Feed aggregator

OpenBSD Journal writes: Yes, you read that right: KDE 6.4.0 Plasma is now in OpenBSD packages... The news was announced 2025-07-04 via a fediverse post and of course the commit message itself, where the description reads.... "[I]n 6.4 the KDE Kwin team split kwin into kwin-x11 and kwin (wayland). This seems to be the sign that X11 is no longer of interest and we are focussing on Wayland. As we currently only support X11, kwin-x11 has been added as a runtime dependency to kwin. So nobody should have to install anything later. This ports update also includes Aurorae; a theme engine for KWin window decorations."

Read more of this story at Slashdot.

Big Improvements For Qualcomm GPU Driver With Linux 6.17 - Especially For Snapdragon X  Phoronix

Daisy Chain Of Hacks Lets New Arm Board Run Doom  Hackaday

Interesting Engineering reports: Astral Systems, a UK-based private commercial fusion company, has claimed to have become the first firm to successfully breed tritium, a vital fusion fuel, using its own operational fusion reactor. This achievement, made with the University of Bristol, addresses a significant hurdle in the development of fusion energy.... Scientists from Astral Systems and the University of Bristol produced and detected tritium in real-time from an experimental lithium breeder blanket within Astral's multi-state fusion reactors. "There's a global race to find new ways to develop more tritium than what exists in today's world — a huge barrier is bringing fusion energy to reality," said Talmon Firestone, CEO and co-founder of Astral Systems. "This collaboration with the University of Bristol marks a leap forward in the search for viable, greater-than-replacement tritium breeding technologies. Using our multi-state fusion technology, we are the first private fusion company to use our reactors as a neutron source to produce fusion fuel." Astral Systems' approach uses its Multi-State Fusion (MSF) technology. The company states this will commercialize fusion power with better performance, efficiency, and lower costs than traditional reactors. Their reactor design, the result of 25 years of engineering and over 15 years of runtime, incorporates recent understandings of stellar physics. A core innovation is lattice confinement fusion (LCF), a concept first discovered by NASA in 2020. This allows Astral's reactor to achieve solid-state fuel densities 400 million times higher than those in plasma. The company's reactors are designed to induce two distinct fusion reactions simultaneously from a single power input, with fusion occurring in both plasma and a solid-state lattice. The article includes this quote from professor Tom Scott, who led the University of Bristol's team, supported by the Royal Academy of Engineering and UK Atomic Energy Authority. "This landmark moment clearly demonstrates a potential path to scalable tritium production in the future and the capability of Multi-State Fusion to produce isotopes in general." And there's also this prediction from the company's web site: "As we progress the fusion rate of our technology, aiming to exceed 10 trillion DT fusions per second per system, we unlock a wide range of applications and capabilities, such as large-scale medical isotope production, fusion neutron materials damage testing, transmutation of existing nuclear waste stores, space applications, hybrid fusion-fission power systems, and beyond." "Scientists everywhere are racing to develop this practically limitless form of energy," write a climate news site called The Cooldown. (Since in theory nuclear fusion "has an energy output four times higher than that of fission, according to the International Atomic Energy Agency.") Thanks to long-time Slashdot reader fahrbot-bot for sharing the news.

Read more of this story at Slashdot.

"Microsoft has released the source code for the GitHub Copilot Chat extension for VS Code under the MIT license," reports BleepingComputer. This provides the community access to the full implementation of the chat-based coding assistant, including the implementation of "agent mode," what contextual data is sent to large language models (LLMs), and the design of system prompts. The GitHub repository hosting the code also details telemetry collection mechanisms, addressing long-standing questions about data transparency in AI-assisted coding tools... As the VS Code team explained previously, shifts in AI tooling landscape like the rapid growth of the open-source AI ecosystem and a more level playing field for all have reduced the need for secrecy around prompt engineering and UI design. At the same time, increased targeting of development tools by malicious actors has increased the need for crowdsourcing contributions to rapidly pinpoint problems and develop effective fixes. Essentially, openness is now considered superior from a security perspective. "If you've been hesitant to adopt AI tools because you don't trust the black box behind them, this move opensources-github-copilot-chat-vscode/offers something rare these days: transparency," writes Slashdot reader BrianFagioli" Now that the extension is open source, developers can audit how agent mode actually works. You can also dig into how it manages your data, customize its behavior, or build entirely new tools on top of it. This could be especially useful in enterprise environments where compliance and control are non negotiable. It is worth pointing out that the backend models powering Copilot remain closed source. So no, you won't be able to self host the whole experience or train your own Copilot. But everything running locally in VS Code is now fair game. Microsoft says it is planning to eventually merge inline code completions into the same open source package too, which would make Copilot Chat the new hub for both chat and suggestions.

Read more of this story at Slashdot.

I'm addicted to installing Proxmox on old devices  XDA

"Some of our basic assumptions about the biological process of aging might be wrong," reports the New York Times — citing new research on a small Indigenous population in the Bolivian Amazon. [Alternate URL here.] Scientists have long believed that long-term, low-grade inflammation — also known as "inflammaging" — is a universal hallmark of getting older. But this new data raises the question of whether inflammation is directly linked to aging at all, or if it's linked to a person's lifestyle or environment instead. The study, which was published Monday, found that people in two nonindustrialized areas experienced a different kind of inflammation throughout their lives than more urban people — likely tied to infections from bacteria, viruses and parasites rather than the precursors of chronic disease. Their inflammation also didn't appear to increase with age. Scientists compared inflammation signals in existing data sets from four distinct populations in Italy, Singapore, Bolivia and Malaysia; because they didn't collect the blood samples directly, they couldn't make exact apples-to-apples comparisons. But if validated in larger studies, the findings could suggest that diet, lifestyle and environment influence inflammation more than aging itself, said Alan Cohen, an author of the paper and an associate professor of environmental health sciences at Columbia University. "Inflammaging may not be a direct product of aging, but rather a response to industrialized conditions," he said, adding that this was a warning to experts like him that they might be overestimating its pervasiveness globally. "How we understand inflammation and aging health is based almost entirely on research in high-income countries like the U.S.," said Thomas McDade, a biological anthropologist at Northwestern University. But a broader look shows that there's much more global variation in aging than scientists previously thought, he added... McDade, who has previously studied inflammation in the Tsimane group, speculated that populations in nonindustrialized regions might be exposed to certain microbes in water, food, soil and domestic animals earlier in their lives, bolstering their immune response later in life. More from The Independent: Chronic inflammation is thought to speed up the ageing process and contribute to various health conditions such as Alzheimer's disease, arthritis, cancer, heart disease, and Type 2 diabetes... However, other experts shared a word of caution before jumping to conclusions from the study. Vishwa Deep Dixit, director of the Yale Center for Research on Aging, told the New York Times it's not surprising that people less exposed to pollution would see lower rates of chronic disease. Aurelia Santoro, an associate professor at the University of Bologna, also cautioned about the results, according to the Times. "While they had lower rates of chronic disease, the two Indigenous populations tended to have life spans shorter than those of people in industrialized regions, meaning they may simply not have lived long enough to develop inflammaging, Santoro said." And Bimal Desai, a professor of pharmacology who studies inflammation at the University of Virginia School of Medicine, told the Times that the study "sparks valuable discussion" but needs more follow-up "before we rewrite the inflammaging narrative."

Read more of this story at Slashdot.

4 reasons I use NixOS in WSL instead of Ubuntu or Fedora  XDA

6 reasons why I use NixOS over any other Linux distro  XDA

We're living in a new world now — one where it's an AI-powered penetration tester that "now tops an eminent US security industry leaderboard that ranks red teamers based on reputation." CSO Online reports: On HackerOne, which connects organizations with ethical hackers to participate in their bug bounty programs, "Xbow" scored notably higher than 99 other hackers in identifying and reporting enterprise software vulnerabilities. It's a first in bug bounty history, according to the company that operates the eponymous bot... Xbow is a fully autonomous AI-driven penetration tester (pentester) that requires no human input, but, its creators said, "operates much like a human pentester" that can scale rapidly and complete comprehensive penetration tests in just a few hours. According to its website, it passes 75% of web security benchmarks, accurately finding and exploiting vulnerabilities. Xbow submitted nearly 1,060 vulnerabilities to HackerOne, including remote code execution, information disclosures, cache poisoning, SQL injection, XML external entities, path traversal, server-side request forgery (SSRF), cross-site scripting, and secret exposure. The company said it also identified a previously unknown vulnerability in Palo Alto's GlobalProtect VPN platform that impacted more than 2,000 hosts. Of the vulnerabilities Xbow submitted over the last 90 days, 54 were classified as critical, 242 as high and 524 as medium in severity. The company's bug bounty programs have resolved 130 vulnerabilities, and 303 are classified as triaged. Notably, though, roughly 45% of the vulnerabilities it found are still awaiting resolution, highlighting the "volume and impact of the submissions across live targets," Nico Waisman, Xbow's head of security, wrote in a blog post this week... To further hone the technology, the company developed "validators," — automated peer reviewers that confirm each uncovered vulnerability, Waisman explained. "As attackers adopt AI to automate and accelerate exploitation, defenders must meet them with even more capable systems," XBOW's CEO said this week, as the company raised $75 million in Series B funding to grow its platform, bringing its total funding to $117 million. Help Net Security reports: With the new funding, XBOW plans to grow its engineering team and expand its go-to-market efforts. The product is now generally available, and the company says it is working with large banks, tech firms, and other organizations that helped shape the platform during its early testing phase. XBOW's long-term goal is to help security teams stay ahead of adversaries using advanced automation. As attackers increasingly turn to AI, the company argues that defenders will need equally capable systems to match their speed and sophistication.

Read more of this story at Slashdot.

I (almost) fixed this mini PC... by installing Linux  XDA

This week Hewlett-Packard Enterprise settled its antitrust case with America's Justice Department, "paving the way for its acquisition of rival kit maker Juniper Networks," reported Telecoms.com: Under the agreement, HPE has agreed to divest its Instant On unit, which sells a range of enterprise-grade Wi-Fi networking equipment for campus and branch deployments. It has also agreed to license Juniper's Mist AIOps source code — a software suite that enables AI-based network automation and management. HPE can live with that, since its primary motivation for buying Juniper is to improve its prospects in an IT networking market dominated by Cisco, where others like Arista and increasingly Nokia and Nvidia are also trying to make inroads. And after receiving regulatory clearance, HPE "very quickly closed the deal..." reports The Motley Fool. "In the press release heralding the news, the buyer wrote that it "doubles the size of HPE's networking business and provides customers with a comprehensive portfolio of networking solutions." Investors were obviously happy about this, as according to data compiled by S&P Global Market Intelligence the company's stock price ballooned by nearly 16% across the week, largely on the news.... The Justice Department had alleged, in a lawsuit filed in January, that an HPE/Juniper tie-up would essentially result in a duopoly in networking equipment. It claimed that a beefed-up HPE and networking incumbent Cisco would hold more than 70% combined of the domestic market. Thanks to long-time Slashdot reader AmiMoJo for sharing the news.

Read more of this story at Slashdot.

Science Daily reports: Wild orcas across four continents have repeatedly floated fish and other prey to astonished swimmers and boaters, hinting that the ocean's top predator likes to make friends. Researchers cataloged 34 such gifts over 20 years, noting the whales often lingered expectantly — and sometimes tried again — after humans declined their offerings, suggesting a curious, relationship-building motive... "Orcas often share food with each other — it's a prosocial activity and a way that they build relationships with each other," said study lead author Jared Towers, of Bay Cetology in British Columbia, Canada. "That they also share with humans may show their interest in relating to us as well." The complete research was published in the Journal of Comparative Psychology. Its title? "Testing the Waters: Attempts by Wild Killer Whales (Orcinus orca) to Provision People (Homo sapiens)."

Read more of this story at Slashdot.

Why My Kids' First PC Will Run Linux  How-To Geek

Long-time Slashdot reader AmiMoJo shared this report from the Apple news blog 9to5Mac: iOS 26 is a packed update for iPhone users thanks to the new Liquid Glass design and major updates for Messages, Wallet, CarPlay, and more. But another new feature was just discovered in the iOS 26 beta: FaceTime will now freeze your call's video and audio if someone starts undressing. When Apple unveiled iOS 26 last month, it mentioned a variety of new family tools... "Communication Safety expands to intervene when nudity is detected in FaceTime video calls, and to blur out nudity in Shared Albums in Photos." However, at least in the iOS 26 beta, it seems that a similar feature may be in place for all users — adults included. That's the claim of an X.com user named iDeviceHelp, who says FaceTime in iOS 26 swaps in a warning message that says "Audio and video are paused because you may be showing something sensitive," giving users a choice of ending the call or resuming it. 9to5Mac says "It's unclear whether this is an intended behavior, or just a bug in the beta that's applying the feature to adults... [E]verything happens on-device so Apple has no idea about the contents of your call."

Read more of this story at Slashdot.

Hear me out – a GUI distribution isn’t all that bad for an entry-level home server  XDA

DXVK 2.7 Released With Many Improvements & Better Support On Newer Intel GPUs  Phoronix

Hidden flaw in Linux (Ubuntu and Fedora) laptops allows full system compromise  Notebookcheck

Hidden flaw in Linux (Ubuntu and Fedora) laptops allows full system compromise  Notebookcheck

In April researchers responsibly disclosed two security flaws found in Sudo "that could enable local attackers to escalate their privileges to root on susceptible machines," reports The Hacker News. "The vulnerabilities have been addressed in Sudo version 1.9.17p1 released late last month." Stratascale researcher Rich Mirch, who is credited with discovering and reporting the flaws, said CVE-2025-32462 has managed to slip through the cracks for over 12 years. It is rooted in the Sudo's "-h" (host) option that makes it possible to list a user's sudo privileges for a different host. The feature was enabled in September 2013. However, the identified bug made it possible to execute any command allowed by the remote host to be run on the local machine as well when running the Sudo command with the host option referencing an unrelated remote host. "This primarily affects sites that use a common sudoers file that is distributed to multiple machines," Sudo project maintainer Todd C. Miller said in an advisory. "Sites that use LDAP-based sudoers (including SSSD) are similarly impacted." CVE-2025-32463, on the other hand, leverages Sudo's "-R" (chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file. It's also a critical-severity flaw. "The default Sudo configuration is vulnerable," Mirch said. "Although the vulnerability involves the Sudo chroot feature, it does not require any Sudo rules to be defined for the user. As a result, any local unprivileged user could potentially escalate privileges to root if a vulnerable version is installed...." Miller said the chroot option will be removed completely from a future release of Sudo and that supporting a user-specified root directory is "error-prone."

Read more of this story at Slashdot.