Latest YouTube Video

Saturday, May 16, 2015

Orioles Video: Steve Pearce hits solo HR for just 1 of team's 3 hits in a 6-1 loss to Angels; 8th loss in last 11 games (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

Nebraska says assistant soccer coach died in car accident

LINCOLN, Neb. (AP) The University of Nebraska says an assistant soccer coach died in a car accident.

from FOX Sports Digital http://ift.tt/1EP7y9G
via IFTTT

Gamblers Anonymous Ireland

Gamblers Anonymous (G.A.) is a fellowship of men and women who share their experience, strength and hope with each other that they may solve ...

from Google Alert - anonymous http://ift.tt/1d8E4Om
via IFTTT

I have a new follower on Twitter


Leadership Tips
Don't find fault. Find a remedy..
Indianapolis

Following: 5704 - Followers: 5527

May 16, 2015 at 09:26PM via Twitter http://twitter.com/Leadershiip

Orioles: P Chris Tillman scratched from Sunday's scheduled start due to back stiffness (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

Hull manager in shock at player's failed drugs test

HULL, England (AP) Hull manager Steve Bruce said he was ''shocked, saddened, disappointed and angry'' after his midfielder Jake Livermore failed a drugs test.

from FOX Sports Digital http://ift.tt/1H9KbJz
via IFTTT

PSG wins French league, Anfield bids farewell to Gerrard

LONDON (AP) Paris Saint-Germain won the French league title for the third straight year, and Manchester United secured a return to the Champions League without even playing Saturday.

from FOX Sports Digital http://ift.tt/1IIK8Zi
via IFTTT

Anonymous on Twitter: ".@HamCoTN Do you have any comment on the case of US vs Doggart ...

Anonymous added,. CHEL. @tigerlilyysays. Former Congressional Candidate #RobertDoggart Conspired To Kill Innocent Muslim Citizens ...

from Google Alert - anonymous https://www.google.com/url?rct=j&sa=t&url=https://twitter.com/YourAnonNews/status/599457085785518080&ct=ga&cd=CAIyGjgxMzAxNTQ0ZWE3M2NhMmQ6Y29tOmVuOlVT&usg=AFQjCNEnsexkv4nznd4gt1lj63VT7y7E4A
via IFTTT

PSG clinches 3rd successive Ligue 1 title

PARIS (AP) Paris Saint-Germain clinched a third successive Ligue 1 with a 2-1 win at Montpellier on Saturday.

from FOX Sports Digital http://ift.tt/1L9KBnd
via IFTTT

Gerrard loses last home game for Liverpool

LIVERPOOL, England (AP) Steven Gerrard couldn't conjure up one last moment of brilliance at Anfield as his final home match for Liverpool ended in a loss that sealed Manchester United's return to the Champions League on Saturday.

from FOX Sports Digital http://ift.tt/1FqwlaR
via IFTTT

Top SAmerican official: Expect 'severe' penalty against Boca

ASUNCION, Paraguay (AP) A top South American football official says he expects severe penalties against Boca Juniors after a Copa Libertadores match with bitter rival River Plate had to be suspended at Boca's La Bombonera Stadium.

from FOX Sports Digital http://ift.tt/1Fqwmvk
via IFTTT

Anfield bids a heartfelt farewell to Steven Gerrard

LIVERPOOL, England (AP) Carrying one daughter on his shoulders and with his two others by his side, Steven Gerrard circled the field inside Anfield and received the acclaim of his adoring Liverpool fans one last time.

from FOX Sports Digital http://ift.tt/1bX3Vr3
via IFTTT

Gerrard bids farewell to Anfield with 3-1 loss to Palace

LIVERPOOL, England (AP) Steven Gerrard endured a disappointing final home match for Liverpool as Crystal Palace ruined his emotionally charged Anfield farewell with a 3-1 win in the Premier League on Saturday.

from FOX Sports Digital http://ift.tt/1FfCW4s
via IFTTT

Juventus wins 2-1 at Inter in the Derby d'Italia

MILAN (AP) Champions League finalist and Serie A champion Juventus came from behind to win 2-1 at Inter Milan in the Italian league on Saturday.

from FOX Sports Digital http://ift.tt/1Hk5muQ
via IFTTT

Stoke sets points record with 0-0 draw at Burnley in EPL

BURNLEY, England (AP) Stoke reached its highest ever points tally in the Premier League by drawing 0-0 with already relegated Burnley on Saturday.

from FOX Sports Digital http://ift.tt/1L9kjS0
via IFTTT

Hull closer to relegation after 2-0 loss at Spurs

LONDON (AP) Hull plunged closer to relegation from the Premier League by losing 2-0 to Tottenham after second-half goals by Nacer Chadli and Danny Rose on Saturday.

from FOX Sports Digital http://ift.tt/1HnbKnX
via IFTTT

Simple Fingerprint Test is Enough to Know Cocaine Use

If you are one of those using cocaine, law enforcement officials may soon catch you by simply examining your fingerprints. Scientists have developed a new type of drug test that can tell whether you have taken cocaine by analyzing chemical traces left behind in your fingerprint. A team of scientists led by the University of Surrey discovered a test that makes use of the Mass


from The Hacker News http://ift.tt/1B3HfvX
via IFTTT

Leicester stays up after drawing 0-0 with Sunderland in EPL

SUNDERLAND, England (AP) Leicester made sure of staying in the Premier League by drawing 0-0 with Sunderland on Saturday, completing a remarkable escape act after spending most of the season at the bottom of the standings.

from FOX Sports Digital http://ift.tt/1Gf7MMH
via IFTTT

Freiburg beats Bayern 2-1 to escape Bundesliga drop zone

BERLIN (AP) Nils Petersen scored late for Freiburg to beat Bayern Munich 2-1 and escape the relegation zone while Stuttgart climbed off the bottom by beating Hamburger SV 2-1 in the Bundesliga's penultimate round Saturday.

from FOX Sports Digital http://ift.tt/1bWCKfT
via IFTTT

Egypt court bans popular, hard-core 'ultra' soccer fan clubs

CAIRO (AP) An Egyptian court on Saturday banned the country's hard-core soccer fan clubs, known as ''ultras,'' over terrorism accusations.

from FOX Sports Digital http://ift.tt/1GeYxfI
via IFTTT

UNO R3 w/case $10


via Instagram http://ift.tt/1B3BWwt

I have a new follower on Twitter


Olivia coo.
I arrange myself like I am managing a company


Following: 574 - Followers: 301

May 16, 2015 at 11:03AM via Twitter http://twitter.com/OliviaCowin

Southampton's Mane scores fastest Premier League hat trick

SOUTHAMPTON, England (AP) Sadio Mane netted the fastest hat trick in Premier League history on Saturday, grabbing goals in the 13th, 14th and 16th minutes as Southampton beat Aston Villa 6-1.

from FOX Sports Digital http://ift.tt/1bWv4dK
via IFTTT

Norwich beats Ipswich to reach Championship playoff final

NORWICH, England (AP) Norwich is one game away from returning to the Premier League after beating 10-man Ipswich 3-1 on Saturday to reach the League Championships playoff final.

from FOX Sports Digital http://ift.tt/1B3sWrf
via IFTTT

Mane scores fastest Premier League hat trick

SOUTHAMPTON, England (AP) Sadio Mane scored the fastest hat trick in Premier League history on Saturday, grabbing goals in the 13th, 14th and 16th minutes to put Southampton 3-0 ahead against visiting Aston Villa.

from FOX Sports Digital http://ift.tt/1Ff8veM
via IFTTT

Orioles: Bud Norris (bronchitis) scratched from Saturday start vs. Dodgers; Ubaldo Jimenez will move up a day to replace (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

This 3D Printed Robot Cracks Combination Locks in Less than 30 Seconds

Be careful while leaving your important and valuable stuff in your lockers. A 3D printed robot has arrived that can crack a combination lock in as little as 30 seconds. So, it’s time to ditch your modern combination locks and started keeping your valuable things in a good old-fashioned locker with keys. A well-known California hacker Samy Kamkar who is expert in cracking locks has built


from The Hacker News http://ift.tt/1L91A9b
via IFTTT

Urawa Reds thrash FC Tokyo 4-1 to widen lead in J-League

SAITAMA, Japan (AP) Urawa Reds thrashed FC Tokyo 4-1 on Saturday to widen its lead at the top of the J-League standings.

from FOX Sports Digital http://ift.tt/1Gek9Zy
via IFTTT

Anonymous on Twitter: "Baltimore prison guards arrested for looting during #FreddieGray riots http ...

@LatestAnonNews @DoomsdaysCW anybody surprised?! Typical typical typical- real credit to your people, and then u wonder why... 0 retweets 0 ...

from Google Alert - anonymous https://www.google.com/url?rct=j&sa=t&url=https://twitter.com/LatestAnonNews/status/598956442142420994&ct=ga&cd=CAIyGjgxMzAxNTQ0ZWE3M2NhMmQ6Y29tOmVuOlVT&usg=AFQjCNHpIGhDHwhUsywdzrWYEpw5v8UzvA
via IFTTT

Jupiter, Ganymede, Great Red Spot


In this sharp snapshot, the Solar System's largest moon Ganymede poses next to Jupiter, the largest planet. Captured on March 10 with a small telescope from our fair planet Earth, the scene also includes Jupiter's Great Red Spot, the Solar System's largest storm. In fact, Ganymede is about 5,260 kilometers in diameter. That beats out all three of its other fellow Galilean satellites, along with Saturn's Moon Titan at 5,150 kilometers and Earth's own Moon at 3,480 kilometers. Though its been shrinking lately, the Great Red Spot's diameter is still around 16,500 kilometers. Jupiter, the Solar System's ruling gas giant, is about 143,000 kilometers in diameter at its equator. That's nearly 10 percent the diameter of the Sun. via NASA http://ift.tt/1KQ6A1D

Friday, May 15, 2015

Orioles Video: J.J. Hardy accounts for lone run with HR in 8th inning of 3-1 loss to Angels; 7th loss last 10 games (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

Anonymous: Ave, regina caelorum

Anonymous: Ave, regina caelorum. Click for samples. Anonymous. Ave, regina caelorum. For SATB Voices or Instruments. R106Y003. Anonymous: ...

from Google Alert - anonymous http://ift.tt/1JOhKne
via IFTTT

Make possible for anonymous users to apply for a job position

It would be nice if anonymous users could also apply with just filling some fields(email,name etc) and uploading a file(CV). This would attract even ...

from Google Alert - anonymous http://ift.tt/1A7PTOF
via IFTTT

[FD] Chinease attack on USIS using SAP vulnerability – Detailed review and comments

[FD] CSRF & XSS vulnerabilities in Encrypted Contact Form Wordpress Plugin v1.0.4

# Title: Cross-site Request Forgery & Cross-site Scripting in Encrypted Contact Form Wordpress Plugin v1.0.4 # Submitter: Nitin Venkatesh # Product: Encrypted Contact Form Wordpress Plugin # Product URL: http://ift.tt/1HlEH3P # Vulnerability Type: Cross-site Request Forgery [CWE-352], Cross-site scripting[CWE-79] # Affected Versions: v1.0.4 and possibly below. # Tested versions: v1.0.4 # Fixed Version: v1.1 # Link to code diff: http://ift.tt/1EM9Ne4 # Changelog: http://ift.tt/1HlEFZO # CVE Status: None/Unassigned/Fresh ## Product Information: Secure contact form for WordPress. Uses end-to-end encryption to send user information. Not even your hosting provider can view the content. Let users send you information in a secure way. Uses I.CX messaging service to encrypt user content in their own web browsers before sending to you. ## Vulnerability Description: The forms in the admin area of the plugin are vulnerable to CSRF, via which the contact forms generated are susceptible to XSS via unsanitized POST parameter. For example, the admin function of updating an existing form can be done via CSRF. Hence, by submitting a crafted HTML string in the parameters via CSRF, a XSS attack gets launched which affects all the visitors of the page(s) containing the contact form. ## Proof of Concept:
## Solution: Upgrade to v1.1 of the plugin. ## Disclosure Timeline: 2015-03-26 - Discovered. Contacted developer on support forums. 2015-03-27 - Contacted developer via contact form on vendor site. 2015-04-01 - Fixed v1.1 released. 2015-05-15 - Publishing disclosure on FD. ## Disclaimer: This disclosure is purely meant for educational purposes. I will in no way be responsible as to how the information in this disclosure is used.

Source: Gmail -> IFTTT-> Blogger

[FD] XML Injection, AoF and BF vulnerabilities in Hikvision DS-2CD2012-I

Hello list! There are vulnerabilities in Hikvision DS-2CD2012-I. These are XML Injection, Abuse of Functionality and Brute Force vulnerabilities. All these vulnerabilities are present in other IP cameras and DVR of Hikvision.

Source: Gmail -> IFTTT-> Blogger

Middlesbrough beats Brentford to reach Wembley playoff final

MIDDLESBROUGH, England (AP) Middlesbrough advanced to the League Championship playoff final at Wembley by beating Brentford 3-0 Friday in the second leg of their semifinal.

from FOX Sports Digital http://ift.tt/1FiYwXh
via IFTTT

Anonymous on Twitter: "#AntiSec is claiming to have hacked the Madison PD as a response to ...

Retweets 37; Favorites 27; anonymous Person W. Matthew @LalaOsman Jay AnoN Poetic Rebel Fuzacius Wuz Anonymous Revolution. 11:08 AM ...

from Google Alert - anonymous https://www.google.com/url?rct=j&sa=t&url=https://twitter.com/AnonymousGlobo/status/598912728284196864&ct=ga&cd=CAIyGjgxMzAxNTQ0ZWE3M2NhMmQ6Y29tOmVuOlVT&usg=AFQjCNFQT-vIEXHoTNhLXAUZY-swZ87PVA
via IFTTT

Hull, English FA suspend midfielder Jake Livermore

HULL, England (AP) Hull midfielder Jake Livermore has been suspended by the Premier League club and the English Football Association.

from FOX Sports Digital http://ift.tt/1Jlb3ez
via IFTTT

View Quize result for anonymous user

... in accoring to permission it can view all anonymouse results or nothing. This patch allow view quize result current anonymous user based on session.

from Google Alert - anonymous http://ift.tt/1JNjLjH
via IFTTT

UEFA opens disciplinary cases against Dnipro

NYON, Switzerland (AP) UEFA has opened disciplinary proceedings against Ukrainian team Dnipro Dnipropetrovsk for racist behavior by its fans and several other offenses during its Europa League semifinal match against Napoli.

from FOX Sports Digital http://ift.tt/1GcjF6c
via IFTTT

Blatter to travel to meet Israeli, Palestinian state leaders

ZURICH (AP) FIFA President Sepp Blatter says he will travel to meet Israeli and Palestinian government leaders next week, seeking to calm tension between their soccer federations before this month's FIFA congress.

from FOX Sports Digital http://ift.tt/1d2BGIT
via IFTTT

Blatter wants new rule helping US bid for 2026 World Cup

ZURICH (AP) FIFA President Sepp Blatter wants a rule on World Cup hosting that would prevent Europe from bidding for the 2026 tournament, improving the chances of the United States.

from FOX Sports Digital http://ift.tt/1EKEnEE
via IFTTT

Blatter to visit US in 2016, rejects talk of avoiding FBI

ZURICH (AP) FIFA President Sepp Blatter says he plans to visit the United States in June 2016, dismissing suggestions he is avoiding the country because of a reported FBI probe.

from FOX Sports Digital http://ift.tt/1EKAdg9
via IFTTT

Blatter to visit US in 2016, rejects talk of avoiding FBI

ZURICH (AP) FIFA President Sepp Blatter says he plans to visit the United States in June 2016, dismissing suggestions he is avoiding the country because of a reported FBI probe.

from FOX Sports Digital http://ift.tt/1EKAdg9
via IFTTT

ISS Daily Summary Report – 05/14/15

ExHAM Installation: Kelly installed the Handhold Experiment Platform on the JEM Airlock (JEMAL) Slide Table and the Platform Adapter and Exposed Area Dosimeter and covered them with Multi-Layered Insulation (MLI).  He then installed the Handhold Experiment Platform and attached the samples for the various external experiments including the Free Space Dosimeter and ExHAM.  The JEMAL ST was then retracted and JEMAL was depressed, the experiments will off-gas in the JEMAL prior to being installed on the JEM Exposed Facility.  Free Space Dosimeter will be exposed for approximately 2 weeks and ExHAM will be exposed for one year. Binary Colloidal Alloy Test-Low Gravity Phase Kinetics Platform (BCAT-KP) Sample Initiation: Cristoforetti transferred images and reset the intervelometer on Sample #3 which is expected to run for two more weeks.  Following this sample, two more samples are planned before all the BCAT-KP samples are initialized and stowed for approximately 6 months while the colloids are left undisturbed to allow for continued growth. The BCAT-KP experiment aims to help materials scientists develop new consumer products with unique properties and longer shelf lives. Colloids are mixtures of small particles distributed throughout a liquid, which include milk, detergents and liquid crystals. Gravity affects how the particles clump together and sink, making the International Space Station an ideal platform to study their fundamental behaviors. Node 3 (N3) Carbon Dioxide Removal Assembly (CDRA): Last week the crew completed N3 CDRA bed and Air Selector Valve (ASV) Remove & Replace (R&R). When the ground attempted to activate CDRA, error messages were received during an Active Built-in-Test (ABIT). Engineering teams met, concluded that the issue was with the fan and recommended the fan be replaced. Today, Virts successfully replaced the Blower fan and ground commanding confirmed the operation of the newly installed fan.  The N3 CDRA has been activated and fine leak checks will be performed overnight.  Lab CDRA continues to operate, CO2 levels remain low.  Node 1 (N1) Sample Delivery System (SDS) Reconfiguration/Power Cable Routing: In preparation for utilizing the N1 nadir port for visiting vehicles, Cristoforetti installed a Sample Delivery System (SDS) 3-Way Valve, a union to bypass the installed Manual Valve, and a SDS Hose that connects the new SDS 3-Way Valve to the Manual Valve and to the Node 1 Nadir vestibule.  The crew also routed the SDS Power Cable from the Node 3 UOP-4 to the Node 3 Starboard Forward bulkhead however, the cable routing will need to be readdressed to provide required slack for future connections. Future activities will complete the air hose, power, and data connections for the installed hardware. Today’s Planned Activities All activities were completed unless otherwise noted. Preparing for Photography of RS Windows  r/g 8817 XF305 Camcorder Settings Adjustment JEM Airlock ST Extension to JPM Side Photography of SM windows 03, 05, 06, 07, 08, 09, 26 / r/g 8817 CDRA Component Replacement CARDIOVECTOR. PL Health Check. / r/g 8818 Platform Adapter Installation Monthly Inspection of T2 Treadmill System MPEP – Dosimeter Installation DAN. Experiment Execution Support / r/g 8811 DAN. Experiment Ops. / r/g 8811 DAN. Photography of the Experiment Ops / r/g 8810 HXP – Handhold Exp Platform Installation Photography of SM windows 03, 05, 06, 07, 08, 09, 26 / r/g 8817 PROBOY. Cable Installation and Connection. / r/g 8800 HXP – Sample Insertion Installation of Valves in Node1 ISS RS Window Inspection Photo Downlink r/g 8817 Force Loader Test (HC-1M). / r/g 8815 JEM Airlock Slide Table Retraction CIR – Post-Experiment Hardware Stowage Audit of Kits for Experiments / r/g 8816 PROBOY. Cable Installation and Connection r/g 8800 JEMAL – Depressurization ESA Weekly Crew Conference WRS – Recycle Tank Fill from EDV VIZIR. Experiment Ops / r/g 8812 DRAGON. Transfers Ops High Definition Video Camera Assembly 1 Activation in High Definition Mode BCAT – Battery Replacement and Photo Downlink Desiccant Replacement in Glacier-1 and Glacier-2. Glacier-1 Deactivation Installation of Valves in Node3 Dragon Cargo Operations Conference MICROBS1. Procedure review IMS Delta File Prep Verification of Airlock Depressurization Completion in JEM WRS – Recycle Tank Fill from EDV Verification of JEM Airlock Venting Completion. High Definition Video Camera Assembly 1 Switch to SD Mode RELAKSATSIYA. Initiate v/camera battery charge / r/g 6827  Completed Task List Items NOD3FO2 Stbd LHA R&R  Ground Activities All activities were completed unless otherwise noted. JEMAL Depress N3 CDRA Activation N3 CDRA Extended Checkout [On Schedule] Three-Day Look Ahead: Friday, 05/15: Restocking rodent habitat, Micro Observatory sampling Saturday, 05/16: Crew off duty, housekeeping, Dragon transfer ops Sunday, 05/17: Crew off duty QUICK ISS Status – Environmental Control Group:                               Component Status Elektron On Vozdukh Manual [СКВ] 1 – SM Air Conditioner System (“SKV1”) On [СКВ] 2 – SM Air Conditioner System (“SKV2”) Off Carbon Dioxide Removal Assembly (CDRA) Lab Operate Carbon Dioxide Removal Assembly (CDRA) Node 3 Operate Major Constituent Analyzer (MCA) Lab Shutdown Major Constituent Analyzer (MCA) Node 3 Operate Oxygen Generation Assembly (OGA) Process Urine Processing Assembly (UPA) Standby Trace Contaminant Control System (TCCS) Lab Off Trace Contaminant Control System (TCCS) Node 3 Warmup  

from ISS On-Orbit Status Report http://ift.tt/1EL3los
via IFTTT

Allegri: Juventus must stay focused at home as well

TURIN, Italy (AP) Juventus coach Massimiliano Allegri wants his team to remain fully focused at home after reaching the Champions League final.

from FOX Sports Digital http://ift.tt/1HkHZo1
via IFTTT

Rodgers opens door for Gerrard return to Liverpool

LIVERPOOL, England (AP) Liverpool manager Brendan Rodgers opened the door for Steven Gerrard to return to the club in a coaching capacity, saying Friday that his departing captain ''would certainly be someone I'd love to have work here.''

from FOX Sports Digital http://ift.tt/1JMEzrB
via IFTTT

Farage puts pressure on anonymous Ukip rebel

An anonymous Ukip member who has called for a leadership election must make his mind up as to whether he wants to remain in the party, Nigel ...

from Google Alert - anonymous http://ift.tt/1bTYbhH
via IFTTT

Win Free Air Miles for Finding Security Flaws in United Airlines

If you are a security researcher and fond of traveling from one conference to another, then United Airlines' bug bounty program would be of great interest for you. United Airlines has launched a new bug bounty program inviting security researchers and bug hunters to report vulnerabilities in its websites, apps and web portals. Bug bounty programs are very common among technology firms,


from The Hacker News http://ift.tt/1E8NWwI
via IFTTT

FC Tokyo signs 13-year-old Barcelona prospect

TOKYO (AP) Japanese club FC Tokyo has signed 13-year-old prospect Takefusa Kubo from Barcelona.

from FOX Sports Digital http://ift.tt/1e4LkLl
via IFTTT

[FD] [SE-2014-02] Unconfirmed / unpatched vulnerabilities in Google App Engine

Hello All, Security Explorations decided to release technical details as well as accompanying Proof of Concept codes (three complete GAE Java sandbox escapes) for security issues identified in Google App Engine for Java after initial Issues 1-31 [1] have been addressed by the company. All relevant materials can be found at our SE-2014-02 project details page (original Google reports 3-6, POC codes for Issues 35-41): http://ift.tt/1ALgNG6 The reasons for the disclosure of unconfirmed and unpatched issues are briefly outlined below: 1) We need to treat all vendors equal. In the past, unconfirmed, denied or silently fixed issues were the subject to an immediate release by us, 2) it's been 3 weeks and we haven't heard any official confirmation / denial from Google with respect to Issues 37-41 [2]. It should not take more than 1-2 business days for a major software vendor to run the received POC, read our report and / or consult the source code. This especially concerns the vendor that claims its "Security Team has hundreds of security engineers from all over the world" [3] and that expects other vendors to react promptly to the reports of its own security people [4], 3) we again found out that some of our Proof of Concept codes developed as part of SE-2014-02 project stopped working in a production GAE. Google has not communicated to us that Issues 35-36 would be / have been patched. This is the 3rd time we experience this "silent fix" approach from the company, 4) Google rewards cannot influence the way a vulnerability handling / disclosure of a security research is made. They cannot be a hostage of any vulnerability reward, bug bounty, etc. Please, note that a Proof of Concept code for the unpatched Issues 37-39 allows to gain access to the GAE Java environment only (it does not break the OS sandbox). We anticipate that its release is unlikely to raise any eyebrow at Google as: - GAE Java VM is the first layer of defense and Google "considers the remaining, lower sandboxing layers sufficiently robust", - 5 months after notifying Google, GAE JVM layer still contains 645 PROTOBUF definitions for 62 internal Google RPC services (including Borg [5]), - GAIA [6] Frontend configuration files describing configuration for 354 Google services have been finally removed from the environment, - libjavaruntime.so does not expose as much debugging information as it used to. Published reports again show the impact of a decision to allow custom Class Loaders in GAE. They also manifest inconsistency in the way security checks are implemented by GAE Reflection API interception layer. They prove again that "working as intended" issues are actually security bugs contrary to Google's claims. We have exceeded our initially suspected bug count of 30+ security issues and started to get closer to the level reached for Oracle Java SE [7]. The irony is that all of the bugs reported to Google so far were specific to the "extra security" layer implemented on top of JRE that aimed to protect GAE against...security vulnerabilities in Java. At the end, it's worth to note that we are completely aware that this publication may lead to the cancelling of additional VRP rewards from Google (including the $20k that were to be paid for Issues 32-34 and improperly patched Issue 2 #2). Thank you. Best Regards, Adam Gowdiak

Source: Gmail -> IFTTT-> Blogger

Major Hurricane Drought: Nine Years Without a Major Hurricane Making US Landfall

Statistacal analyses from hurricane track data back to 1850 indicate that for any particular Atlantic Hurricane season, there is approximately a 40% chance that a major hurricane (categrory 3 or higher) will make landfall in the continental United States. However, during the 9-year period from 2006 to 2014, no major hurricanes have made landfall. These visualizations show hurricane tracks from 1980 through 2014. Green tracks are storms that did not make landfall in the continental US; yellow tracks are storms made landfall but were not category 3 or higher when they made landfall; and, red tracks are storms that made landfall and where category 3 or higher. A corresponding chart on the right accumulates the number and types of storms for each year. Notice the large gap in any red blocks between 2006 and 2014.

from NASA's Scientific Visualization Studio: Most Recent Items http://ift.tt/1FbXsTz
via IFTTT

Dwarf Planet, Bright Spot


Now at Ceres, Dawn's camera recorded this closer view of the dwarf planet's northern hemisphere and one of its mysterious bright spots on May 4. A sunlit portrait of a small, dark world about 950 kilometers in diameter, the image is part of a planned sequence taken from the solar-powered spacecraft's 15-day long RC3 mapping orbit at a distance of 13,600 kilometers (8,400 miles). The animated sequence shows Ceres' rotation, its north pole at the top of the frame. Imaged by Hubble in 2004 and then by Dawn as it approached Ceres in 2015, the bright spot itself is revealed to be made up of smaller spots of reflective material that could be exposed ice glinting in the sunlight. On Saturday, Dawn's ion propulsion system was turned on to spiral the spacecraft into a closer 4,350-kilometer orbit by June 6. Of course another unexplored dwarf planet, Pluto, is expecting the arrival of a visitor from Earth, the New Horizons spacecraft, by mid-July. via NASA http://ift.tt/1Izrjt8

Match suspended after River players hit with eye irritant

BUENOS AIRES, Argentina (AP) The Copa Libertadores round-of-16 match between bitter Argentine rivals Boca Juniors and River Plate was suspended Thursday after River Plate players were sprayed with a substance that seemed to affect their vision and irritated their eyes.

from FOX Sports Digital http://ift.tt/1HkdMW0
via IFTTT

Thursday, May 14, 2015

Match suspended after River Plate players hit by spray

BUENOS AIRES, Argentina (AP) A round of 16 match in the Copa Libertadores between bitter Argentine rivals Boca Juniors and River Plate was suspended Thursday after River Plate players were sprayed with a substance that affected their vision.

from FOX Sports Digital http://ift.tt/1HgUluq
via IFTTT

Tottenham friendly sparks dispute in Malaysia

KUALA LUMPUR, Malaysia (AP) An exhibition game between English Premier League club Tottenham and a Malaysian Select XI in Kuala Lumpur on May 27 has sparked criticism and even calls for a boycott for compromising the national team's preparations for important upcoming matches as well as interrupting the local league.

from FOX Sports Digital http://ift.tt/1FbEg8K
via IFTTT

I have a new follower on Twitter


Amy Diaz
Entrepreneur. Proud analyst. Coffee buff. Extreme pop culture evangelist. Freelance alcohol fanatic.
Jacksonville

Following: 2797 - Followers: 2627

May 14, 2015 at 10:03PM via Twitter http://twitter.com/lollygagblare

Brain Tumor Segmentation with Deep Neural Networks. (arXiv:1505.03540v1 [cs.CV])

In this paper, we present a fully automatic brain tumor segmentation method based on Deep Neural Networks (DNNs). The proposed networks are tailored to glioblastomas (both low and high grade) pictured in MR images. By their very nature, these tumors can appear anywhere in the brain and have almost any kind of shape, size, and contrast. These reasons motivate our exploration of a machine learning solution that exploits a flexible, high capacity DNN while being extremely efficient. Here, we give a description of different model choices that we've found to be necessary for obtaining competitive performance. We explore in particular different architectures based on Convolutional Neural Networks (CNN), i.e. DNNs specifically adapted to image data.

We present a novel CNN architecture which differs from those traditionally used in computer vision. Our CNN exploits both local features as well as more global contextual features simultaneously. Also, different from most traditional uses of CNNs, our networks use a final layer that is a convolutional implementation of a fully connected layer which allows a 40 fold speed up. We also describe a 2-phase training procedure that allows us to tackle difficulties related to the imbalance of tumor labels. Finally, we explore a cascade architecture in which the output of a basic CNN is treated as an additional source of information for a subsequent CNN. Results reported on the 2013 BRATS test dataset reveal that our architecture improves over the currently published state-of-the-art while being over 30 times faster.



from cs.AI updates on arXiv.org http://ift.tt/1HjYaBZ
via IFTTT

Predicting Occupancy Trends in Barcelona's Bicycle Service Stations Using Open Data. (arXiv:1505.03662v1 [cs.AI])

In 2008, the CEO of the company that manages and maintains the public bicycle service in Barcelona 1 recognized that one may not expect to always find a place to leave the rented bike nearby their destination, similarly to the case when, driving a car, people may not find a parking lot 2 . In this work, we make predictions about the statuses of the stations of the public bicycle service in Barcelona. We show that it is feasible to correctly predict nearly half of the times when the stations are either completely full of bikes or completely empty, up to 2 days before they actually happen. That is, users might avoid stations at times when they could not return a bicycle that they have rented before, or when they would not find a bike to rent. To achieve that, we apply the Random Forest algorithm to classify the status of the stations and improve the lifetime of the models using publicly available data, such as information about the weather forecast. Finally, we expect that the results of the predictions can be used to improve the quality of the service and make it more reliable for the users.



from cs.AI updates on arXiv.org http://ift.tt/1HgDLLa
via IFTTT

On the Complexity of Finding Second-Best Abductive Explanations. (arXiv:1204.5859v3 [cs.LO] UPDATED)

While looking for abductive explanations of a given set of manifestations, an ordering between possible solutions is often assumed. The complexity of finding/verifying optimal solutions is already known. In this paper we consider the computational complexity of finding second-best solutions. We consider different orderings, and consider also different possible definitions of what a second-best solution is.



from cs.AI updates on arXiv.org http://ift.tt/JKaiMv
via IFTTT

Graphlet-based lazy associative graph classification. (arXiv:1504.05457v2 [cs.DS] UPDATED)

The paper addresses the graph classification problem and introduces a modification of the lazy associative classification method to efficiently handle intersections of graphs. Graph intersections are approximated with all common subgraphs up to a fixed size similarly to what is done with graphlet kernels. We explain the idea of the algorithm with a toy example and describe our experiments with a predictive toxicology dataset.



from cs.AI updates on arXiv.org http://ift.tt/1IEPhzI
via IFTTT

Sevilla swats Fiorentina 5-0 to reach Europa League final

FLORENCE, Italy (AP) Defending champion Sevilla swatted aside Fiorentina 2-0 to reach the Europa League final 5-0 on aggregate on Thursday.

from FOX Sports Digital http://ift.tt/1Gax7HI
via IFTTT

[FD] Broken, Abandoned, and Forgotten Code, Part 4

Part 4 is up. An undersized malloc() during firmware decoding puts our hopes and dreams of persistent exploitation in peril. http://ift.tt/1KOG2h5 If you care to follow along, remote debugging with IDA Pro and QEMU will be useful, particularly starting in part 5. Check out my post on that topic, if you're interested. http://ift.tt/1AIcSPm Here's where I introduced the Broken, Abandoned series, if you missed it: http://ift.tt/1F6IUWA Ping me via email or on twitter (@zcutlip) with any questions or feedback! Cheers, Zach

Source: Gmail -> IFTTT-> Blogger

[FD] How to detect a promiscuous interface by using WMIC

Hello all, You can detect a promiscuous interface if you use Windows Management Instrumentation Command-line (WMIC). You don't need PromiscDetect and Promqry. # Command wmic /NAMESPACE:\\root\wmi PATH MSNdis_CurrentPacketFilter GET # NDIS_PACKET_TYPE 00000001 1 DIRECTED 00000010 2 MULTICAST 00000100 4 ALL_MULTICAST 00001000 8 BROADCAST 00010000 16 SOURCE_ROUTING 00100000 32 PROMISCUOUS 00001011 11 DIRECTED(1), MULTICAST(2), BROADCAST(8) 00101011 43 DIRECTED(1), MULTICAST(2), BROADCAST(8), PROMISC(32) # Non-promisc C:\>wmic /NAMESPACE:\\root\wmi PATH MSNdis_CurrentPacketFilter GET Active InstanceName NdisCurrentPacketFilter TRUE Microsoft ISATAP Adapter 0 TRUE Teredo Tunneling Pseudo-Interface 0 TRUE Intel(R) PRO/1000 MT Network Connection 11 <- Non-promisc TRUE WAN Miniport (Network Monitor) 0 TRUE WAN Miniport (IP) 0 TRUE WAN Miniport (IPv6) 0 TRUE RAS Async Adapter 0 # Promisc C:\>wmic /NAMESPACE:\\root\wmi PATH MSNdis_CurrentPacketFilter GET Active InstanceName NdisCurrentPacketFilter TRUE Microsoft ISATAP Adapter 0 TRUE Teredo Tunneling Pseudo-Interface 0 TRUE Intel(R) PRO/1000 MT Network Connection 43 <- Promisc!!! TRUE WAN Miniport (Network Monitor) 0 TRUE WAN Miniport (IP) 0 TRUE WAN Miniport (IPv6) 0 TRUE RAS Async Adapter 0 - How to detect a promiscuous interface by using WMIC http://ift.tt/1Jhm6W0

Source: Gmail -> IFTTT-> Blogger

[FD] Read heap overflow / invalid memory access in Wireshark

http://ift.tt/1cYUyZe The Wireshark parser code for Android Logcat network packages contained a read heap overflow in the function detect_version(). This issue was reported to the Wireshark developers on May 5th. It was fixed in the 1.12.5 release of Wireshark, published on May 12th. The beta release 1.99.5 and the Git head code are not affected. Appart from this issue Wireshark 1.12.5 fixes seven other security issues. http://ift.tt/1KOG20A Wireshark 1.12.5 Release Notes http://ift.tt/1L1zKvr Wireshark bug #11188 http://ift.tt/1HjGara Commit / fix http://ift.tt/1KOG20E Sample pcap file triggering the overflow (test with tshark -r [input], can be seen with valgrind or address sanitizer) http://ift.tt/1RDzC9P CVE-2015-3815

Source: Gmail -> IFTTT-> Blogger

[FD] Ambari Server 1.7.0 Local Privilege Escalation

Title: Ambari Server 1.7.0 Local Privilege Escalation Author: Julian Horoszkiewicz Description: An issue with ambari-root privilege separation model has been identified. The reason for this is that /var/lib/ambari-server/ambari-env.sh script is by default owned by user ambari, but executed as root. That opens the way for adding arbitrary commands to be executed as root if one has access to ambari user account. The ambari server itself runs with privileges of the dedicated user ambari (it drops privileges from root), but privilege reduction takes place scarcely after execution of the culprit script, which leads to privilege escalation. Either manual service restart by root, or system reboot has to be performed in order to get the malicious code executed. In order to mitigate the risk, file ownership should be changed to root.

Source: Gmail -> IFTTT-> Blogger

[FD] Hue 3.7.1 Local Privilege Escalation

Title: Hue 3.7.1 Local Privilege Escalation Author: Julian Horoszkiewicz Description: An issue with hue-root privilege separation model has been identified. The reason for this is that /usr/lib/hue/build/env/bin/supervisor python script is by default owned by user hue, but executed as root. That opens the way for adding arbitrary commands to be executed as root if one has access to hue user account. The hue server itself runs with privileges of the dedicated user hue (it drops privileges from root), nonetheless privilege reduction takes place scarcely after execution of the culprit script, which leads to privilege escalation. Either manual service restart by root or system reboot has to be performed in order to get the malicious code executed. In order to mitigate the risk, the ownership of that file should be changed to root.

Source: Gmail -> IFTTT-> Blogger

Barcelona forward Luis Suarez picks up hamstring strain

MADRID (AP) Barcelona says forward Luis Suarez has strained his left hamstring and will undergo physiotherapy.

from FOX Sports Digital http://ift.tt/1EHKk6h
via IFTTT

PCI Compliance Simplified: Get Trained and Avoid Security Breaches

Target’s data breach is a chilling example: After the widely publicized hack, 12% of loyal shoppers no longer shop at that retailer, and 36% shop at the retailer less frequently. For those who continue to shop, 79% are more likely to use cash instead of credit cards.  According to DeMeo, Vice President of Global Marketing and Analytics at Interactions Marketing Group, shoppers who use cash


from The Hacker News http://ift.tt/1RKgx6b
via IFTTT

Venom Vulnerability Exposes Most Data Centers to Cyber Attacks

Just after a new security vulnerability surfaced Wednesday, many tech outlets started comparing it with HeartBleed, the serious security glitch uncovered last year that rendered communications with many well-known web services insecure, potentially exposing Millions of plain-text passwords. But don’t panic. Though the recent vulnerability has a more terrific name than HeartBleed, it is not


from The Hacker News http://ift.tt/1EHuNUb
via IFTTT

Aston Villa fined over pitch invasion at end of FA Cup quarter-final

LONDON (AP) Aston Villa has been fined 200,000 pounds ($315,000) after fans invaded the pitch during the club's FA Cup quarterfinal match against West Bromwich Albion in March.

from FOX Sports Digital http://ift.tt/1Jhlsrn
via IFTTT

Weekend soccer in Argentina called off after player's death

BUENOS AIRES, Argentina (AP) All professional soccer matches in Argentina have been called off this weekend out of respect for a fourth-division player who died Thursday after fracturing his skull more than a week ago.

from FOX Sports Digital http://ift.tt/1HfTGt7
via IFTTT

Aston Villa fined after fans invade pitch during game

LONDON (AP) Aston Villa has been fined 200,000 pounds ($315,000) after fans invaded the pitch during the club's FA Cup quarterfinal match against West Bromwich Albion in March.

from FOX Sports Digital http://ift.tt/1cY19mS
via IFTTT

Court suspends strike in Spanish league ahead of last rounds

MADRID (AP) A Spanish court on Thursday suspended a strike called by the soccer players' union, allowing the final two rounds of the season to be played.

from FOX Sports Digital http://ift.tt/1QMqKNQ
via IFTTT

I have a new follower on Twitter


Rene Higuita



Following: 1113 - Followers: 113

May 14, 2015 at 10:55AM via Twitter http://twitter.com/rene01higuita

4th-division player in Argentina dies after skull fracture

BEUNOS AIRES, Argentina (AP) A 21-year-old professional soccer player in Argentina has died after fracturing his skull more than a week ago in a fourth-division match.

from FOX Sports Digital http://ift.tt/1EH1Kjy
via IFTTT

Marseille coach Bielsa still waiting for contract offer

MARSEILLE, France (AP) Marseille coach Marcelo Bielsa is still waiting to see if he will be offered a contract for next season.

from FOX Sports Digital http://ift.tt/1IAquAq
via IFTTT

Lazio heading into season-defining week as fights for 2nd

MILAN (AP) Lazio is heading into a week which will define its season.

from FOX Sports Digital http://ift.tt/1EH1IIp
via IFTTT

ISS Daily Summary Report – 05/13/15

Combustion Integration Rack (CIR) Multi-user Droplet Combustion Apparatus (MDCA) Replace: In preparation for the start of FLame Extinguishment Experiment (FLEX)-2J, Virts removed the MDCA Chamber Insert Assembly (CIA) from the CIR Combustion Chamber and replaced the MDCA Needles, fuel reservoirs, MDCA Igniter Tips and the MDCA Fiber Arm. Following the changeouts, he reinstalled the MDCA CIA into the CIR Combustion Chamber. Ground controllers will perform calibrations from the ground prior to the first planned test of the FLEX-2J in early June. FLEX-2J studies the interactions of flames on the ignition (or non-ignition) and motion of millimeter-sized droplets. The experiment operates in the CIR and consists of a linear array of droplets, several of which are fixed, while the others are free to move along the support fiber. The fixed droplets are ignited and the resulting flame spread and motion of the droplets observed with the CIR diagnostic cameras. The experiment extends the results of single droplet studies to the conditions where droplet-droplet interactions are important. This provides insight into the fundamental physics of practical combustors. Specifically, droplets in practical combustors interact with each other as a flame spreads through a fuel spray. This includes not only how the flame spreads between the droplets, but also how the flame influences the motion of the droplets. JEM Airlock (JEMAL) Slide Table Preparation: Kelly installed the Small Fine Arm (SFA) Attachment Mechanism (SAM) and Multi-Purpose Experiment Platform (MPEP) to the JEMAL Slide Table and retracted the table back into the airlock. Tomorrow Kelly will install the JAXA exposure experiments, ExHAM and Tanpopo. Node 3 (N3) Power Reconfiguration: Cristoferetti partially installed the N3 Forward Permanent Multipurpose Module (PMM) power cable which will provide power to the PMM when it is relocated to N3 Forward. The relocation is currently planned for May 27. Node 1 (N1) Stowage/Relocation: Cristoferetti continued moving infrequently used hardware from N1 to Permanent Multipurpose Module (PMM)-1. The relocation is to create space in the N1 for food stowage and the Galley Rack scheduled to arrive in August on H-II Transfer Vehicle (HTV)-5. Dragon Cargo Transfer Operations: As of today, the crew is 85% complete with SpX-6 cargo operations.  ISS Server 1:  The onboard server 1 experienced a degraded ultrabay hard drive today.  The crew replaced the drive with a spare, and ground teams are currently reloading data from the available backups.  This operation is expected to be completed before crew wake tomorrow. Today’s Planned Activities All activities were completed unless otherwise noted. Self-Reaction Test. Reaction Time Test (morning) WRS – Recycle Tank Fill OTKLIK. Hardware Check XF305 Camcorder Settings Adjustment JEM Airlock Slide Table (ST) Extension to JPM Side NAPOR-miniRSA. Cleaning БЗУ-М Vents Airlock Attachment Mechanism (SAM) Installation OBSTANOVKA. Download of Obstanovka P/L Data (start) Life On The Station Photo and Video VIZIR. Experiment Ops Airlock Attachment Mechanism (SAM) Installation – Assistance Life On The Station Photo and Video MSG – Locating lost filter caps DAN. Experiment Ops. Tagup with specialists DAN. Photography of the Experiment Ops JEM Airlock – Releasing Capture Mechanism Life On The Station Photo and Video JEM Airlock – Slide Table Retraction JEM Airlock Slide Table (ST) Extension to JPM Side Installation of Multi-Purpose Experiment Platform Part 1 CIR – Video Setup and Rack Doors Open Multi-Purpose Experiment Platform Installation Support JEMAL – MPEP Capture DRAGON. Transfers Ops CIR – Hardware Activation and Vide Ops Installation of Multi-Purpose Experiment Platform Part 2 MDCA – Equipment Transfer (Part 1) JEM Airlock – Slide Table Retraction Closing USOS Window Shutters OBSTANOVKA. Download of Obstanovka P/L Data (end) WRS – Recycle Tank Fill Private Medical Conference Actiwatch – Hardware Setup Actiwatch spectrum configuration modification for data collection WHC Fill Life On The Station Photo and Video ALGOMETRIA. Experiment Ops MDCA – Equipment Transfer (Part 2) Node3 Power Reconfiguration Audit of Personal Hygiene Articles WHC Fill СОЖ Maintenance Waste and Hygiene Compartment (WHS) Urine Receptacle and Insert Filter Changeout Rodent Research (RR) – Stowage Prepack DRAGON. Transfers Ops CIR – Front End Cap Closure PROBOY. Document review and equipment gathering r/g 8800 CIR – Rack Doors Closure IMS Delta File Prep CONTENT. Experiment Ops Self-Reaction Test. Reaction Time Test (evening) Completed Task List Items Capillary Beverage Galley Demonstration [In Work] Ground Activities All activities complete unless otherwise noted. JEMAL ops CIR ops Three-Day Look Ahead: Thursday, 05/14: JEMAL Slide Table activities (ExHAM, Tanpopo install), HXP sampling Friday, 05/15: Restocking rodent habitat, Micro Observatory sampling Saturday, 05/16: Crew off duty, housekeeping, Dragon transfer ops QUICK ISS Status – Environmental Control Group:                               Component Status Elektron On Vozdukh Manual [СКВ] 1 – SM Air Conditioner System (“SKV1”) On [СКВ] 2 – SM Air Conditioner System (“SKV2”) Off Carbon Dioxide Removal Assembly (CDRA) Lab Operate Carbon Dioxide Removal Assembly (CDRA) Node 3 Standby Major Constituent Analyzer (MCA) Lab Shutdown Major Constituent Analyzer (MCA) Node 3 Operate Oxygen Generation Assembly (OGA) Process Urine Processing Assembly (UPA) Process Trace Contaminant Control System (TCCS) Lab Off Trace Contaminant Control System (TCCS) Node 3 Full Up  

from ISS On-Orbit Status Report http://ift.tt/1HfADiz
via IFTTT

I have a new follower on Twitter


Salvo Auto Parts



Following: 158 - Followers: 85

May 14, 2015 at 09:32AM via Twitter http://twitter.com/salvoautoparts

I have a new follower on Twitter


Emplois Montpellier
Liste des dernières offres d'emploi sur Montpellier. http://t.co/ncFbDeKyrF
Montpellier
http://t.co/ncFbDeKyrF
Following: 2715 - Followers: 2860

May 14, 2015 at 09:17AM via Twitter http://twitter.com/MontpellierJobs

Liverpool bids farewell to Gerrard, a humble hometown icon

LIVERPOOL, England (AP) Ask Liverpool fans what they'll miss most about Steven Gerrard when he leaves for the United States and they'll reel off a list of qualities that made their long-time captain one of the most revered players in English football.

from FOX Sports Digital http://ift.tt/1EGAkdB
via IFTTT

With strike off, Barcelona can clinch title at Atletico

MADRID (AP) With the Champions League and Copa de Rey still to come, Barcelona can wrap up the Spanish league title on Sunday.

from FOX Sports Digital http://ift.tt/1JKiDgM
via IFTTT

PSG cautious of Montpellier trap in French league

PARIS (AP) A final hurdle remains on Paris Saint-Germain's road to a third straight French title, and it should be taken seriously.

from FOX Sports Digital http://ift.tt/1Fg6C2U
via IFTTT

American goalkeeper Friedel to retire at end of season

LONDON (AP) Tottenham goalkeeper Brad Friedel will retire at the end of the Premier League season, closing a 23-year professional career to become a television announcer for Fox Sports in his native United States.

from FOX Sports Digital http://ift.tt/1JgzfyD
via IFTTT

Stuttgart hosts Hamburg as 6 clubs battle against relegation

FRANKFURT, Germany (AP) Six teams are still fighting against relegation in the Bundesliga with two rounds remaining in the season, including such traditional clubs as Hamburger SV and Stuttgart.

from FOX Sports Digital http://ift.tt/1A2bNTS
via IFTTT

Court suspends strike in Spanish league

MADRID (AP) A Spanish court has suspended a strike called by the soccer players' union, allowing the final two rounds of the season to go forward.

from FOX Sports Digital http://ift.tt/1K7RpUF
via IFTTT

Anonymous: Serviteur suis

Anonymous: Serviteur suis. Click for samples. Anonymous. Serviteur suis. For SATB Instruments. R106Y021. Anonymous: Serviteur suis. Pages of ...

from Google Alert - anonymous http://ift.tt/1e2X1SE
via IFTTT

From Europa League to possible relegation for Hull

MANCHESTER, England (AP) Hull started the season competing in Europe for the first time in its history, and could end it by dropping out of the English Premier League.

from FOX Sports Digital http://ift.tt/1RIw9XF
via IFTTT

[FD] SEC Consult SA-20150514-0 :: Multiple vulnerabilities in Loxone Smart Home (part 2)

SEC Consult Vulnerability Lab Security Advisory < 20150514-0 > ======================================================================= title: Multiple vulnerabilities product: Loxone Smart Home vulnerable version: Firmware version <6.4.5.12 fixed version: 6.4.5.12 impact: Critical homepage: http://www.loxone.com found: 2015-03-12 by: Johannes Greil (Office Vienna) SEC Consult Vulnerability Lab An integrated part of SEC Consult Berlin - Frankfurt/Main - Montreal - Singapore Vienna (HQ) - Vilnius - Zurich http://ift.tt/1mGHMNR ======================================================================= Vendor & product description:

Source: Gmail -> IFTTT-> Blogger

LRO Lowers Periapsis

On May 4, 2015, Lunar Reconnaissance Orbiter (LRO) maneuvered into a new orbit that brings it closer than ever to the south pole of the Moon. The orbit is elliptical, with a closest approach, called periapsis, within 20 kilometers of the surface. The far end of the orbit (apoapsis) is roughly 165 kilometers above the north pole. The new orbit is relatively stable, requiring little fuel to maintain. The illustration shows LRO flying over the terrain of the south pole. The terrain is a visualization that uses digital elevation maps from LRO's laser altimeter.

from NASA's Scientific Visualization Studio: Most Popular
via IFTTT

The Magnificent Horsehead Nebula


Sculpted by stellar winds and radiation, a magnificent interstellar dust cloud by chance has assumed this recognizable shape. Fittingly named the Horsehead Nebula, it is some 1,500 light-years distant, embedded in the vast Orion cloud complex. About five light-years "tall", the dark cloud is cataloged as Barnard 33 and is visible only because its obscuring dust is silhouetted against the glowing red emission nebula IC 434. Stars are forming within the dark cloud. Contrasting blue reflection nebula NGC 2023, surrounding a hot, young star, is at the lower left. The gorgeous featured image combines both narrowband and broadband images. via NASA http://ift.tt/1G54ZFU

Wednesday, May 13, 2015

Re: [FD] Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250

> > Advisory Timeline >

Source: Gmail -> IFTTT-> Blogger

Orioles Highlight: Manny Machado's RBI double sparks 5-run 2nd, Rey Navarro hits 1st career HR in 6-1 win vs. Blue Jays (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

I have a new follower on Twitter


Panther Consulting
International consulting firm specializing in complex mergers & acquisition (M&A) cases including post-merger integration (PMI) and joint-venture (JV) creation
Copenhagen, Denmark
http://t.co/l56wDtV0yX
Following: 2695 - Followers: 2647

May 13, 2015 at 09:43PM via Twitter http://twitter.com/Panther_M_and_A

Exploring Strategy-Proofness, Uniqueness, and Pareto Optimality for the Stable Matching Problem with Couples. (arXiv:1505.03463v1 [cs.GT])

The Stable Matching Problem with Couples (SMP-C) is a ubiquitous real-world extension of the stable matching problem (SMP) involving complementarities. Although SMP can be solved in polynomial time, SMP-C is NP-Complete. Hence, it is not clear which, if any, of the theoretical results surrounding the canonical SMP problem apply in this setting. In this paper, we use a recently-developed SAT encoding to solve SMP-C exactly. This allows us to enumerate all stable matchings for any given instance of SMP-C. With this tool, we empirically evaluate some of the properties that have been hypothesized to hold for SMP-C.

We take particular interest in investigating if, as the size of the market grows, the percentage of instances with unique stable matchings also grows. While we did not find this trend among the random problem instances we sampled, we did find that the percentage of instances with an resident optimal matching seems to more closely follow the trends predicted by previous conjectures. We also define and investigate resident Pareto optimal stable matchings, finding that, even though this is important desideratum for the deferred acceptance style algorithms previously designed to solve SMP-C, they do not always find one.

We also investigate strategy-proofness for SMP-C, showing that even if only one stable matching exists, residents still have incentive to misreport their preferences. However, if a problem has a resident optimal stable matching, we show that residents cannot manipulate via truncation.



from cs.AI updates on arXiv.org http://ift.tt/1cVvxhQ
via IFTTT

Tree-like Queries in OWL 2 QL: Succinctness and Complexity Results. (arXiv:1406.3047v2 [cs.AI] UPDATED)

This paper investigates the impact of query topology on the difficulty of answering conjunctive queries in the presence of OWL 2 QL ontologies. Our first contribution is to clarify the worst-case size of positive existential (PE), non-recursive Datalog (NDL), and first-order (FO) rewritings for various classes of tree-like conjunctive queries, ranging from linear queries to bounded treewidth queries. Perhaps our most surprising result is a superpolynomial lower bound on the size of PE-rewritings that holds already for linear queries and ontologies of depth 2. More positively, we show that polynomial-size NDL-rewritings always exist for tree-shaped queries with a bounded number of leaves (and arbitrary ontologies), and for bounded treewidth queries paired with bounded depth ontologies. For FO-rewritings, we equate the existence of polysize rewritings with well-known problems in Boolean circuit complexity. As our second contribution, we analyze the computational complexity of query answering and establish tractability results (either NL- or LOGCFL-completeness) for a range of query-ontology pairs. Combining our new results with those from the literature yields a complete picture of the succinctness and complexity landscapes for the considered classes of queries and ontologies.



from cs.AI updates on arXiv.org http://ift.tt/1ojdqWM
via IFTTT

Answering Conjunctive Queries over $\mathcal{EL}$ Knowledge Bases with Transitive and Reflexive Roles. (arXiv:1411.2516v3 [cs.AI] UPDATED)

Answering conjunctive queries (CQs) over $\mathcal{EL}$ knowledge bases (KBs) with complex role inclusions is PSPACE-hard and in PSPACE in certain cases; however, if complex role inclusions are restricted to role transitivity, the tight upper complexity bound has so far been unknown. Furthermore, the existing algorithms cannot handle reflexive roles, and they are not practicable. Finally, the problem is tractable for acyclic CQs and $\mathcal{ELH}$, and NP-complete for unrestricted CQs and $\mathcal{ELHO}$ KBs. In this paper we complete the complexity landscape of CQ answering for several important cases. In particular, we present a practicable NP algorithm for answering CQs over $\mathcal{ELHO}^s$ KBs---a logic containing all of OWL 2 EL, but with complex role inclusions restricted to role transitivity. Our preliminary evaluation suggests that the algorithm can be suitable for practical use. Moreover, we show that, even for a restricted class of so-called arborescent acyclic queries, CQ answering over $\mathcal{EL}$ KBs becomes NP-hard in the presence of either transitive or reflexive roles. Finally, we show that answering arborescent CQs over $\mathcal{ELHO}$ KBs is tractable, whereas answering acyclic CQs is NP-hard.



from cs.AI updates on arXiv.org http://ift.tt/1ysaY0s
via IFTTT

[FD] New release of,STONIX OS hardening tool

STONIX is an operating system configuration hardening tool for Unix and Unix like (e.g. Linux) operating systems. This tool implements a hybrid of guidance from NSA, DISA STIGs, USGCB and the CIS. To as great of a degree as possible each guidance element for each platform is evaluated on the other platforms for applicability and applied if possible. Repository at: http://ift.tt/1ICdj0f The STONIX program is a modular codebase implemented in Python (currently using the 2.x dialect, a port to Python 3.0 is in future planning). Python was selected due to it being part of the default install on all target platforms. The program is primarily a command-line utility but there is a robust GUI built in. The GUI is implemented in PyQt. Many platform packages will not express a dependency on PyQt due to the GUI's optional nature. At the present time (revision 0.8.16) the following platforms are used for development and test: Red Hat Enterprise Linux v6 and v7. Fedora Linux v20 & 21. OpenSuSE 12.2. Debian (stable). Ubuntu 14.04. CentOS v7. Apple OS X v10.9 and v 10.10. Close derivatives of these Operating Systems should be well supported, more distant cousins less so. STONIX uses a Major.Minor.Release versioning scheme. At present STONIX is in an Alpha, not feature complete stage. Every attempt is made to ensure that the code is production ready, but the features are not yet complete and there will be functionality changes in future revisions. When reporting issues in STONIX please fully document the specific functionality that is causing a problem. We will likely need sample configuration files that cause the section of STONIX to have issues. A copy of the debug output is also very valuable. Report your issue via the STONIX github issue tracker. We encourage reporting, and hope to attract contributors. Regards, -Roy Nielsen

Source: Gmail -> IFTTT-> Blogger

[FD] Multiple Vulnerabilities in Openlitespeed <= 1.3.10 - CVE-b045-73d a.k.a. Analbleed.

This is an irresponsible disclosure of the vulnerability, which will bring large parts of the Internet into its knees - CVE-b045-73d a.k.a Analbleed. Obviously you can find the fancy logo for it below (officially approved by the security community and industry worldwide). You can also listen to the O.S.T. on the vuln's official website free of charge (as for now) here at http://analbleed.com. If you are interested in purchasing t-shirts, cups, stickers etc. visit our on-line shop on the same page. Special offer includes also a vademecum treating about all logo branded vulns released so far. You can now focus on studying their names, logos and more instead of actually doing your own research. Knowing life the logo formatting will break;P But not to worry my friend. Visit the official web page to please your eyes with it. http://ift.tt/1Pkdlzn.: May 2013 : It is used by 2% of all websites according to W3Techs,[9] making it the 4th most popular web servers. Yup, whatever. Please, think of the kittens - http://ift.tt/Ygd84T Ok, here comes the Analbleed pain... +` `+++, .+++++: :+++++++' ++++++++++' +++++++++++++ +++++++++++++++ +++++++++++++++++ +++++++++++++++++++ +++++++++++++++++++++ +++++++++++++++++++++++ +++++++++++++++++++++++++` `+++++++++++++++++++++++++++, `+++++++++++++++++++++++++++++. .+++++++++++++++++++++++++++++++: :++++++++++++++++ ++++++++++++++++: ;++++++++++++++++ ++++++++++++++++; '++++++++++++++++ ++++++++++++++++; +++++++++++++++++ ++++++++++++++++; +++++++++++++++++ ++++++++++++++++' +++++++++++++++++ '+++++++++++++++' ++++++++++++++++' '+++++++++++++++' ++++++++++++++++: :+++++++++++++++' `++++++++++++++++, ,++++++++++++++++ `++++++++++++++++` `++++++++++++++++ ,++++++++++++++++ ++++++++++++++++ ,++++++++++++++++ `,,` ++++++++++++++++ ,++++++++++++++++ :++++++' ++++++++++++++++ ,++++++++++++++++ ++++++++++` ++++++++++++++++ :++++++++++++++++ +++++++++++' ++++++++++++++++ ,++++++++++++++++ ,++++++++++++. ++++++++++++++++ ,++++++++++++++++ +++++++++++++: ++++++++++++++++ ,++++++++++++++++ ;+++++++++++++: ++++++++++++++++ `++++++++++++++++ ++++++++++++++. '+++++++++++++++ `+++++++++++++++' +++++++++++++' '+++++++++++++++ +++++++++++++++' :+++++++++++++` '+++++++++++++++ +++++++++++++++' ++++++++++++: '+++++++++++++++ +++++++++++++++' ++++++++++` '+++++++++++++++ +++++++++++++++' ++++++++++ '+++++++++++++++ +++++++++++++++' ++++++++++ '+++++++++++++++ '++++++++++++++' `++++++++++ '+++++++++++++++ :+++++++++++++++ ,+++++++++; '++++++++++++++: `+++++++++++++++ ;+++++++++. +++++++++++++++` +++++++++++++++ '+++++++++` +++++++++++++++ +++++++++++++++ '+++++++++` +++++++++++++++ '++++++++++++++ ++++++++++ +++++++++++++++ .++++++++++++++ ++++++++++ ++++++++++++++. ++++++++++++++` ++++++++++ ++++++++++++++ ++++++++++++++: ++++++++++ ,++++++++++++++ .+++++++++++++' ++++++++++ '+++++++++++++, ++++++++++++++ ++++++++++ ++++++++++++++ '+++++++++++++ ++++++++++ ++++++++++++++ +++++++++++++` ++++++++++` +++++++++++++ +++++++++++++' '+++++++++` '+++++++++++++ +++++++++++++ '+++++++++` +++++++++++++` +++++++++++++ ;+++++++++. +++++++++++++ ++++++++++++' ,+++++++++, '++++++++++++ +++++++++++++ `+++++++++; +++++++++++++ ++++++++++++, `++++++++++ ,++++++++++++ `++++++++++++ ++++++++++ ++++++++++++, ++++++++++++, ++++++++++ .++++++++++++ ++++++++++++ ++++++++++ ++++++++++++ +++++++++++' ++++++++++` '+++++++++++ .+++++++++++ '+++++++++: +++++++++++. ;+++++++++++ .++++++++++ +++++++++++; ++++++++++++ ++++++++++ ++++++++++++ ++++++++++++ ++++++++++ ++++++++++++ +++++++++++; ++++++++++. ;+++++++++++ +++++++++++, '+++++++++' ,+++++++++++ +++++++++++, .++++++++++ .+++++++++++ +++++++++++. ++++++++++ .+++++++++++ +++++++++++. ++++++++++' .+++++++++++ +++++++++++, ;++++++++++ .+++++++++++ +++++++++++; `+++++++++++ :+++++++++++ ++++++++++++ ++++++++++++ ++++++++++++ ++++++++++++ '+++++++++++, ++++++++++++ ;+++++++++++ ++++++++++++ +++++++++++; .+++++++++++ +++++++++++++ +++++++++++. +++++++++++' +++++++++++++++ '+++++++++++ ++++++++++++ +++++++++++++++++ ++++++++++++ ++++++++++++: +++++++++++++++++++ ,++++++++++++ `++++++++++++ +++++++++++++++++++++ ++++++++++++. +++++++++++++ .+++++++++++++++++++++++, +++++++++++++ '++++++++++++' '+++++++++++++++++++++++++' '+++++++++++++ ++++++++++++++ +++++++++++++++++++++++++++++ '+++++++++++++ +++++++++++++++ '++++++++++++++++++++++++++++++++ +++++++++++++++ ++++++++++++++++ '+++++++++++++++++++++++++++++++++++' '+++++++++++++++ '+++++++++++++++++` `++++++++++++++++++++`++++++++++++++++++++. `+++++++++++++++++' ++++++++++++++++++++',...,+++++++++++++++++++++++ +++++++++++++++++++++++,...,'++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++ `+++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++. ,+++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++++++++++++++++++++++: ,++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++, +++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++++++++++++++++++++` ++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++ ,++++++++++++++++++++++++++++++++++++++ +++++++;+++++++++++++++++++++++++++++++, ;+++++++++++++++++++++++++++'++++++++ +++++++ '+++++++++++++++++++++++++++; :+++++++++++++++++++++++: ++++++++ +++++++ :+++++++++++++++++++++++: '+++++++++++++++++++ ++++++++ +++++++ '+++++++++++++++++' .;+++++++++;` +++ ++++++++ +++++++ `;+++++++++'. +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ ++++++++ +++++++ +++ +++++++ +++++++ +++ ++++++ +++++++ +++ + +++++++ +++ +++++++ +++ +++++++ +++ +++++++ +++ +++++++ ++ +++++++ +++++++ +++++++ +++++++ +++++++ ++++++ ++++++ ++++ Bigger the better. Don't you think? source: ======= int Appender::append(LoggingEvent *pEvent) { char achBuf[9000]; char *pMessage = achBuf; int len; if (!pEvent) return -1; Layout *pLayout; if (pEvent->m_pLayout) pLayout = pEvent->m_pLayout; else pLayout = m_pLayout; ; this path is taken, m_pLayout is on overwritten heap if (pLayout) len = pLayout->format(pEvent, pMessage, sizeof(achBuf)); ; SIGSEGV here else { pMessage = (char *)pEvent->m_pMessageBuf; len = pEvent->m_iMessageLen; } return append(pMessage, len); } gdb (aftermath): ================ Program received signal SIGSEGV, Segmentation fault.

Source: Gmail -> IFTTT-> Blogger

[FD] Concrete5 Security Advisory - Multiple XSS Vulnerabilities - CVE-2015-2250

Information

Source: Gmail -> IFTTT-> Blogger

Ravens: CB Kyle Arrington agrees to 3-yr deal, pending a physical; 9 INT, 48 passes defended in 6 seasons with Patriots (ESPN)

from ESPN http://ift.tt/17lH5T2
via IFTTT

Rob Gronkowski or Odell Beckham Jr. to be revealed as Madden NFL 16 cover athlete coming up live on SportsCenter on ESPN (ESPN)

from ESPN http://ift.tt/17lH5T2
via IFTTT

Juventus ousts Real Madrid to reach Champions League final

MADRID (AP) Alvaro Morata shocked his former team with a 57th-minute goal, and Juventus reached its first Champions League final since 2003 with a 1-1 tie against defending champion Real Madrid on Thursday night that gave the Italian club a 3-2 aggregate win.

from FOX Sports Digital http://ift.tt/1PHhjwT
via IFTTT

Juventus draws 1-1 with Real Madrid to reach CL final

MADRID (AP) Juventus came back from a goal down to draw 1-1 with Real Madrid on Wednesday and reach the Champions League final against Barcelona with a 3-2 victory on aggregate.

from FOX Sports Digital http://ift.tt/1PjOtaR
via IFTTT

Talks underway to try and resolve Spain soccer strike

MADRID (AP) Spanish soccer officials and the country's players' union are having last-minute talks to see if they can agree to call off a strike that threatens to stop league and cup games from Saturday.

from FOX Sports Digital http://ift.tt/1JIaQA7
via IFTTT

I have a new follower on Twitter


Brightbox
Seriously fast cloud servers, balanced across two UK datacentres, in seconds. https://t.co/rn5e3OuWi0
Leeds, UK
https://t.co/s5fYjh9nFE
Following: 3200 - Followers: 3232

May 13, 2015 at 02:01PM via Twitter http://twitter.com/brightbox

[FD] [CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities

[FD] Web India Solutions CMS 2015 - SQL Injection Vulnerability

Document Title: =============== Web India Solutions CMS 2015 - SQL Injection Vulnerability References (Source): ==================== http://ift.tt/1zYTWNm Release Date: ============= 2015-05-13 Vulnerability Laboratory ID (VL-ID): ==================================== 1495 Common Vulnerability Scoring System: ==================================== 8.3 Product & Service Introduction: =============================== Our Website Designing and Development services include Website redesigning, creation of Responsive Websites, Website content updates, E-commerce Website designing etc. You can contact us for all the website related services. We use HTML5, CSS3, JavaScript, Ajax, PHP, WordPress and Joomla for Development and Content Management. (Copy of the Vendor Homepage: http://ift.tt/1bPEI1P ) Abstract Advisory Information: ============================== An independent vulnerability laboratory researcher discovered a remote sql injection web vulnerability in the official CMS Web India Solutions (2015 Q2). Vulnerability Disclosure Timeline: ================================== 2015-05-13: Public Disclosure (Vulnerability Laboratory) Discovery Status: ================= Published Affected Product(s): ==================== Web India Solutions Product: Content Management System 2015 Q2 Exploitation Technique: ======================= Remote Severity Level: =============== High Technical Details & Description: ================================ Multiple remote sql injection vulnerabilities has been discovered in the official Content Management System Web India Solutions (2015 Q2). The vulnerability allows remote attackers to execute own sql commands to compromise the web-applicaation or database management system. The vulnerabilities are located in the id value of the `departments.php`,`offers.php` and `photogallery_view.php` files. Remote attackers are able to execute own sql commands by manipulation of the GET method request with the vulnerable id value. The request method to inject the command is GET and the issue is located on the application-side. The security risk of the sql injection vulnerability is estimated as high with a cvss (common vulnerability scoring system) count of 8.3. Exploitation of the remote sql injection web vulnerability requires no user interaction or privileged web-application user account. Successful exploitation of the remote sql injection results in dbms, web-server and web-application compromise. Request Method(s): [+] GET Vulnerable File(s): [+] departments.php [+] offers.php [+] photogallery_view.php Vulnerable Parameter(s): [+] id Proof of Concept (PoC): ======================= The remote sql injection web vulnerability can be exploited by remote attackers without user interaction or privilege web-application user account. For security demonstration or to reproduce follow the provided information and steps below to continue. Dork(s): intext:"Website Development Web India Solutions" +inurl:.php?id= PoC: Payload(s) http://ift.tt/1G6AIqe[]'[SQL INJECTION VULNERABILITY!] SQLMAP Payload(s): sqlmap -u http://ift.tt/1AEUJOr[] --dbs --tamper modsecurityzeroversioned.py sqlmap -u http://ift.tt/1AEUJOr[] -D [DB_NAME] --tables --tamper modsecurityzeroversioned.py,space2morehash.py sqlmap -u http://ift.tt/1AEUJOr[] --dump -D [DB_NAME] -T cms_admin --tamper modsecurityzeroversioned.py,space2morehash.py Note: To get "DB-NAME" AND "USER&PASS" you should bypass security by using SQLMAP!

Source: Gmail -> IFTTT-> Blogger

Spanish judge lets court case against Barcelona proceed

MADRID (AP) Spain's National Court has accepted the state prosecutor's request to open a trial against Barcelona, club president Josep Bartomeu, and his predecessor Alexandre ''Sandro'' Rosell for alleged tax evasion linked to the signing of Neymar.

from FOX Sports Digital http://ift.tt/1PiZaum
via IFTTT

Former FIFA VP banned for 8 years in 2022 World Cup case

GENEVA (AP) In a ruling that could lead to the downfall of more high-level soccer officials, FIFA banned a former vice president for eight years for taking money from Mohamed bin Hammam, one of the key backers of Qatar's successful World Cup bid.

from FOX Sports Digital http://ift.tt/1KJxV5w
via IFTTT

Ravens: John Harbaugh says team \"looking for defensive backs;\" CB Kyle Arrington (released by NE on Monday) an option (ESPN)

from ESPN http://ift.tt/17lH5T2
via IFTTT

ISS Daily Summary Report – 05/12/15

Rodent Research-2 Center for the Advancement of Science in Space (RR-2 CASIS): Kelly performed a fixative flush and swapped the samples collected yesterday which he inserted into MELFI.  The primary objective of this research is to monitor the effects of the space environment on the musculoskeletal and neurological systems of mice as model organisms of human health and disease. Living in microgravity results in significant and rapid effects on the physiology of mice that mimic the process of aging and some diseases in humans on Earth, including muscle atrophy and the loss of bone mineral density. This project will help scientists to discover new molecular targets that can facilitate the development of novel therapeutics for the treatment of muscle and bone-related diseases. Long-duration exposure to microgravity will also induce changes in gene expression, protein synthesis, metabolism, and eye structure/morphology that will be identifiable as a series of assessable biomarkers for tracking the onset and progression of disease. 1-Year Mission (1YM) Human Research Program (HRP) Science Operations: Kelly performed the following suite of HRP activities today.  The Sleep ISS-12 experiment monitors ambient light exposure and crew member activity and collects subjective evaluations of sleep and alertness to examine the effects of space flight and ambient light exposure on sleep during a year-long mission on the ISS.  In the Fine Motor Skills experiment, crew members perform a series of interactive tasks on a touchscreen tablet. The investigation is the first fine motor skills study to measure long-term microgravity exposure, different phases of microgravity adaptation, and sensorimotor recovery after returning to Earth gravity. Individualized Real-Time Neurocognitive Assessment Toolkit for Space Flight Fatigue (Cognition) is a battery of tests that measure how spaceflight-related physical changes, such as microgravity and lack of sleep, can affect cognitive performance. Cognition includes ten brief computerized tests that cover a wide range of cognitive functions, and provides immediate feedback on current and past test results. The software allows for real-time measurement of cognitive performance while in space. Combustion Integration Rack (CIR) Hardware Gather: Virts gathered the equipment for the CIR reconfiguration from FLame Extinguishment Experiment (FLEX)-2 to the FLEX-2J scheduled for Wednesday.  Node 1 (N1) and Node 2 (N2) Bacteria/Charcoal Filter Remove & Replace (R&R): Virts removed N1 bacteria filters and replaced them with charcoal filters. Using charcoal filters in Node 1 will reduce the ISS atmospheric Polydimethylsiloxane (PDMS) concentration. Reducing the PDMS atmospheric concentration will subsequently reduce the quantity of dimethylsilanediol (DMSD) produced in the Common Cabin Air Assembly (CCAA) Condensing Heat Exchangers, thereby extending the life of the Multifiltration (MF) Beds that are in a zero spare posture. The bacteria filters that were removed from the N1 will replace the N2 Bacteria filters that were scheduled to be replace per preventative maintenance schedule. Robotics Refueling Mission (RRM) Hardware Removal: Following the conclusion of last week’s RRM activities, Cristoferetti extended the JEMAL Slide Table (ST) into the Japanese Experiment Module Pressurized Module (JPM), brought the RRM Task Board-2 and Safety Cap Tool (SCT) into the ISS habitable volume and removed them from the JEMAL ST. The ST was then retracted from the JPM side and the inner hatch was closed. Node 1 (N1) Stowage/Relocation: Cristoferetti began this activity to move infrequently used hardware from N1 to Permanent Multipurpose Module (PMM)-1. This is to create space in the N1 for food stowage and the Galley Rack scheduled to arrive in August on H-II Transfer Vehicle (HTV)-5. Dragon Cargo Transfer Operations: As of today, the crew has approximately 11 hours of SpX-6 cargo operations remaining. Today’s Planned Activities All activities were completed unless otherwise noted. SLEEP – Questionnaire Regeneration of БМП Ф2 Micropurification Cartridge (start) Cleaning fan grilles on FGB interior  201, 301, 401 PROX Power Switch ON Life On The Station Photo and Video Node 1 Stowage – Part 3 CIR Hardware Gather FINEMOTR – Experiment Ops RRM. OBT, Procedure Overview Cleaning fan grilles on FGB interior panels 116, 316, 231, 431 Robotic Refueling Mission (RRM) Removal Procedure Review MRM1-FGB Screw Clamp Tightening JEM Airlock Slide Table (ST) Extension to JPM Side DRAGON. Transfers Ops Verification of ИП-1 Flow Sensor Position RRM. Hardware Assembly VIZIR. Experiment Ops Dust Filter Replacement and MRM1 Gas-Liquid Heat Exchanger Cleaning Activation of FS1 File Server. JEM Airlock – Slide Table Retraction СТТС Configuration for MRM2 Heart Rate Monitor (HRM) iPad Data Transfer to ISS Server WRS – Recycle Tank Fill from EDV Testing iPAD full network access capabilities on the RS. Replacing ИДЭ-3 Smoke Detectors in MRM2 PROX Switch OFF DRAGON. Transfers Ops Audit of ВП1 fuses in SM Rodent Research (RR) – Fixative Swap Node 1 Bacteria/Charcoal Filter Remove and Replace DRAGON.  Transfers Ops ALGOMETRIA. Experiment Ops Test activation of Vozdukh Atmosphere Purification  System Emergency Vacuum Valves ISS RS Plug-In Audit Changeout of Dust Filter Cartridges in SM Dragon -Transfers Tagup Node2 Bacteria/Charcoal Filter Remove and Replace Dragon Cargo Operations Conference СОЖ Maintenance Rodent Research (RR) – Sample MELFI Insertion MSG – Powerdown Rodent Research (RR) – Cleaning Animal Access Unit WRS – Recycle Tank Fill from EDV IMS Delta File Prep Historical Documentation. Photography of Synthetic Muscle Relocate Rodent Tissue Boxes returning on SpX-6 and stow ACE Heated sample which arrived on SpX-6 CIR – Post-Experiment Hardware Stowage MDCA – Multi-User Droplet Combustion Apparatus MWA Prep COGN – Experiment Ops and Questionnaire БМП Ф2 Absorption Cartridge Regeneration (end) Completed Task List Items None  Ground Activities All activities were completed unless otherwise noted. N3 CDRA Bed Leak Check HTV5 Prox Ops Checkout Three-Day Look Ahead: Wednesday, 05/13: Twin Studies, RR habitat stow, MDCA h/w replace, SAM install, N3 Power reconfiguration, IMAK unpack Thursday, 05/14: N1 and N3 SDS Valve Install, HXP sampling Friday, 05/15: Restocking rodent habitat, Micro Observatory sampling, FPEF MD10 removal QUICK ISS Status – Environmental Control Group:                               Component Status Elektron On Vozdukh Manual [СКВ] 1 – SM Air Conditioner System (“SKV1”) On [СКВ] 2 – SM Air Conditioner System (“SKV2”) Off Carbon Dioxide Removal Assembly (CDRA) Lab Operate Carbon Dioxide Removal Assembly (CDRA) Node 3 Standby Major […]

from ISS On-Orbit Status Report http://ift.tt/1PiEXoy
via IFTTT

Some PSG fans banned from attending French league match

PARIS (AP) Paris Saint-Germain fans traveling without tickets issued by the club have been banned from attending this weekend's league game at Montpellier because of the risk of violence between hooligans.

from FOX Sports Digital http://ift.tt/1cSO0eG
via IFTTT

Microsoft, Adobe and Mozilla issue Critical Security Patch Updates

This week you have quite a long list of updates to follow from Microsoft, Adobe as well as Firefox. Despite announcing plans to kill its monthly patch notification for Windows 10, the tech giant has issued its May 2015 Patch Tuesday, releasing 13 security bulletins that addresses a total of 48 security vulnerabilities in many of their products. Separately, Adobe has also pushed a


from The Hacker News http://ift.tt/1Fk9XzH
via IFTTT

Former FIFA VP Temarii banned 8 years for taking money

ZURICH (AP) FIFA has banned former vice president Reynald Temarii for eight years for taking Qatari powerbroker Mohamed bin Hammam's money to pay legal costs in a corruption case linked to the 2022 World Cup vote.

from FOX Sports Digital http://ift.tt/1G5Zo2b
via IFTTT

University of Luxembourg research identifies secure, anonymous, easy way to pay for online content

They have identified a secure, anonymous way for readers, viewers and gamers to pay for online content without them having to make a cash payment ...

from Google Alert - anonymous http://ift.tt/1AWnrum
via IFTTT

Asian football body suspends general secretary Soosay

KUALA LUMPUR, Malaysia (AP) The Asian Football Confederation has suspended general secretary Alex Soosay following allegations he ordered a cover-up during an investigation into the organization in 2012.

from FOX Sports Digital http://ift.tt/1zZPNJh
via IFTTT

[FD] SEC Consult SA-20150513-0 :: Multiple critical vulnerabilities in WSO2 Identity Server

-----BEGIN PGP SIGNED MESSAGE-

Source: Gmail -> IFTTT-> Blogger

Europa semis: Dnipro plays Napoli, Fiorentina vs Sevilla

MOSCOW (AP) Dnipro Dnipropetrovsk has home advantage to extend its remarkable run in the Europa League to the final, while titleholder Sevilla holds a commanding lead over Fiorentina and just needs to see out the win on Thursday.

from FOX Sports Digital http://ift.tt/1JGTLGu
via IFTTT

DDoS Botnet Leverages Thousands of Insecure SOHO Routers

Small office and home office (SOHO) routers are an increasingly common target for cybercriminals, not because of any vulnerability, but because most routers are loosely managed and often deployed with default administrator credentials. A new report suggests that hackers are using large botnets of tens of thousands of insecure home and office-based routers to launch Distributed Denial-of-Service (


from The Hacker News http://ift.tt/1bOIUPn
via IFTTT

How to Share Sensitive Files Instantly and Securely

Last week, I have to communicate with my friend overseas in China. We both were aware that our email communications were being monitored. So, we both were forced to install and use a fully-fledged encrypted email system. Although it appeared to be very secure, it was quite cumbersome to handle. If you are ever faced with the same situation, I am here to introduce you a very simple and


from The Hacker News http://ift.tt/1AW0jw5
via IFTTT

Two Worlds One Sun


How different does sunset appear from Mars than from Earth? For comparison, two images of our common star were taken at sunset, one from Earth and one from Mars. These images were scaled to have same angular width and featured here side-by-side. A quick inspection will reveal that the Sun appears slightly smaller from Mars than from Earth. This makes sense since Mars is 50% further from the Sun than Earth. More striking, perhaps, is that the Martian sunset is noticeably bluer near the Sun than the typically orange colors near the setting Sun from Earth. The reason for the blue hues from Mars is not fully understood, but thought to be related to forward scattering properties of Martian dust. The terrestrial sunset was taken in 2012 March from Marseille, France, while the Martian sunset was captured last month by NASA's robotic Curiosity rover from Gale crater on Mars. via NASA http://ift.tt/1E34PJg

Tuesday, May 12, 2015

Orioles Video: Jimmy Paredes tallies 2-run single but Chris Tillman allows 5 ER in 6.2 IP in 10-2 loss to Blue Jays (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

I have a new follower on Twitter


PerformanceG2, Inc.
Performance management consultancy, Business Analytics solution provider, Cognos reseller, Cognos Training & Support Provider. IBM Cognos Premier partner.
Houston, TX
http://t.co/wg7a0pwDvq
Following: 2343 - Followers: 2644

May 12, 2015 at 09:52PM via Twitter http://twitter.com/performanceg2

Anonymous

Anonymous (75977454). Anonymous Karma score: 0. Member since May 12, 2015 00:29 Public view. Last active 4 minutes ago from 76.168.210.63.

from Google Alert - anonymous http://ift.tt/1zZamWq
via IFTTT

Adapting Improved Upper Confidence Bounds for Monte-Carlo Tree Search. (arXiv:1505.02830v1 [cs.AI])

The UCT algorithm, which combines the UCB algorithm and Monte-Carlo Tree Search (MCTS), is currently the most widely used variant of MCTS. Recently, a number of investigations into applying other bandit algorithms to MCTS have produced interesting results. In this research, we will investigate the possibility of combining the improved UCB algorithm, proposed by Auer et al. (2010), with MCTS. However, various characteristics and properties of the improved UCB algorithm may not be ideal for a direct application to MCTS. Therefore, some modifications were made to the improved UCB algorithm, making it more suitable for the task of game tree search. The Mi-UCT algorithm is the application of the modified UCB algorithm applied to trees. The performance of Mi-UCT is demonstrated on the games of $9\times 9$ Go and $9\times 9$ NoGo, and has shown to outperform the plain UCT algorithm when only a small number of playouts are given, and rougly on the same level when more playouts are available.



from cs.AI updates on arXiv.org http://ift.tt/1E4pOeu
via IFTTT

The Boundary Forest Algorithm for Online Supervised and Unsupervised Learning. (arXiv:1505.02867v1 [cs.LG])

We describe a new instance-based learning algorithm called the Boundary Forest (BF) algorithm, that can be used for supervised and unsupervised learning. The algorithm builds a forest of trees whose nodes store previously seen examples. It can be shown data points one at a time and updates itself incrementally, hence it is naturally online. Few instance-based algorithms have this property while being simultaneously fast, which the BF is. This is crucial for applications where one needs to respond to input data in real time. The number of children of each node is not set beforehand but obtained from the training procedure, which makes the algorithm very flexible with regards to what data manifolds it can learn. We test its generalization performance and speed on a range of benchmark datasets and detail in which settings it outperforms the state of the art. Empirically we find that training time scales as O(DNlog(N)) and testing as O(Dlog(N)), where D is the dimensionality and N the amount of data,



from cs.AI updates on arXiv.org http://ift.tt/1Phtcid
via IFTTT

Release Early, Release Often: Predicting Change in Versioned Knowledge Organization Systems on the Web. (arXiv:1505.03101v1 [cs.AI])

The Semantic Web is built on top of Knowledge Organization Systems (KOS) (vocabularies, ontologies, concept schemes) that provide a structured, interoperable and distributed access to Linked Data on the Web. The maintenance of these KOS over time has produced a number of KOS version chains: subsequent unique version identifiers to unique states of a KOS. However, the release of new KOS versions pose challenges to both KOS publishers and users. For publishers, updating a KOS is a knowledge intensive task that requires a lot of manual effort, often implying deep deliberation on the set of changes to introduce. For users that link their datasets to these KOS, a new version compromises the validity of their links, often creating ramifications. In this paper we describe a method to automatically detect which parts of a Web KOS are likely to change in a next version, using supervised learning on past versions in the KOS version chain. We use a set of ontology change features to model and predict change in arbitrary Web KOS. We apply our method on 139 varied datasets systematically retrieved from the Semantic Web, obtaining robust results at correctly predicting change. To illustrate the accuracy, genericity and domain independence of the method, we study the relationship between its effectiveness and several characterizations of the evaluated datasets, finding that predictors like the number of versions in a chain and their release frequency have a fundamental impact in predictability of change in Web KOS. Consequently, we argue for adopting a release early, release often philosophy in Web KOS development cycles.



from cs.AI updates on arXiv.org http://ift.tt/1E4pMmX
via IFTTT

Barcelona advances to 1st Champions League final since 2011

MUNICH (AP) Barcelona advanced to the Champions League final for the first time since 2011, getting a pair of Neymar goals and cruising to a 3-2 loss at Bayern Munich on Tuesday night for a 5-3 aggregate victory in their semifinal matchup.

from FOX Sports Digital http://ift.tt/1Ez6Puj
via IFTTT

Ravens: LB Jarret Johnson to retire after 12-year career; played with Baltimore from 2003-11, had 25.5 career sacks (ESPN)

from ESPN http://ift.tt/17lH5T2
via IFTTT

Orioles: INF Ryan Flaherty (right groin strain) placed on 15-day disabled list, INF Rey Navarro recalled from Triple-A (ESPN)

from ESPN http://ift.tt/1eW1vUH
via IFTTT

CNN Politics

Citing an anonymous "major US source," Hersh writes that the Obama administration cooperated with Pakistani intelligence officials, contrary to ...

from Google Alert - anonymous http://ift.tt/1HfxMco
via IFTTT

Jardim extends deal with Monaco

MONACO (AP) Monaco coach Leonardo Jardim has signed a new deal with the French club until the end of the 2018-19 season.

from FOX Sports Digital http://ift.tt/1QGxfln
via IFTTT

[FD] Two invalid read errors / heap overflows in SQLite (TFPA 006/2015)

http://ift.tt/1IyAkRz While fuzzing SQLite I discovered two read heap overflow errors. One is in the database file parser, one in the sql command parser. Both issues are present in SQLite 3.8.9 and are fixed in SQLite 3.8.10.1. These bugs can be seen with either valgrind or address sanitizer. Passing the command ".\" will cause a one byte heap overflow in the function resolve_backslashes(). http://ift.tt/1H1I5vk Sample input file (test with sqlite3 < [inputfile]) http://ift.tt/1FYOJEq Upstream commit / patch Parsing a malformed database file will cause a heap overflow of several bytes in the function sqlite3VdbeExec(). This only matters if your attack scenario involves parsing untrusted database files. http://ift.tt/1JakZrc Sample input file (test with sqlite3 [inputfile] .dump) http://ift.tt/1IPRLym Upstream commit / patch Please also note: http://ift.tt/1JakZHr Finding bugs in SQLite, the easy way - Michal Zalewski fuzzed SQLite with a dictionary - most of these were already fixed in 3.8.9, the version I was testing. http://ift.tt/1H1I4Y7 SQL Fuzz Using The American Fuzzy Lop Fuzzer - SQLite developers themselve now use regular fuzz testing to find further bugs. http://ift.tt/1Jal26d SQLite 3.8.10.1 release notes mention fixes for "many obscure problems discovered while SQL fuzzing", so there are likely more fixes than the two I mentioned above.

Source: Gmail -> IFTTT-> Blogger

CHIP — The World's First $9 Computer

Wait! What? A $9 computer? This is something magical. A Californian startup lead by Dave Rauchwerk is currently seeking crowdfunding on Kickstarter to create a computer that will cost as much as $9 (or £6). The new microcomputer, dubbed CHIP, is a tiny, Linux-based, super-cheap computer that's described as being "built for work, play, and everything in between!" Project 'Chip' that


from The Hacker News http://ift.tt/1FiBthb
via IFTTT

New Pics Added to the Blog Gallery (May 12, 2015)

BlogCartoon9
New Pics Added to the Blog Gallery! (May 12, 2015)

Click link below to visit gallery now!
http://ift.tt/1HAGoHC




from The 'hotspot' for all things Bob Ross. http://ift.tt/1bMZjnf
via IFTTT

The Latest: Champions League trophy arrives at Allianz Arena

MUNICH (AP) The Latest from the Champions League semifinal match between Bayern Munich and Barcelona at Allianz Arena:

from FOX Sports Digital http://ift.tt/1E3XBV9
via IFTTT

Kaka among 7 alternates in Brazil's Copa America squad

SAO PAULO (AP) Brazil coach Dunga has named Kaka as one of the seven alternates in the squad for next month's Copa America.

from FOX Sports Digital http://ift.tt/1J9LfSg
via IFTTT

ISS Daily Summary Report – 05/11/15

Rodent Research-2 Center for the Advancement of Science in Space (RR-2 CASIS): Kelly and Virts successfully performed the third set of four sample collections, including use of the recently recovered Bone Densitometer.  Kelly was the primary operator while Virts assisted, placing samples in containment then in Minus Eighty-Degree Laboratory Freezer in ISS (MELFI).  The crew completed their tasks ahead of schedule, and Virts executed tomorrow’s access unit cleaning today.  The primary objective of this research is to monitor the effects of the space environment on the musculoskeletal and neurological systems of mice as model organisms of human health and disease. Microgravity Experiment Research Locker/Incubator (MERLIN) Preparation for SpaceX (SpX)-6 Descent: Earlier this morning, Cristoforetti configured the MERLIN in Express Rack (ER)-6 Locker 2 for SpX-6 descent. She removed the internal items, disconnected power and data cables and double water lines. She then removed the MERLIN from the ER. Node 3 (N3) Carbon Dioxide Removal Assembly (CDRA) Status: Last Friday, the crew installed new N3 CDRA beds and 2 new Air Selector Valves (ASV’s).  Ground attempts to activate CDRA following completion of the maintenance were unsuccessful.  The error message received during an Active Built-in-Test (ABIT) indicates that the Blower/Pre-Cooler fan, which was not one of the R&Rd items, is not responding. Troubleshooting will be scheduled on the crew later this week. Dragon Transfer Operations: Cristoforetti spent a significant portion of her day performing Dragon transfer operations. SpX-6 is scheduled to unberth from the ISS on May 21. Today’s Planned Activities All activities were completed unless otherwise noted. Absorption Cartridge Regeneration (start) / SM Atmosphere Revitalization System RGN REC-TNK – pressure release hose for nominal ops disposal  RR- experiment, part 1В Rodent experiment ops overview Antivirus software update on ВКС laptops / r/g 8247 RR- experiment, part 1А EDV (КОВ) fill (separation) for Elektron r/g 8704 RR – freezer centrifuge setup RR- rodent bones density scanning Fine Motor Skills – experiment ops RR- MELFI 1 sample insert SOZh Maintenance RR – MELFI   sample insert 2 MRLN2 – hardware  gather for return on Dragon RR- rodent bones density scanning RR- MELFI  sample insert 3 ISS ROS crew clothes inventory   / r/g 8777 RR –   MELFI  sample insert 4 RR – freezer centrifuge reconfiguration RR- experiment, part 1В CMS – HRM – files transfer from iPAD Recycling tank fill [Aborted] RR – final ops RR – MELFI 5 sample insert Dragon – cargo transfer ops SEISMOPROGNOZ Data downlink from МКСД HD (start) r/g 8755 Dust  filters replacement  in FGB ISS ROS crew clothes inventory / r/g 8778 Life in ISS –  photo/vodeo shooting   / r/g 8544 Recycling Tank fill WRS – water samples analyzes   Dragon – cargo transfer ops RR- experiment ops, part 2В RR- experiment ops, part 2А ISS ROS crew clothes inventory / r/g 8779 Е-К tank and [АСУ] hose replacement, [АСУ] activation after replacement / r/g 8786 SEISMOPROGNOZ Data downlink from МКСД HD (end) r/g 8755 Greetings video shooting / r/g 8776 RR- rodent bone density scanning Dragon – cargo transfer conference ИДЭ-3 Smoke Detectors Replacement  in MRM1 r/g 8773 RR-  MELFI  sample insert 6 ARED rope lubricating RR –   MELFI sample insert 7 IMS update RR- rodent bone density scanning RR – MELFI  sample insert 8 RR –  MELFI  sample insert 9 IRIDIUMТК #715  phone battery recharge – setup, recharge start RR- rodent bone density scanning RR –  MELFI sample insert 10 IRIDIUM #715 phone battery recharge – batteries (АКБ) recharge monitoring IRIDIUM #715  phone battery recharge –  termination RR –   MELFI sample insert 11 IRIDIUM #716  phone battery recharge – start RR – freezer centrifuga reconfiguration  TOCA – data recording RR- hardware stowage IRIDIUM #716  phone battery recharge IRIDIUM #716 phone battery recharge –  termination Stow hardware in ФГБ1ПГО_2_224_1, CTB №1017 (002857J), Soft Container RR- experiment ops, part 2В RR – final ops RR – MELFI 12 sample insertion RGN – water drainage to EDV (start) Exercise data downlink / r/g 6797 RGN – water drainage to EDV (term) БМП Ф1 Absorption Cartridge Regeneration (term) / SM Atmosphere Revitalization System  Completed Task List Items CCE-Galaxy Gala Journals COL XF305 camcorder troubleshooting PAO downlink messages SSC12 battery swap Viable photo WHC EDV lid torque Ground Activities All activities were completed unless otherwise noted. Rodents Research ops Battery 2B3 Reconditioning [In Work] Three-Day Look Ahead: Tuesday, 05/12: Twin Studies, Fine Motor Skills, RR fixative swap/unit cleaning, N2 charcoal filter install, RRM h/w removal, cargo transfer Wednesday, 05/13: Twin Studies, RR habitat stow, MDCA h/w replace, SAM install Thursday, 05/14: N3 Power reconfiguration, HXP sampling QUICK ISS Status – Environmental Control Group:                               Component Status Elektron On Vozdukh Manual [СКВ] 1 – SM Air Conditioner System (“SKV1”) Off [СКВ] 2 – SM Air Conditioner System (“SKV2”) On Carbon Dioxide Removal Assembly (CDRA) Lab Operate Carbon Dioxide Removal Assembly (CDRA) Node 3 Standby Major Constituent Analyzer (MCA) Lab Shutdown Major Constituent Analyzer (MCA) Node 3 Operate Oxygen Generation Assembly (OGA) Process Urine Processing Assembly (UPA) Standby Trace Contaminant Control System (TCCS) Lab Off Trace Contaminant Control System (TCCS) Node 3 Full Up  

from ISS On-Orbit Status Report http://ift.tt/1bMrxOZ
via IFTTT