At this weekend's Comic-Con, "Excitement has been high over the sneak peeks at Tron: Ares and Predator: Badlands," reports CNET. (Nine Inch Nails has even recorded a new song for Tron: Ares .)

A few highlights from CNET's coverage:

The Coyote vs. Acme movie will hit theaters next year "after being rescued from the pile of scrapped ashes left by Warner Bros. Discovery," with footage screened during a Comic-Con panel.
The first episode of Alien: Earth was screened before its premiere August 12th on FX.
A panel reunited creators of the animated Avatar: The Last Airbender for its 20th anniversary — and discussed the upcoming sequel series Avatar: Seven Havens.
A trailer dropped for the new Star Trek: Starfleet Academy series on Paramount+ ("Star Trek Goes Full Gen Z..." quips one headline.)

To capture some of the ambience, the Guardian has a collection of cosplayer photos. CNET notes there's even booths for Lego and Hot Wheels (which released toys commemorating the 40th anniversary of Back to the Future and the 50th anniversary of Jaws).

But while many buildings are "wrapped" with slick advertisements, SFGate notes the ads are technically illegal, "with penalties for each infraction running up to $1,000 per day," (according to the San Diego Union-Tribune). "Last year's total ended up at $22,500."
The Union-Tribune notes that "The fines are small enough that advertisers clearly think it is worth it, with about 30 buildings in the process of being wrapped Monday morning."

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/07/27/0131241/comic-con-peeks-at-new-alien-and-avatar-series-plus-predator-and-coyote-vs-acme-movies?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

The vulnerability-watching "Zero Day Initiative" was started in 2005 as a division of 3Com, then acquired in 2015 by cybersecurity company Trend Micro, according to Wikipedia.

But the Register reports today that the initiative's head of threat awareness is now concerned about the source for that exploit of Microsoft's Sharepoint servers:
How did the attackers, who include Chinese government spies, data thieves, and ransomware operators, know how to exploit the SharePoint CVEs in such a way that would bypass the security fixes Microsoft released the following day? "A leak happened here somewhere," Dustin Childs, head of threat awareness at Trend Micro's Zero Day Initiative, told The Register. "And now you've got a zero-day exploit in the wild, and worse than that, you've got a zero-day exploit in the wild that bypasses the patch, which came out the next day...."

Patch Tuesday happens the second Tuesday of every month — in July, that was the 8th. But two weeks before then, Microsoft provides early access to some security vendors via the Microsoft Active Protections Program (MAPP). These vendors are required to sign a non-disclosure agreement about the soon-to-be-disclosed bugs, and Microsoft gives them early access to the vulnerability information so that they can provide updated protections to customers faster....

One researcher suggests a leak may not have been the only pathway to exploit. "Soroush Dalili was able to use Google's Gemini to help reproduce the exploit chain, so it's possible the threat actors did their own due diligence, or did something similar to Dalili, working with one of the frontier large language models like Google Gemini, o3 from OpenAI, or Claude Opus, or some other LLM, to help identify routes of exploitation," Tenable Research Special Operations team senior engineer Satnam Narang told The Register. "It's difficult to say what domino had to fall in order for these threat actors to be able to leverage these flaws in the wild," Narang added.

Nonetheless, Microsoft did not release any MAPP guidance for the two most recent vulnerabilities, CVE-2025-53770 and CVE-2025-53771, which are related to the previously disclosed CVE-2025-49704 and CVE-2025-49706. "It could mean that they no longer consider MAPP to be a trusted resource, so they're not providing any information whatsoever," Childs speculated. [He adds later that "If I thought a leak came from this channel, I would not be telling that channel anything."]

"It also could mean that they're scrambling so much to work on the fixes they don't have time to notify their partners of these other details.

[ Read more of this story ]( https://it.slashdot.org/story/25/07/27/0337218/did-a-vendors-leak-help-attackers-exploit-microsofts-sharepoint-servers?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"A Chinese mega-constellation of communications satellites is facing serious delays," reports the South China Morning Post, "that could jeopardise its ambitions to compete with SpaceX's Starlink for valuable orbital resources."

Only 90 satellites have been launched into low Earth orbit for the Qianfan broadband network — also known as the Thousand Sails Constellation or G60 Starlink — well short of the project's goal of 648 by the end of this year... Shanghai Yuanxin Satellite Technology, the company leading the project, plans to deploy more than 15,000 satellites by 2030 to deliver direct-to-phone internet services worldwide. To stay on track, Yuanxin — which is backed by the Shanghai municipal government — would have to launch more than 30 satellites a month to achieve its milestones of 648 by the end of 2025 for regional coverage and 1,296 two years later for global connectivity.
The New York Times reports that "the other megaconstellation, Guowang, is even farther behind. Despite plans to launch about 13,000 satellites within the next decade, it has 34 in orbit."
A constellation has to launch half of its satellites within five years of successfully applying for its frequencies, and complete the full deployment within seven years, according to rules set by the International Telecommunication Union, a United Nations agency that allocates frequencies. The Chinese megaconstellations are behind on these goals. Companies that fail to hit their targets could be required to reduce the size of their megaconstellations.
Meanwhile SpaceX "has about 8,000 Starlink satellites in orbit and is expanding its lead every month," the Times writes, citing data from the U.S. Space Force and the nonprofit space-data group CelesTrak. (The Times has even created an animation showing Starlink's 8,000 satellites in orbit.)

Researchers for the People's Liberation Army predict that the network will become "deeply embedded in the U.S. military combat system." They envision a time when Starlink satellites connect U.S. military bases and serve as an early missile-warning and interception network....

One of the major reasons for China's delay is the lack of a reliable, reusable launcher. Chinese companies still launch satellites using single-use rockets. After the satellites are deployed, rocket parts tumble back to Earth or become space debris... Six years after [SpaceX's] Falcon 9 began launching Starlink satellites, Chinese firms still have no answer to it... The government has tested nearly 20 rocket launchers in the "Long March" series.

[ Read more of this story ]( https://science.slashdot.org/story/25/07/27/0233215/serious-delays-hit-satellite-mega-constellations-of-chinas-starlink-rivals?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

NBC News reports:

Customers watched in disbelief as Florida police arrested a Chuck E. Cheese employee — in costume portraying the pizza-hawking rodent — and accused him of using a stolen credit card, officials said Thursday.... "I grabbed his right arm while giving the verbal instruction, 'Chuck E, come with me Chuck E,'" Tallahassee police officer Jarrett Cruz wrote in the report.

After a child's birthday party in June at Chuck E. Cheese, the child's mother had "spotted fraudulent charges at stores she doesn't frequent," according to the article — and she recognized a Chuck E. Cheese employee when reviewing a store's security footage. But when a police officer interviewed the employee — and then briefly left the restaurant — they returned to discover that their suspect "was gone but a Chuck E. Cheese mascot was now in the restaurant."
Police officer Cruz "told the mascot not to make a scene before the officer and his partner 'exerted minor physical effort' to handcuff him, police said... "
The officers read the mouse his Miranda warnings before he insisted he never stole anyone's credit, police said.... Officers found the victim's Visa card in [the costume-wearing employee's] left pocket and a receipt from a smoke shop where one of the fraudulent purchases was made, police said.
He was booked on charges of "suspicion of larceny, possession of another person's ID without consent and fraudulent use of a credit card two or more times," according to the article. He was released after posting a $6,500 bond.

Thanks to long-time Slashdot reader destinyland for sharing the news.

[ Read more of this story ]( https://idle.slashdot.org/story/25/07/27/0532227/chuck-e-cheese-handcuffed-and-arrested-in-florida-charged-with-using-a-stolen-credit-card?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

In 1995's online world, AOL existed mostly beside the internet as a "walled, manicured garden," remembers Fast Company.

Then along came AOHell "the first of what would become thousands of programs designed by young hackers to turn the system upside down" — built by a high school dropout calling himself "Da Chronic" who says he used "a computer that I couldn't even afford" using "a pirated copy of Microsoft Visual Basic."
[D]istributed throughout the teen chatrooms, the program combined a pile of tricks and pranks into a slick little control panel that sat above AOL's windows and gave even newbies an arsenal of teenage superpowers. There was a punter to kick people out of chatrooms, scrollers to flood chats with ASCII art, a chat impersonator, an email and instant message bomber, a mass mailer for sharing warez (and later mp3s), and even an "Artificial Intelligence Bot" [which performed automated if-then responses]. Crucially, AOHell could also help users gain "free" access to AOL. The program came with a program for generating fake credit card numbers (which could fool AOL's sign up process), and, by January 1995, a feature for stealing other users' passwords or credit cards. With messages masquerading as alerts from AOL customer service reps, the tool could convince unsuspecting users to hand over their secrets...

Of course, Da Chronic — actually a 17-year-old high school dropout from North Carolina named Koceilah Rekouche — had other reasons, too. Rekouche wanted to hack AOL because he loved being online with his friends, who were a refuge from a difficult life at home, and he couldn't afford the hourly fee. Plus, it was a thrill to cause havoc and break AOL's weak systems and use them exactly how they weren't meant to be, and he didn't want to keep that to himself. Other hackers "hated the fact that I was distributing this thing, putting it into the team chat room, and bringing in all these noobs and lamers and destroying the community," Rekouche told me recently by phone...

Rekouche also couldn't have imagined what else his program would mean: a free, freewheeling creative outlet for thousands of lonely, disaffected kids like him, and an inspiration for a generation of programmers and technologists. By the time he left AOL in late 1995, his program had spawned a whole cottage industry of teenage script kiddies and hackers, and fueled a subculture where legions of young programmers and artists got their start breaking and making things, using pirated software that otherwise would have been out of reach... In 2014, [AOL CEO Steve] Case himself acknowledged on Reddit that "the hacking of AOL was a real challenge for us," but that "some of the hackers have gone on to do more productive things."
When he first met Mark Zuckerberg, he said, the Facebook founder confessed to Case that "he learned how to program by hacking [AOL]."
"I can't imagine somebody doing that on Facebook today," Da Chronic says in a new interview with Fast Company. "They'll kick you off if you create a Google extension that helps you in the slightest bit on Facebook, or an extension that keeps your privacy or does a little cool thing here and there. That's totally not allowed."

AOHell's creators had called their password-stealing techniques "phishing" — and the name stuck. (AOL was working with federal law enforcement to find him, according to a leaked internal email, but "I didn't even see that until years later.") Enrolled in college, he decided to write a technical academic paper about his program. "I do believe it caught the attention of Homeland Security, but I think they realized pretty quickly that I was not a threat."

He's got an interesting perspective today, noting with today's AI tool's it's theoretically possible to "craft dynamic phishing emails... when I see these AI coding tools I think, this might be like today's Visual Basic. They take out a lot of the grunt work."

What's the moral of the story? "I didn't have any qualifications or anything like that," Da Chronic says. "So you don't know who your adversary is going to be, who's going to understand psychology in some nuanced way, who's going to understand how to put some technological pieces together, using AI, and build some really wild shit."

[ Read more of this story ]( https://idle.slashdot.org/story/25/07/27/0015211/creator-of-1995-phishing-tool-aohell-on-piracy-script-kiddies-and-what-he-thinks-of-ai?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Liquefied CO2 will be transported by ship to "the world's first carbon shipping port," reports the Washington Post — an island in the North Sea where it will be "buried in a layer of spongy rock a mile and a half beneath the seabed."

Norway's government is covering 80% of the $1 billion first phase, with another $714 million from three fossil fuel companies toward an ongoing expansion (with an additional $150 million E.U. subsidy). As Europe's top oil and gas producer, Norway is using its fossil fuel income to see if they can make "carbon dumping" work.

The world's first carbon shipment arrived this summer, carrying 7,500 metric tons of liquefied CO2 from a Norwegian cement factory that otherwise would have gone into the atmosphere... If all goes as planned, the project's backers — Shell, Equinor and TotalEnergies, along with Norway — say their facility could pump 5 million metric tons of carbon dioxide underground each year, or about a tenth of Norway's annual emissions...

[At the Heidelberg Materials cement factory in Brevik, Norway], when hot CO2-laden air comes rushing out of the cement kilns, the plant uses seawater from the neighboring fjord to cool it down. The cool air goes into a chamber where it gets sprayed with amine, a chemical that latches onto CO2 at low temperatures. The amine mist settles to the bottom, dragging carbon dioxide down with it. The rest of the air floats out of the smokestack with about 85 percent less CO2 in it, according to project manager Anders Pettersen. Later, Heidelberg Materials uses waste heat from the kilns to break the chemical bonds, so that the amine releases the carbon dioxide. The pure CO2 then goes into a compressor that resembles a giant steel heart, where it gets denser and colder until it finally becomes liquid. That liquid CO2 remains in storage tanks until a ship comes to carry it away. At best, operators expect this system to capture half the plant's CO2 emissions: 400,000 metric tons per year, or the equivalent of about 93,000 cars on the road...
[T]hree other companies are lined up to follow: Ørsted, which will send CO2 from two bioenergy plants in Denmark; Yara, which will send carbon from a Dutch fertilizer factory; and Stockholm Exergi, which will capture carbon from a Swedish bioenergy plant that burns wood waste. All of these projects have gotten significant subsidies from national governments and the European Union — essentially de-risking the experiment for the companies. Experts say the costs and headaches of installing and running carbon-capture equipment may start to make more financial sense as European carbon rules get stricter and the cost of emitting a ton of carbon dioxide goes up. Still, they say, it's hard to imagine many companies deciding to invest in carbon capture without serious subsidies...

The first shipments are being transported by Northern Pioneer, the world's biggest carbon dioxide tanker ship, built specifically for this project. The 430-foot ship can hold 7,500 metric tons of CO2 in tanks below deck. Those tanks keep it in a liquid state by cooling it to minus-15 degrees Fahrenheit and squeezing it with the same pressure the outside of a submarine would feel 500 feet below the waves. While that may sound extreme, consider that the liquid natural gas the ship uses for fuel has to be stored at minus-260 degrees. "CO2 isn't difficult to make it into a liquid," said Sally Benson, professor of energy science and engineering at Stanford University. Northern Pioneer is designed to emit about a third less carbon dioxide than a regular ship — key for a project that aims to eliminate carbon emissions. The ship burns natural gas, which emits less CO2 than marine diesel produces (though gas extraction is associated with methane leaks). The vessel uses a rotor sail to capture wind power. And it blows a constant stream of air bubbles to reduce friction as the hull cuts through the water, allowing it to burn less fuel. For every 100 tons of CO2 that Northern Lights pumps underground, it expects to emit three tons of CO2 into the atmosphere, mainly by burning fuel for shipping.
Eventually the carbon flows into a pipeline "that plunges through the North Sea and into the rocky layers below it — an engineering feat that's a bit like drilling for oil in reverse..." according to the article.
"Over the centuries, it should chemically react with the rock, eventually being locked away in minerals."

[ Read more of this story ]( https://hardware.slashdot.org/story/25/07/26/0358240/to-fight-climate-change-norway-wants-to-become-europes-carbon-dump?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Marvel's Fantastic Four: First Steps "raked in about $57 million at the domestic box office for its opening day, according to multiple outlets," reports Forbes.

That haul makes it "the year's second-largest opening day so far and a win for Marvel and Disney about a year after they announced a reduction in film and TV show quantity to focus on quality."
The roughly $57 million "Fantastic Four: First Steps" generated at the domestic box office Friday fell narrowly short of the opening day for "A Minecraft Movie" ($57.11 million) and just topped opening day for DC Comics rival "Superman" ($56.1 million), according to Variety. The film has netted about $106 million globally after securing $49.2 million overseas, setting itself up for an opening weekend of around $125 million, the same figure achieved by "Superman" earlier this month.

Fantastic Four: First Steps is receiving praise from critics and fans alike, boasting an 88% on Rotten Tomatoes and a 7.6/10 on IMDb... With its opening weekend alone, "Fantastic Four: First Steps" out-earned the entire domestic run of "Fantastic Four" (2015), an adaptation of the heroes that flopped hard at the domestic box office ($56.1 million) and received poor ratings...

Marvel's next movie is slated to release almost a full year from now, with Spider-Man: Brand New Day hitting theaters next summer before Avengers: Doomsday in December.

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/07/26/2225254/fantastic-four-tops-superman-opening-second-largest-of-the-year?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

From the Adafruit blog:

Greg Technology (aka Greg Sadetsky) on YouTube demonstrates a version of Chocolate Doom where opponent characters can be cut, copied, and pasted at will to add a bit more fun to the game.

Obviously this means you can paste in your attackers multiple times. ("They're kind of not really happy if you do that..." Greg says at one point in the video. "But then, you can also cut them... like, vaccuum them out.")
In response to a comment on YouTube, Sadetsky explained that "It stores a reference to the kind of monster (every monster has a unique type number).

"So yeah, you could paste them across games!"

[ Read more of this story ]( https://games.slashdot.org/story/25/07/27/1640244/its-doom-but-you-can-cut-copy-and-paste-opponents?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

"Search engines still require users to use critical thinking to interpret and contextualize the results," argues Aaron French, an assistant professor of information systems. But with the rise of generative AI tools like ChatGPT, "internet users aren't just outsourcing memory — they may be outsourcing thinking itself."

Generative AI tools don't just retrieve information; they can create, analyze and summarize it. This represents a fundamental shift: Arguably, generative AI is the first technology that could replace human thinking and creativity.

That raises a critical question: Is ChatGPT making us stupid...?

[A]s many people increasingly delegate cognitive tasks to AI, I think it's worth considering what exactly we're gaining and what we are at risk of losing.
"For many, it's replacing the need to sift through sources, compare viewpoints and wrestle with ambiguity," the article argues, positing that this "may be weakening their ability to think critically, solve complex problems and engage deeply with information."

But in a section titled "AI and the Dunning-Kruger effect," he suggests "what matters isn't whether a person uses generative AI, but how. If used uncritically, ChatGPT can lead to intellectual complacency." His larger point seems to be that when used as an aid, AI "can become a powerful tool for stimulating curiosity, generating ideas, clarifying complex topics and provoking intellectual dialogue.... to augment human intelligence, not replace it. That means using ChatGPT to support inquiry, not to shortcut it. It means treating AI responses as the beginning of thought, not the end."

He believes mass adoption of generative AI has "left internet users at a crossroads. One path leads to intellectual decline: a world where we let AI do the thinking for us. The other offers an opportunity: to expand our brainpower by working in tandem with AI, leveraging its power to enhance our own." So his article ends with a question — how will we use AI to make us smarter?

Share your own thoughts and experiences in the comments. Do you think your AI use is making you smarter?

[ Read more of this story ]( https://slashdot.org/story/25/07/27/1818251/is-chatgpt-making-you-stupid?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Proton VPN reported a 1,400 percent hourly increase in signups over its baseline Friday — the day the UK's age verification law went into effect. For UK users, "apps with explicit content must now verify visitors' ages via methods such as facial recognition and banking info," notes Mashable:

Proton VPN previously documented a 1,000 percent surge in new subscribers in June after Pornhub left France, its second-biggest market, amid the enactment of an age verification law there... A Proton VPN spokesperson told Mashable that it saw an increase in new subscribers right away at midnight Friday, then again at 9 a.m. BST. The company anticipates further surges over the weekend, they added. "This clearly shows that adults are concerned about the impact universal age verification laws will have on their privacy," the spokesperson said... Search interest for the term "Proton VPN" also saw a seven-day spike in the UK around 2 a.m. BST Friday, according to a Google Trends chart.

The Financial Times notes that VPN apps "made up half of the top 10 most popular free apps on the UK's App Store for iOS this weekend, according to Apple's rankings."

Proton VPN leapfrogged ChatGPT to become the top free app in the UK, according to Apple's daily App Store charts, with similar services from developers Super Unlimited and Nord Security also rising over the weekend... Data from Google Trends also shows a significant increase in search queries for VPNs in the UK this weekend, with up to 10 times more people looking for VPNs at peak times...

"This is what happens when people who haven't got a clue about technology pass legislation," Anthony Rose, a UK-based tech entrepreneur who helped to create BBC iPlayer, the corporation's streaming service, said in a social media post. Rose said it took "less than five minutes to install a VPN" and that British people had become familiar with using them to access the iPlayer outside the UK. "That's the beauty of VPNs. You can be anywhere you like, and anytime a government comes up with stupid legislation like this, you just turn on your VPN and outwit them," he added...

Online platforms found in breach of the new UK rules face penalties of up to £18mn or 10 percent of global turnover, whichever is greater... However, opposition to the new rules has grown in recent days. A petition submitted through the UK parliament website demanding that the Online Safety Act be repealed has attracted more than 270,000 signatures, with the vast majority submitted in the past week. Ministers must respond to a petition, and parliament has to consider its topic for a debate, if signatures surpass 100,000.

X, Reddit and TikTok have also "introduced new 'age assurance' systems and controls for UK users," according to the article. But Mashable summarizes the situation succinctly.

"Initial research shows that VPNs make age verification laws in the U.S. and abroad tricky to enforce in practice."

[ Read more of this story ]( https://news.slashdot.org/story/25/07/27/1957211/vpn-downloads-surge-in-uk-as-new-age-verification-rules-take-effect?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Компания Oracle сформировала новую ветку СУБД MySQL 9.4.0. Сборки MySQL Community Server 9.4.0 подготовлены для всех основных дистрибутивов Linux, FreeBSD, macOS и Windows. В соответствии с внедрённой в 2023 году моделью формирования релизов, MySQL 9.4 отнесён к веткам "Innovation". Innovation-ветки рекомендованы для тех, кто хочет раньше получать доступ к новой функциональности, публикуются каждые 3 месяца и поддерживаются только до публикации следующего значительного релиза (например, после появления ветки 9.4 прекращена поддержка ветки 9.3). Осенью планируют сформировать LTS-релиз 9.5, рекомендованный для внедрений, которым необходима предсказуемость и длительное сохранение неизменного поведения. Следом за LTS-веткой будет сформирована новая Innovation-ветка - MySQL 10.0.

https://www.opennet.ru/opennews/art.shtml?num=63616

Майкл Катандзаро (Michael Catanzaro), один из разработчиков web-браузера Epiphany (GNOME Web), принимающий участие в проектах GNOME и Fedora, предложил пересмотреть использование каталога FlatHub в Fedora Linux. В атомарно обновляемой редакции Fedora Workstation предложено задействовать по умолчанию каталог FlatHub для flatpak-пакетов, устанавливаемых пользователями, а собственный репозиторий flatpak-пакетов ограничить только применением для предустанавливаемых пакетов.

https://www.opennet.ru/opennews/art.shtml?num=63617

California researchers planned a multimillion-dollar test of salt water-spraying equipment that could one day be used to dim the sun's rays — over a 3,900-square mile are off the west coasts of North America, Chile or south-central Africa. E&E News calls it part of a "secretive" initiative backed by "wealthy philanthropists with ties to Wall Street and Silicon Valley" — and a piece of the "vast scope of research aimed at finding ways to counter the Earth's warming, work that has often occurred outside public view."

"At such scales, meaningful changes in clouds will be readily detectable from space," said a 2023 research plan from the [University of Washington's] Marine Cloud Brightening Program. The massive experiment would have been contingent upon the successful completion of the thwarted pilot test on the carrier deck in Alameda, according to the plan.... Before the setback in Alameda, the team had received some federal funding and hoped to gain access to government ships and planes, the documents show.

The university and its partners — a solar geoengineering research advocacy group called SilverLining and the scientific nonprofit SRI International — didn't respond to detailed questions about the status of the larger cloud experiment. But SilverLining's executive director, Kelly Wanser, said in an email that the Marine Cloud Brightening Program aimed to "fill gaps in the information" needed to determine if the technologies are safe and effective.âIn the initial experiment, the researchers appeared to have disregarded past lessons about building community support for studies related to altering the climate, and instead kept their plans from the public and lawmakers until the testing was underway, some solar geoengineering experts told E&E News. The experts also expressed surprise at the size of the planned second experiment....

The program does not "recommend, support or develop plans for the use of marine cloud brightening to alter weather or climate," Sarah Doherty, an atmospheric and climate science professor at the university who leads the program, said in a statement to E&E News. She emphasized that the program remains focused on researching the technology, not deploying it. There are no "plans for conducting large-scale studies that would alter weather or climate," she added.

"More than 575 scientists have called for a ban on geoengineering development," according to the article, "because it 'cannot be governed globally in a fair, inclusive, and effective manner.'" But "Some scientists believe that the perils of climate change are too dire to not pursue the technology, which they say can be safely tested in well-designed experiments... "
"If we really were serious about the idea that to do any controversial topic needs some kind of large-scale consensus before we can research the topic, I think that means we don't research topics," David Keith, a geophysical sciences professor at the University of Chicago, said at a think tank discussion last month... "The studies that the program is pursuing are scientifically sound and would be unlikely to alter weather patterns — even for the Puerto Rico-sized test, said Daniele Visioni, a professor of atmospheric sciences at Cornell University. Nearly 30 percent of the planet is already covered by clouds, he noted.
Thanks to Slashdot reader fjo3 for sharing the news.

[ Read more of this story ]( https://news.slashdot.org/story/25/07/27/2146205/researchers-quietly-planned-a-test-to-dim-sunlight-over-3900-square-miles?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader hackingbear writes: China's Huawei Technologies showed off an AI computing system on Saturday that can rival Nvidia's most advanced offering, even though the company faces U.S. export restrictions. The CloudMatrix 384 system made its first public debut at the World Artificial Intelligence Conference (WAIC), a three-day event in Shanghai where companies showcase their latest AI innovations, drawing a large crowd to the company's booth. The CloudMatrix 384 incorporates 384 of Huawei's latest 910C chips, optically connected through an all-to-all topology, and outperforms Nvidia's GB200 NVL72 on some metrics, which uses 72 B200 chips, according to SemiAnalysis. A full CloudMatrix system can now deliver 300 PFLOPs of dense BF16 compute, almost double that of the GB200 NVL72. With more than 3.6x aggregate memory capacity and 2.1x more memory bandwidth, Huawei and China "now have AI system capabilities that can beat Nvidia's," according to a report by SemiAnalysis.

The trade-off is that it takes 4.1x the power of a GB200 NVL72, with 2.5x worse power per FLOP, 1.9x worse power per TB/s memory bandwidth, and 1.2x worse power per TB HBM memory capacity, but SemiAnalysis noted that China has no power constraints only chip constraints. Nvidia had announced DGX H100 NVL256 "Ranger" Platform [with 256 GPUs], SemiAnalysis writes, but "decided to not bring it to production due to it being prohibitively expensive, power hungry, and unreliable due to all the optical transceivers required and the two tiers of network.
The CloudMatrix Pod requires an incredible 6,912 400G LPO transceivers for networking, the vast majority of which are for the scaleup network."

Also at this event, Chinese e-commerce giant Alibaba released a new flagship open-source reasoning model Qwen3-235B-A22B-Thinking-2507 which has "already topped key industry benchmarks, outperforming powerful proprietary systems from rivals like Google and OpenAI," according to industry reports. On the AIME25 benchmark, a test designed to evaluate sophisticated, multi-step problem-solving skills, Qwen3-Thinking-2507 achieved a remarkable score of 92.3. This places it ahead of some of the most powerful proprietary models, notably surpassing Google's Gemini-2.5 Pro, while Qwen3-Thinking secured a top score of 74.1 at LiveCodeBench, comfortably ahead of both Gemini-2.5 Pro and OpenAI's o4-mini, demonstrating its practical utility for developers and engineering teams.

[ Read more of this story ]( https://hardware.slashdot.org/story/25/07/27/2248257/huawei-shows-off-384-chip-ai-computing-system-that-rival-nvidias-top-product?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Энрико Вайгельт (Enrico Weigelt), руководитель проекта XLibre, после обсуждения с сообществом подготовил pull-запрос, интегрирующий в master-ветку X-сервера основные драйверы для X11. Причиной указывается рассинхронизация X-сервера и драйверов из-за меняющегося ABI, с которым взаимодействуют драйверы, а также желание сразу предоставлять все необходимые драйверы вместе с X-сервером без необходимости ручного поиска совместимых версий.

https://www.opennet.ru/opennews/art.shtml?num=63618

Представлен релиз HTTP-сервера Apache 2.4.65, в котором исправлена критическая ошибка в mod_rewrite из-за которой условия, заданные через выражение "RewriteCond", всегда возвращали значение "true", т.е. правила всегда срабатывали, независимо от проверяемых данных. Выражение "RewriteCond" является ключевым в mod_rewrite и применяется для проверки условий в большинстве ситуаций.

https://www.opennet.ru/opennews/art.shtml?num=63621

Satirical singer-songwriter Tom Lehrer died Saturday at age 97. The Associated Press notes Lehrer had long ago "largely abandoned his music career to return to teaching math at Harvard and other universities."

Lehrer had remained on the math faculty of the University of California at Santa Cruz well into his late 70s. In 2020, he even turned away from his own copyright, granting the public permission to use his lyrics in any format without any fee in return.

A Harvard prodigy (he had earned a math degree from the institution at age 18), Lehrer soon turned his very sharp mind to old traditions and current events... He'd gotten into performing accidentally when he began to compose songs in the early 1950s to amuse his friends. Soon he was performing them at coffeehouses around Cambridge, Massachusetts, while he remained at Harvard to teach and obtain a master's degree in math. [Lehrer also "spent several years unsuccessfully pursuing a doctorate..."]

He cut his first record in 1953, "Songs by Tom Lehrer"... After a two-year stint in the Army, Lehrer began to perform concerts of his material in venues around the world. In 1959, he released another LP called "More of Tom Lehrer" and a live recording called "An Evening Wasted with Tom Lehrer," nominated for a Grammy for best comedy performance (musical) in 1960. But around the same time, he largely quit touring and returned to teaching math, though he did some writing and performing on the side. Lehrer said he was never comfortable appearing in public...

He did produce a political satire song each week for the 1964 television show "That Was the Week That Was," a groundbreaking topical comedy show that anticipated "Saturday Night Live" a decade later. He released the songs the following year in an album titled "That Was the Year That Was"... [Lehrer's body of work "was actually quite small," the article notes, "amounting to about three dozen songs."] He also wrote songs for the 1970s educational children's show "The Electric Company." He told AP in 2000 that hearing from people who had benefited from them gave him far more satisfaction than praise for any of his satirical works...

He began to teach part-time at Santa Cruz in the 1970s, mainly to escape the harsh New England winters. From time to time, he acknowledged, a student would enroll in one of his classes based on knowledge of his songs. "But it's a real math class," he said at the time. "I don't do any funny theorems. So those people go away pretty quickly."

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/07/27/2347205/tom-lehrer-satirical-songwriter-and-mathematician-dies-at-age-97?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Long-time Slashdot reader drinkypoo writes: GloriousEggroll has released GE-Proton 10.10, a heavily breathed-upon version of Valve's version of Wine used with Steam, and the big news is that it supports NTSYNC by default on supported platforms. That means amd64 systems whose kernel is built with the CONFIG_NTSYNC option, available in the 6.14 series or later or for 6.12 or 6.13 as a patch.

NTSYNC is support for certain fine-grained Windows NT scheduling primitives for Linux, the use of which improves performance and compatibility for Windows programs. Maximum performance gains range from modest to dramatic, with most programs falling towards the lower end of the spectrum, but it can substantially improve minimum frame rates for some titles.

You can observe that ntsync is being used from the console output, e.g. using "tail -f ~/.steam/steam/logs/console-linux.txt". You will see messages like "wineserver: NTSync up and running!"

[ Read more of this story ]( https://games.slashdot.org/story/25/07/28/0057226/easy-ntsync-arrives-for-steam-users-with-ge-proton-1010?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликован релиз дистрибутива для создания межсетевых экранов OPNsense 25.7, который в 2015 году отделился от проекта pfSense с целью разработки полностью открытого дистрибутива, который мог бы обладать функциональностью на уровне коммерческих решений для развёртывания межсетевых экранов и сетевых шлюзов. В отличие от pfSense проект позиционируется как неподконтрольный одной компании, развиваемый при непосредственном участии сообщества и обладающий полностью прозрачным процессом разработки, а также предоставляющий возможность использования любых своих наработок в сторонних продуктах, в том числе коммерческих. Исходные тексты компонентов дистрибутива, а также используемые для сборки инструменты, распространяются под лицензией BSD. Сборки подготовлены в форме LiveCD и системного образа для записи на Flash-накопители (490 МБ).

https://www.opennet.ru/opennews/art.shtml?num=63622

Представлен первый экспериментальный выпуск проекта Wayback 0.1, позволяющего запускать десктоп-окружения, завязанные на протокол X11, используя компоненты на базе Wayland. Wayback представляет собой урезанный композитный сервер Wayland, поддерживающий только возможности, необходимые для запуска полноэкранного сеанса X11 при помощи Xwayland (DDX-компонент (Device-Dependent X) для организации выполнения X11-приложений в окружениях на базе Wayland). Код проекта написан на языке Си и распространяется под лицензией MIT.

https://www.opennet.ru/opennews/art.shtml?num=63623

Star Wars creator George Lucas made his first Comic-Con appearance ever on Sunday. The Hollywood Reporter describes the scene:

Thousands waited hours just to get inside, chanted "Lu-cas, Lu-cas!" while they waited, and then gave a wild standing ovation as the filmmaker took to the stage, introduced by rapper-actress Queen Latifah, and sat down next to filmmaker Guillermo del Toro and Star Wars production designer Doug Chiang. If the 6,500-strong crowd was disappointed he didn't talk a whiff about Star Wars or Indiana Jones, it wasn't shown, as cries of "I love you, George!" and waving lightsabers punctuated the air several times.

Lucas even received a standing ovation when he left the presentation, which was devoted entirely to the Lucas Museum of Narrative Art. He, along with museum board member and fellow art collector del Toro and Chiang, were there to not only give a first look at the museum but also make a case for the importance and validity of narrative art, which includes comic book art, as a vital form of expression... A video presentation showed interior looks at the museum — there are no right angles anywhere, Latifah underscored — as well as images that will be in the collection.

A cover of DC comic Mystery in Space, featuring the first appearance of Adam Strange; the first ever Flash Gordon comic strip; a cover of 1950s EC comic Tales from the Crypt; strips of Peanuts and Garfield; art ranging from Brian Bolland and Hellboy creator Mike Mignola to underground cartoonist Robert Crumb, Windsor McKay and Moebius; art of Astro Boy and Scrooge McDuck. But there were also images of art by Norman Rockwell, N.C. Wyeth and Frieda Kahlo. Also in the museum will be concept and storyboard art from Star Wars and Raiders of the Lost Ark by Ralph McQuarrie and Jim Steranko, as well as the props of starships and speeders from various Star Wars movies.

Chiang explained that comic art in particular had long been discounted. "It's not taken seriously," he said, and when he was younger was told, "You will outgrow it one day.... I'm so glad I didn't," he said, before driving home the point that one of the strengths of narrative art is that it's driven by story. "Story comes first. Art comes second...."
The museum, which has had its opening pushed back several times, is slated to open in 2026.

More Comic-Con highlights:

Pennywise, the scary clown, returns in the upcoming HBO series "IT: Welcome to Derry"
Comic-Con also saw a trailer for the new rock mockumentary Spinal Tap II: The End Continues. (Bassist Derek Smalls is now apparently into cryptocurrency...)
Breaking Bad creator Vince Gilligan has a new series called Pluribus coming to AppleTV+, a nine-episode sci-fi drama starring Rhea Seehorn from Better Call Saul. (Watch its bizarre trailer here.)

[ Read more of this story ]( https://entertainment.slashdot.org/story/25/07/28/0047248/george-lucas-makes-first-comic-con-appearance-to-discuss-his-upcoming-museum-of-narrative-art?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

Опубликован выпуск кроссплатформенного свободного редактора кода CudaText 1.226.0, написанного с использованием Free Pascal и Lazarus. Редактор поддерживает расширения на Python, и имеет ряд преимуществ над Sublime Text. Присутствуют некоторые возможности интегрированной среды разработки, реализованные в виде плагинов. Для программистов подготовлено более 300 синтаксических лексеров. Код распространяется под лицензией MPL 2.0. Сборки доступны для платформ Linux, Windows, macOS, FreeBSD, OpenBSD, NetBSD, DragonflyBSD, Solaris и Haiku.

https://www.opennet.ru/opennews/art.shtml?num=63625

В ветку Android Canary, пришедшую на смену Android Developer Preview и применяемую для тестирования функциональности для будущих выпусков Android, добавлена возможность запуска графических приложений, собранных для Linux. Запуск осуществляется через приложение Linux Terminal, позволяющее запустить в окружении Android виртуальную машину с Debian GNU/Linux, в которой можно выполнять обычные Linux-приложения.

https://www.opennet.ru/opennews/art.shtml?num=63626

Автор WiX, открытого инструментария для создания установочных пакетов для Windows, развивает инициативу Maintenance Fee для решения проблемы с финансированием сопровождающих открытые проекты. Инициатива Maintenance Fee позволяет через взимание небольшой ежемесячной платы (как вариант, предлагается $10) обеспечить финансовую устойчивость проектов, не ограничивая при этом их открытость и не прибегая к моделям финансирования, подобным Open Core, подразумевающим поставку расширенной платной версии.

https://www.opennet.ru/opennews/art.shtml?num=63627

Администраторы репозитория Python-пакетов PyPI (Python Package Index) сняли блокировку, после того как выяснилось, что 1500 проектов были созданы не злоумышленниками, а командой, занимающейся обеспечением безопасности в компании VK, которой принадлежит домен inbox.ru. Целью была заявлена деятельность по предотвращению потенциальных атак на внешние библиотеки, используемые в VK. Представители VK извинились и заверили, что больше не будут подобным образом регистрировать проекты для выявления и предотвращения атак.

https://www.opennet.ru/opennews/art.shtml?num=63628

Представлен релиз специализированного дистрибутива Tails 6.18 (The Amnesic Incognito Live System), развиваемого в составе проекта Tor. Дистрибутив основан на пакетной базе Debian 12, поставляется с рабочим столом GNOME 43 и предназначен для анонимного выхода в сеть при помощи инструментария Tor. Все соединения, кроме трафика через сеть Tor, по умолчанию блокируются пакетным фильтром. При сохранении пользовательских данных между запусками применяется шифрование. Для загрузки подготовлен iso-образ, способный работать в Live-режиме, размером 1 ГБ.

https://www.opennet.ru/opennews/art.shtml?num=63629

Для включения в будущее ядро 6.17 предложены оптимизации и новые возможности, повышающие производительность Btrfs.

https://www.opennet.ru/opennews/art.shtml?num=63630

Саша Левин (Sasha Levin) из компании NVIDIA, занимающийся сопровождением LTS-веток ядра Linux и входящий в консультативный совет организации Linux Foundation, выставил на обсуждение разработчиков набор правил и документацию, которые должны учитываться AI-ассистентами при генерации изменений для ядра Linux. Ссылки на инструкции отмечены в файлах конфигурации, подготовленных для AI-платформ Claude, GitHub Copilot, Cursor, Codeium, Continue, Windsurf и Aider.

https://www.opennet.ru/opennews/art.shtml?num=63631

Доступен новый выпуск утилиты sudo 1.9.17p2, используемой для организации выполнения команд от имени других пользователей. В новом выпуске устранена проблема, приводившая при определённом стечении обстоятельств к отправке сигнала SIGHUP (потеря связи с терминалом) не запущенному процессу, а всем процессам в системе.

https://www.opennet.ru/opennews/art.shtml?num=63633

Опубликован выпуск дистрибутива Slackel 8.0, построенного на наработках проектов Slackware и Salix, и полностью совместимого с предлагаемыми в них репозиториями. Ключевым отличием Slackel является использование постоянно обновляемой ветки Slackware-Current. Графическое окружение основано на оконном менеджере Openbox. Размер загрузочного образа, способного работать в Live-режиме, 3.6 ГБ (i386 и x86_64).

https://www.opennet.ru/opennews/art.shtml?num=63634

Администраторы репозитория NPM по ошибке заблокировали пакет Stylus, распознав в нём несуществующее вредоносное ПО. Через 12 часов после отправки жалобы в NPM проблема была отмечена как не соответствующая действительности, объявление о наличии вредоносного ПО было отозвано, а пакет восстановлен в репозитории.

https://www.opennet.ru/opennews/art.shtml?num=63635

Опубликован выпуск библиотеки SVT-AV1 3.1.0 (Scalable Video Technology AV1) c реализациями кодировщика и декодировщика формата кодирования видео AV1, для ускорения которых задействованы присутствующие в процессорах x86_64 и ARM расширения для аппаратного распараллеливания вычислений. Проект создан компанией Intel в партнёрстве с Netflix с целью достижения уровня производительности, пригодного для перекодирования видео на лету и применения в сервисах, отдающих видео по запросу (VOD). В настоящее время разработка ведётся под эгидой альянса Open Media (AOMedia), курирующего развитие формата кодирования видео AV1. Ранее проект развивался в рамках проекта OpenVisualCloud, который также разрабатывает кодировщики SVT-HEVC и SVT-VP9. Код распространяется под лицензией BSD.

https://www.opennet.ru/opennews/art.shtml?num=63637

Увы, технические форумы отживают свой век. Достаточно известный ресурс не смог подстроиться под современный мир.

Линукс при том, что там есть [ раздел ]( http://forum.oszone.net/forum-8.html )

PS. Все как-то сразу Ozzy и [ OSZone.net ]( http://forum.oszone.net/ )

https://www.linux.org.ru/news/internet/18034809

Мы, ContestI2PTeam, проводим соревнование по олимпиадному программированию в I2P для начинающих. Цель мероприятия: познакомить как можно больше талантливых программистов с сетью I2P.

( [ читать дальше... ]( https://www.linux.org.ru/news/internet/18035017#cut ) )

Вышел первый тестовый релиз systemd 258 — крупного обновления системного менеджера для Linux, запланированного для второй половины 2025 года. Версия 258-rc1 включает свыше 260 изменений, охватывающих как внутренние улучшения, так и появление новых инструментов.

Одно из нововведений касается файла /etc/hostname. Теперь в нём можно использовать символы вопроса (?), которые будут автоматически заменяться шестнадцатеричными значениями, полученными из идентификатора машины. Это упрощает развёртывание унифицированных, но уникальных имён хостов на множестве устройств.

Добавлена утилита systemd-factory-reset, позволяющая запрашивать или отменять сброс к заводским настройкам при следующей перезагрузке. Также появилась команда systemd-pty-forward — она создаёт псевдотерминал, запускает в нём процесс и пересылает вывод обратно в вызывающий терминал.

В рамках поддержки доверенных вычислений теперь можно встраивать UEFI-прошивки в образы ядра (UKI), реализуя сценарии «bring your own firmware».

Конфигурация загрузчика systemd-boot получила параметр reboot-on-error, который активируется при неудачной загрузке выбранной записи.

Виртуальные машины, запускаемые через systemd-vmspawn, теперь могут использовать непривилегированные сетевые интерфейсы. А udev добавляет новое свойство ID_AV_LIGHTS=, с помощью которого можно разрешать доступ обычным пользователям к USB-индикаторам.

Интерфейсы отладки Android, такие как ADB, Fastboot и ADB DbC, теперь автоматически помечаются как доступные для непривилегированных пользователей.

Поддержка системных credentials (учётных данных) теперь распространяется и на монтируемые точки (mount units), а не только на службы. Кроме того, зашифрованные credentials могут использоваться в пользовательских службах.

Введено условие ConditionKernelModuleLoaded=, позволяющее запускать юниты только при наличии определённого загруженного модуля ядра . Также systemd 258 активирует учётные квоты на /tmp/ и /dev/shm/ при использовании tmpfs.

Появился новый тип задания lenient, при котором попытка остановить активный юнит приведёт к немедленному отказу всей транзакции. Добавлены новые параметры для управления квотами на каталоги состояния, кэша и логов (StateDirectoryQuota=, CacheDirectoryQuota=, LogsDirectoryQuota=).

Наконец, представлены новые службы пользователя systemd-nspawn@.service и systemd-vmspawn@.service, а также единый machines.target для их группового управления.

Поддержка cgroup v1 окончательно удалена. А в следующем релизе — systemd 259 — планируется прекратить и поддержку скриптов System V.

https://www.linux.org.ru/news/linux-general/18035526

В ветку Android Canary [ добавлена ]( https://www.androidauthority.com/linux-terminal-graphical-apps-3580905/ ) возможность запуска графический приложений linux. Запуск осуществляется через приложение Linux Terminal, позволяющее запустить в окружении Android виртуальную машину с Debian GNU/Linux, в которой можно выполнять обычные Linux-приложения.

Функциональность виртуальной машины c Linux развивается в рамках проекта Ferrochrome. В гостевом окружении запускается Debian GNU/Linux 12. Для виртуализации используется [ Android Virtualization Framework ]( https://source.android.com/docs/core/virtualization ) , реализованный на базе гипервизора KVM и инструментария [ crosvm ]( https://chromium.googlesource.com/chromiumos/docs/+/master/containers_and_vms.md ) . Графическое окружение использует протокол Wayland и основано на композитном сервере Weston. Запуск приложений, собранных для X11, производится при помощи DDX-компонента XWayland, например, продемонстрирован запуск текстового редактора Gedit.

Есть принципиальная возможность использовать аппаратное ускорение графики на основе виртуального GPU Virgil3D для QEMU/KVM. В качестве иллюстрации [ продемонстрирован ]( https://www.youtube.com/watch?time_continue=41&v=FDOQW6yU2Es ) запуск doom. По умолчанию аппаратное ускорение отключено.

https://www.linux.org.ru/news/android/18035908

День уже почти закончился, но поздравить причастных никогда не поздно!

Поздравляем всех, кто в той или иной мере прикасался или до сих пор прикасается к таинству ночного смотрения за перемигиванием огоньков в серверной стойке, экстренному подниманию пингвинов и бэкапов в случае факапов, а также всех тех, без кого работа любого предприятия скорее всего будет парализована → системных администраторов.

Желаем всем стабильного аплинка, полных бэкапов и долгого аптайма!

https://www.linux.org.ru/news/linux-org-ru/18036142

Разработчики KDE Plasma заботятся о пользователях и предлагают лучшие решения. В свежем апдейте KDE Plasma 6.5 обновился внешний вид окон - теперь они стали мягкими и шелковистыми более дружелюбными и комфортными для восприятия! А произошло это за счет скругления углов.

Нововведение коснется только окон с официальной темой Breeze. Новый вид окон будет доступен в KDE Plasma 6.5 и будет включен по умолчанию, но пользователи смогут отключить его, если предпочитают старый стиль. Целью этого изменения является улучшение внешнего вида и функциональности окон, а также обеспечение эффективной работы системных ресурсов.

https://www.linux.org.ru/news/kde/18036794

Компания GitHub призывает к созданию нового технологического фонда ЕС с первоначальным бюджетом €350 млн. для поддержки критически важного открытого ПО.

GitHub считает, что открытый исходный код играет ключевую роль в современной цифровой экономике, но при этом многие проекты не получают достаточного финансирования (хотя и вносят существенный вклад). Из-за этого многие важные проекты остаются без поддержки, что может привести к проблемам с безопасностью и функционированием.

Новый фонд поможет обеспечить стабильность и безопасность цифровой инфраструктуры.

https://www.linux.org.ru/news/opensource/18036772

Вышел второй релиз [ Flox ]( https://github.com/FLOX-Foundation/flox ) . FLOX это фреймворк, предоставляющий инструментарий для построения информационно-торговых систем с фокусом на пропускную способность и низкие задержки.

В этом обновлении движок получил новые абстракции, включая универсальный интерфейс для WebSocket-клиентов, асинхронный HTTP-транспорт и систему отслеживания ордеров. Интерфейс трекинга исполнения расширен и теперь охватывает весь жизненный цикл ордера, включая отправку, подтверждение, исполнение, отмену и отклонение. Также добавлена поддержка типов инструментов (спот, фьючерсы, инверсные фьючерсы, опционы), настройка CPU affinity и новая конфигурируемая система логирования.

( [ читать дальше... ]( https://www.linux.org.ru/news/opensource/18036975#cut ) )

Euphonica — это новый клиент для Music Player Daemon (MPD), написанный на Rust. Разработанный Huỳnh Thiện Khiêm, он сочетает функциональность с визуальной эстетикой. Проект ориентирован на пользователей, ценящих современный дизайн без ущерба для функциональности MPD.

Ключевые особенности:

•

Чистый GTK4/libadwaita интерфейс с анимациями и размытием фона.

•

Поддержка MPRIS, асинхронного поиска и управления плейлистами.

•

Загрузка метаданных (обложки, тексты песен) из внешних источников.

•

Визуализатор спектра, индикаторы качества звука (Lossy/Lossless/Hi-Res/DSD).

•

Гибкие настройки, включая автоматическую цветовую тему на основе обложки.

Пока Euphonica находится в бета-версии и стабильного релиза на Flathub нет. Однако есть сборки для Nixpkgs и AUR. На GitHub также приведена инструкция по компиляции через GNOME Builder и созданию собственного Flatpak-пакета.

https://www.linux.org.ru/news/multimedia/18037270

боты снова забегали - см. обновления в ii://bot.slashdot и ii://lor.opennet
в данный момент фетчю недостающие сообщения из fox и ake - в итоге у меня теперь статистика показывает кучу нового:

Echoareas
────────────────────────
bot.slashdot........1499 ██████████████████████████████████████████████████▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒
idec.talks..........1457 ██████████████████████████████████████████████████▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒
spnet.stats..........142 ██████████████████████████████████████████████████▒▒
idec.test............110 ██████████████████████████████████████████████████▒▒
develop.16.............5 █████
yester.pub.............2 ██
ii.stat................1 █
sprinternet.io.........1 █
────────────────────────
Total               3217

Наверное пока остановлю генерацию еженедельной статистики в ii://ii.stat - может быть позже начну генерить ежемесячную в автоматическом режиме...

возможно дело в том, что я через какое-то время после начала перекидывания сообщений из слашдота поменял алгоритм, чтобы в текстовый выхлоп не включались линки на фейсбук и твиттер и перегенерил всё - а у кого-то осталась и старая версия, и новая - буду восстанавливать по винту старого сервера...

TOP10 VISITORS:

[1] 45.135.180.x point=126 web=0 up=10.8MB (78%) <--- yesterlink (5/hr)
[2] Google point=0 web=170 up=1.2MB (8%)
[3] 192.168.1.x point=7 web=51 up=0.6MB (4%) <--- 192.168.1.x
[4] 217.114.158.x point=13 web=0 up=0.4MB (2%) <--- fox (1/hr)
[5] PetalBot point=1 web=53 up=0.3MB (2%) <--- PetalBot
[6] TikTok point=0 web=6 up=0.1MB (<1%)
[7] Facebook point=0 web=8 up=59KB
[8] 91.198.77.x point=0 web=7 up=54KB
[9] 83.229.84.x point=0 web=1 up=43KB
[10] 45.131.195.x point=0 web=1 up=38KB

TOTAL TRAFFIC: 13MB

Поправил 3 своих эхи - стало лучше:

Echoareas
────────────────────────
idec.talks..........1459 ██████████████████████████████████████████████████▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒▒
idec.test............110 ██████████████████████████████████████████████████▒▒
bot.slashdot..........61 ██████████████████████████████████████████████████▒
lor.opennet...........52 ██████████████████████████████████████████████████▒
develop.16.............5 █████
spnet.stats............3 ███
yester.pub.............2 ██
ii.stat................1 █
sprinternet.io.........1 █
────────────────────────
Total               1694

но всё равно по idec.talks и idec.test какой-то зашквар...

Measuring earth's position (or "geodesy") requires using telescopes that track radiation from distant black holes. Their signals "pass cleanly through the atmosphere and we can receive them during day and night and in all weather conditions," writes a senior scientist at the University of Tasmania.

But there's a problem...

Radio waves are also used for communication on Earth — including things such as wifi and mobile phones... [A] few narrow lanes are reserved for radio astronomy. However, in previous decades the radio highway had relatively little traffic. Scientists commonly strayed from the radio astronomy lanes to receive the black hole signals. To reach the very high precision needed for modern technology, geodesy today relies on more than just the lanes exclusively reserved for astronomy.

In recent years, human-made electromagnetic pollution has vastly increased. When wifi and mobile phone services emerged, scientists reacted by moving to higher frequencies. However, they are running out of lanes. Six generations of mobile phone services (each occupying a new lane) are crowding the spectrum... Today, the multitude of signals are often too strong for geodetic observatories to see through them to the very weak signals emitted by black holes. This puts many satellite services at risk.

To keep working into the future — to maintain the services on which we all depend — geodesy needs some more lanes on the radio highway. When the spectrum is divided up via international treaties at world radio conferences, geodesists need a seat at the table. Other potential fixes might include radio quiet zones around our essential radio telescopes. Work is also underway with satellite providers to avoid pointing radio emissions directly at radio telescopes. Any solution has to be global. For our geodetic measurements, we link radio telescopes together from all over the world, allowing us to mimic a telescope the size of Earth. The radio spectrum is primarily regulated by each nation individually, making this a huge challenge.

But perhaps the first step is increasing awareness. If we want satellite navigation to work, our supermarkets to be stocked and our online money transfers arriving safely, we need to make sure we have a clear view of those black holes in distant galaxies — and that means clearing up the radio highway.

[ Read more of this story ]( https://science.slashdot.org/story/25/07/28/043232/astronomers-use-black-holes-to-pinpoint-earths-location-but-are-phones-and-wifi-blocking-the-view?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

https://akewebdump.ddns.net/idec/ui2/ ко мне тоже с мая не стучится...

благодаря ake на моём узле появилась историческая потеряшка ii://ii.14 :)

This week Google's Open Source Security Team announced "a new project to strengthen trust in open source package ecosystems" — by reproducing upstream artifacts.

It includes automation to derive declarative build definitions, new "build observability and verification tools" for security teams, and even "infrastructure definitions" to help organizations rebuild, sign, and distribute provenance by running their own OSS Rebuild instances. (And as part of the initiative, the team also published SLSA Provenance attestations "for thousands of packages across our supported ecosystems.")

Our aim with OSS Rebuild is to empower the security community to deeply understand and control their supply chains by making package consumption as transparent as using a source repository. Our rebuild platform unlocks this transparency by utilizing a declarative build process, build instrumentation, and network monitoring capabilities which, within the SLSA Build framework, produces fine-grained, durable, trustworthy security metadata. Building on the hosted infrastructure model that we pioneered with OSS Fuzz for memory issue detection, OSS Rebuild similarly seeks to use hosted resources to address security challenges in open source, this time aimed at securing the software supply chain... We are committed to bringing supply chain transparency and security to all open source software development. Our initial support for the PyPI (Python), npm (JS/TS), and Crates.io (Rust) package registries — providing rebuild provenance for many of their most popular packages — is just the beginning of our journey...

OSS Rebuild helps detect several classes of supply chain compromise:

- Unsubmitted Source Code: When published packages contain code not present in the public source repository, OSS Rebuild will not attest to the artifact.
- Build Environment Compromise: By creating standardized, minimal build environments with comprehensive monitoring, OSS Rebuild can detect suspicious build activity or avoid exposure to compromised components altogether.
- Stealthy Backdoors: Even sophisticated backdoors like xz often exhibit anomalous behavioral patterns during builds. OSS Rebuild's dynamic analysis capabilities can detect unusual execution paths or suspicious operations that are otherwise impractical to identify through manual review.

For enterprises and security professionals, OSS Rebuild can...

— Enhance metadata without changing registries by enriching data for upstream packages. No need to maintain custom registries or migrate to a new package ecosystem.

— Augment SBOMs by adding detailed build observability information to existing Software Bills of Materials, creating a more complete security picture...
- Accelerate vulnerability response by providing a path to vendor, patch, and re-host upstream packages using our verifiable build definitions...

The easiest (but not only!) way to access OSS Rebuild attestations is to use the provided Go-based command-line interface.

"With OSS Rebuild's existing automation for PyPI, npm, and Crates.io, most packages obtain protection effortlessly without user or maintainer intervention."

[ Read more of this story ]( https://news.slashdot.org/story/25/07/28/0254233/googles-new-security-project-oss-rebuild-tackles-package-supply-chain-verification?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.

A new analysis of protein changes across human tissues has identified an aging acceleration point around age 50, with blood vessels showing the most dramatic deterioration. Researchers examined tissue samples from eight body systems in 76 people of Chinese ancestry aged 14 to 68 who died from accidental brain injury, finding age-related increases in 48 disease-associated proteins.

Between ages 45 and 55, the most significant shift occurred in the aorta, the body's main artery carrying oxygenated blood from the heart. The team identified one aortic protein that triggers accelerated aging signs when administered to mice. Early aging changes appeared around age 30 in the adrenal gland, which produces various hormones. The study, published in Cell, adds to mounting evidence that aging occurs in waves rather than following a steady progression.

[ Read more of this story ]( https://science.slashdot.org/story/25/07/28/1336248/ageing-accelerates-at-around-age-50---some-organs-faster-than-others?utm_source=atom1.0moreanon&utm_medium=feed ) at Slashdot.