do offer open podcasting apps (most others) will suffer, because most people aren't going to want to use two different podcast apps. Even if the initial economics make sense, it still should be seen as a sad day for the open internet that enabled podcasting to exist in the first place.

Read more of this story at Slashdot.

A review panel finds no technical reason to delay the first US orbital crew launch in nine years.

Security researchers and hackers have had access to a leaked early version of iOS 14, the iPhone's next operating system, since at least February, Motherboard reported Friday. From the report: That's almost eight months before the expected official release of iOS 14, given that Apple usually publishes the new iOS in September along with the announcement of new phones. Sometimes, screenshots and descriptions of new features leak before the official reveal. This time, however, an entire version of the operating system has leaked and is being widely circulated among hackers and security researchers. Motherboard has not been able to independently verify exactly how it leaked, but five sources in the jailbreaking community familiar with the leak told us they think that someone obtained a development iPhone 11 running a version of iOS 14 dated December 2019, which was made to be used only by Apple developers. According to those sources, someone purchased it from vendors in China for thousands of dollars, and then extracted the iOS 14 internal build and distributed it in the iPhone jailbreaking and hacking community.

Read more of this story at Slashdot.

Microsoft's Solitaire game is turning 30 years old today. Microsoft is celebrating the occasion with a world record attempt of the most games of Microsoft Solitaire completed in one day. From a report: 35 million people still play Solitaire monthly, according to Microsoft, with more than 100 million hands played daily around the world. Microsoft Solitaire was originally included as part of Windows 3.0 back in 1990, designed specifically to teach users how to use a mouse. Grabbing virtual cards and dropping them in place taught the basics of drag-and-drop in Windows, which we still use today in many parts of the operating system. Microsoft Solitaire, originally known as Windows Solitaire, is one of the most played games in the world as it shipped in every version of Windows for more than two decades. That means it has shipped on more than a billion PCs, and it only stopped being a dedicated part of Windows with the release of Windows 8 in 2012.

Read more of this story at Slashdot.

I have a Subaru Forester. Nice car. But every so often the rear door refuses to open. Three beeps. So I search, have trouble finding an answer. So confusing, they talk about buttons my car doesn't seem to have. Anyway it turns out if you hold the touch point for six seconds it'll open the rear door. Software glitch of some kind. From then on it works as normal. Wonder what the logic is. If it has the means to reset itself why doesn't it just reset itself without me having to jump through hoops?

In recent months, Audible, the audiobook service owned by Amazon.com, has been meeting with talent agencies and producers to discuss acquiring potential new podcast projects -- or, in the terminology that Audible prefers, "Audible Originals." From a report: Audible is offering anywhere from a few hundred thousand dollars to a few million dollars per show, according to people familiar with the matter, more than every competitor except Spotify. So far, Audible has already purchased shows from documentary producer John Battsek, as well as from comedians Kevin Hart and Tiffany Haddish. The acquisitions by the dominant audiobook service in the U.S. are part of a new, multimillion-dollar shopping spree, designed to establish Audible as a more enticing destination for podcast fans and to fend off growing audio-storytelling competition, particularly from Spotify. Audible has been funding original series for years now, but after starting with programs from well-known authors, the company is now prioritizing celebrity hosts and shows that can help broaden its audience beyond the avid audiobook listener. Audible is also considering changes to its business model. Under the current system, each month subscribers pay $14.95 and receive credits for one book and two original shows. Now the company is debating selling original shows individually so that customers don't need to be subscribers to listen, said the people, who asked not to be identified while discussing terms of private business deals. Audible has also explored the possibility of rolling out a lower-priced plan that would offer access to originals but not books. None of these plans have been set, and the company declined to comment for this story.

Read more of this story at Slashdot.

We will need a comprehensive strategy to reduce the sort of interactions that can lead to more infections. The Atlantic: COVID-19 has mounted a sustained attack on public life, especially indoor life. Many of the largest super-spreader events took place inside -- at a church in South Korea, an auditorium in France, a conference in Massachusetts. The danger of the indoors is more than anecdotal. A Hong Kong paper awaiting peer review [PDF] found that of 7,324 documented cases in China, only one outbreak occurred outside -- during a conversation among several men in a small village. The risk of infection indoors is almost 19 times higher than in open-air environments, according to another study [PDF] from researchers in Japan. Appropriately, just about every public indoor space in America has been shut down or, in the case of essential businesses such as grocers, adapted for social-distancing restrictions. These closures have been economically ruinous, transforming large swaths of urban and suburban life into a morbid line of darkened windows. Today, states are emerging from the lockdown phase of the crisis and entering a queasy period of reopening. But offices, schools, stores, theaters, restaurants, bars, gyms, fitness centers, and museums will have no semblance of normalcy until we learn how to be safe -- and feel safe -- inside. To open these spaces, we must be guided by science and expertise. Fortunately for us, researchers are discovering the secrets of how COVID-19 spreads with a combination of clever modeling and detective work. Before we review the relevant studies and draw out lessons for the future of the great indoors, a brief word of humility. Our understanding of this disease is dynamic. Today's conventional wisdom could be tomorrow's busted myth. Think of these studies not as gospels, but as clues in a gradually unraveling mystery.

Read more of this story at Slashdot.

How the loss of the Amazon goes beyond deforestation - and what the nine countries that share this natural resource are doing to protect it.

Locking down the UK sooner would have made a big difference to the death rate, a scientific adviser says.

John Gruber, writing at Daring Fireball: Nilay Patel [Editor-in-Chief of news website The Verge] asked this of Siri on his Apple Watch. After too long of a wait, he got the correct answer -- for London Canada. I tried on my iPhone and got the same result. Stupid and slow is heck of a combination. You can argue that giving the time in London Ontario isn't wrong per se, but that's nonsense. If you had a human assistant and asked them "What's the time in London?" and they honestly thought the best way to answer that question was to give you the time for the nearest London, which happened to be in Ontario or Kentucky, you'd fire that assistant. You wouldn't fire them for getting that one answer wrong, you'd fire them because that one wrong answer is emblematic of a serious cognitive deficiency that permeates everything they try to do. You'd never have hired them in the first place, really, because there's no way a person this stupid would get through a job interview. You don't have to be particularly smart or knowledgeable to assume that "London" means "London England", you just have to not be stupid. Worse, I tried on my HomePod and Siri gave me the correct answer: the time in London England. I say this is worse because it exemplifies how inconsistent Siri is. Why in the world would you get a completely different answer to a very simple question based solely on which device answers your question? At least when most computer systems are wrong they're consistently wrong.

Read more of this story at Slashdot.

New version of publicFolder, a Node app that runs on your desktop and keeps an Amazon S3 location in sync with a folder on a local disk. It's available as an NPM package and an Electron app. I use it to publish this.how, and am starting to use it in place of Dropbox. Much lighter weight, and I have all the source.