Skip to content
I T S S
  • Welcome
  • Hardware
  • Internet
  • Networking
  • Security
  • Data Recovery
  • Support
  • Contact
  • Webmail

pfSense / Wireguard / Bad Code / Close Call

By itss | 26/03/2021
0 Comment

A nice write-up of how a whole bunch of bad code very nearly ended up in FreeBSD 13 due to several bad calls on the part of pfSense. https://arstechnica.com/gadgets/2021/03/buffer-overruns-license-violations-and-bad-code-freebsd-13s-close-call/

Category: Technology
Post navigation
← Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur) A Nice Little Cryptography Primer →

Recent Posts

  • Hardware Exploits?
  • Why Quake3 was so fast : Fast Inverse Square Root
  • A Nice Little Cryptography Primer
  • pfSense / Wireguard / Bad Code / Close Call
  • Apple Continues Its Trip To The Dark Side With The Release of MacOS 17 (Big Sur)

Slashdot

News for nerds

  • NYC Private School Tuition Breaks $70,000 Milestone for Fall
    by msmash on 10/02/2026 at 2:00 pm

    The top private schools in New York City plan to charge more than $70,000 this year for tuition, an amount exceeding that of many elite colleges, as they pass on the costs of soaring expenses including teacher salaries. From a report: Spence School, Dalton School and Nightingale-Bamford School on Manhattan's Upper East Side are among at least seven schools where the fees now exceed that threshold, according to school disclosures and Bloomberg reporting Fees among 15 private schools across the city rose a median of 4.7%, outpacing inflation. Sending a kid to New York private school has always been expensive, but the cost now is so high that even those with well-above-average salaries are feeling squeezed. Prices have risen dramatically in the past decade, up from a median of $39,900 in 2014. Read more of this story at Slashdot.

  • Software Poses 'All-Time' Risk To Speculative Credit, Deutsche Bank Warns
    by msmash on 10/02/2026 at 12:00 pm

    The software and technology sectors pose one of the all-time great concentration risks to the speculative-grade credit market, according to Deutsche Bank AG analysts. Bloomberg: They comprise $597 billion and $681 billion of the speculative-grade credit universe, or about 14% and 16% respectively, analysts led by Steve Caprio wrote in a Monday note. Speculative debt spans high-yield debt, leveraged loans and US private credit. That's "a meaningful chunk of debt outstanding that risks souring broader sentiment, if software defaults increase," the analysts wrote, with "a potential impact that would rival that of the Energy sector in 2016." Unlike in 2016, pressures would likely first emerge in private credit, business development companies and leveraged loans, with the high-yield market weakening later, the analysts added. The rapid adoption of artificial intelligence tools risks further weighing down multiples and revenues for software-as-a-service firms, while the US Federal Reserve's hawkish stance since 2022 has pressured cash flows, the analysts wrote. For instance, software payment-in-kind loan usage has risen to 11.3% in BDC portfolios, over 2.5 percentage points higher than the already elevated index average of 8.7%, according to Deutsche. PIK deals typically allow borrowers to pay interest in more debt rather than cash. Read more of this story at Slashdot.

  • 2 To 3 Cups of Coffee a Day May Reduce Dementia Risk. But Not if It's Decaf.
    by msmash on 10/02/2026 at 9:01 am

    If you think your daily doses of espresso or Earl Grey sharpen your mind, you just might be right, new science suggests. The New York Times: A large new study provides evidence of cognitive benefits from coffee and tea -- if it's caffeinated and consumed in moderation: two to three cups of coffee or one to two cups of tea daily. People who drank that amount for decades had lower chances of developing dementia than people who drank little or no caffeine, the researchers reported. They followed 131,821 participants for up to 43 years. "This is a very large, rigorous study conducted long term among men and women that shows that drinking two or three cups of coffee per day is associated with reduced risk of dementia," said Aladdin Shadyab, an associate professor of public health and medicine at the University of California, San Diego, who wasn't involved in the study. The findings, published Monday in JAMA, don't prove caffeine causes these beneficial effects, and it's possible other attributes protected caffeine drinkers' brain health. But independent experts said the study adjusted for many other factors, including health conditions, medication, diet, education, socioeconomic status, family history of dementia, body mass index, smoking and mental illness. Read more of this story at Slashdot.

  • Deepfake Fraud Taking Place On an Industrial Scale, Study Finds
    by msmash on 10/02/2026 at 6:01 am

    Deepfake fraud has gone "industrial," an analysis published by AI experts has said. From a report: Tools to create tailored, even personalised, scams -- leveraging, for example, deepfake videos of Swedish journalists or the president of Cyprus -- are no longer niche, but inexpensive and easy to deploy at scale, said the analysis from the AI Incident Database. It catalogued more than a dozen recent examples of "impersonation for profit," including a deepfake video of Western Australia's premier, Robert Cook, hawking an investment scheme, and deepfake doctors promoting skin creams. These examples are part of a trend in which scammers are using widely available AI tools to perpetuate increasingly targeted heists. Last year, a finance officer at a Singaporean multinational paid out nearly $500,000 to scammers during what he believed was a video call with company leadership. UK consumers are estimated to have lost $12.86bn to fraud in the nine months to November 2025. "Capabilities have suddenly reached that level where fake content can be produced by pretty much anybody," said Simon Mylius, an MIT researcher who works on a project linked to the AI Incident Database. He calculates that "frauds, scams and targeted manipulation" have made up the largest proportion of incidents reported to the database in 11 of the past 12 months. He said: "It's become very accessible to a point where there is really effectively no barrier to entry." Read more of this story at Slashdot.

  • Electric Cars Are Making It Easier To Breathe, Study Finds
    by msmash on 10/02/2026 at 3:45 am

    An anonymous reader shares a report: It turns out that when fewer cars spew exhaust as they drive along, air quality improves. That's the conclusion of a new study published in The Lancet Planetary Health that looked at the effect of increased numbers of both EVs and plug-in hybrids on air pollution in California. The Golden State has by far the largest number of plug-in vehicles in the United States, and they've now reached significant numbers to have a positive impact on air quality. Between 2019 and 2023, for every 200 EVs or plug-in hybrids added, nitrogen dioxide (NO2) levels dropped 1.1%, according to the study, which used satellite data to track those levels through the unique way NO2 absorbs and reflects sunlight. NO2 can trigger asthma attacks, cause bronchitis, and increase the risk of heart disease and stroke. Read more of this story at Slashdot.

  • Kalshi Prediction Markets Match or Beat Traditional Forecasting Tools For Macro Indicators, NBER Study Finds
    by msmash on 10/02/2026 at 1:45 am

    A new NBER working paper from researchers at the Federal Reserve, Northwestern's Kellogg School and Johns Hopkins finds that Kalshi -- the largest federally regulated prediction market in the U.S., overseen by the CFTC -- produces macroeconomic forecasts that match or beat those of professional forecasters and traditional financial instruments like fed funds futures. The study compared Kalshi-implied forecasts for the federal funds rate, CPI inflation and unemployment against the New York Fed's Survey of Market Expectations and Bloomberg consensus. Kalshi's modal forecast correctly predicted the federal funds rate on the day before every FOMC meeting since 2022, something neither the survey nor fed funds futures achieved. For headline CPI, Kalshi's median and mode produced a statistically significant improvement over Bloomberg consensus. Kalshi also fills a gap no other financial market covers: real-time probability distributions for GDP growth, core CPI, unemployment, and payrolls. The paper documented how these distributions shift in response to macro news -- positive CPI surprises moved the mean of the fed funds rate distribution four times more than negative ones. Trading volumes on the platform have grown to nearly 100 million contracts for a single FOMC meeting, supported by liquidity from Susquehanna, Citadel, and Two Sigma. Read more of this story at Slashdot.

Archives

  • September 2022
  • November 2021
  • June 2021
  • March 2021
  • November 2020
  • October 2020
  • September 2020
  • February 2020
  • January 2020
  • October 2019
  • August 2018
  • July 2018
  • April 2018
  • February 2018
  • January 2018
  • December 2017
  • October 2017
  • September 2017
  • August 2016
  • July 2016
  • March 2016
  • February 2016
  • August 2015
  • May 2015

Categories

  • Innovation
  • Security
  • Software
  • Technology

Tags

backdoor cisco coding json laziness patterns public information announcement security vulnerability
© 2017 IT Sales & Services Ltd
Quality IT solutions in Tanzania since 2010
Iconic One Theme | Powered by Wordpress