stoolpigeon writes "As a dba, I'm constantly looking to learn more about networking and system administration. Both can have quite an impact on the performance of my piece of the puzzle. A welcome addition to the materials to help me learn about networking is Carla Schroder's "Linux Networking Cookbook". This book is just right for the person like myself who enjoys learning by getting hands-on experience with the technology. The scope is wide and so someone with a great depth of networking experience may find that the treatments of each is a bit shallow. On the other hand, that wide scope means this book may hold something new, even for someone with some level of experience." Read on for the rest of JR's review.

An Anonymous reader noted that some folks at GNU Citizen have been researching UPNP Vulnerabilities in home routers, and have produced a flash swf file capable of opening open ports into your network simply by visiting an unfortunate URL. Looks like Firefox & Safari users are safe for now.

Stony Stevenson sends word of the beta availability of a software-as-a-service version of OpenOffice 2.3, brought to us by Mandriva Linux creator Gael Duval. According to Ars, this package "easily offers the most features of any online office suite," though it "lacks the collaborative or document-sharing features of competitors like Google Docs or even Microsoft's Office Live Workspace." "To create this feature-rich environment, Online OpenOffice.org requires a modern browser with JavaScript and the Sun Java Runtime Environment version 1.4+ plug-in. The setup has been tested in Firefox 1.5 and above, IE6 and 7, and even Safari, though Ubuntu users are specifically warned that they must be using the Sun Java (Sun JRE) plug-in or the current implementation of Online OpenOffice.org won't work."

Hugh Pickens writes "Apple's QuickTime media player software contains a previously undocumented security weakness in the way QuickTime handles the RTSP media-streaming protocol. The vulnerability is present in QuickTime versions 4.0 through 7.3 (the latest version) on both Windows and Mac systems. Symantec has tested the publicly available exploit code and found that it failed to work properly against Internet Explorer 6/7 or Safari 3 Beta but the exploit works against Firefox if users have chosen QuickTime as the default player for multimedia formats. Firefox users are more susceptible to this attack because Firefox farms off the request directly to the QuickTime Player as a separate process outside of its control, while IE loads the QuickTime Player as an internal plugin and when the overflow occurs, standard buffer-overflow protection is triggered, shutting down the affected processes before any damage can occur."

WikiTiki writes "Safari Books Online has a new interview with Barry Libert, one of the authors of 'We are Smarter Than Me: How to Unleash the Power of Crowds in Your Business.' Barry and his coauthors decided to create a wiki and invite the community to help build this book which aims to give advice on using social networking tools like blogs and wikis to businesses. Barry has some interesting comments about both the challenges and payoffs in using social networking tools to create a book about social networking tools."

vertigoCiel writes "Hackers Niacin and Dre have recently gained full read and write access to the filesystems of both the iPhone and the iPod Touch. The Jailbreak exploits a vulnerability in Safari's TIFF library to execute the necessary code when the specially crafted image is loaded. Access can then be permanently sustained by modifying the fstab file with iPhuc"

JSM writes to tell us that Apple released a new version of their popular iPod music player today that boasts, among other things, an iPhone-like touch screen and Wi-Fi capabilities. "The iPod Touch will feature the Safari Internet browser and, like the iPhone, play YouTube videos. Apple also announced a new version of its iTunes music store that will allow users to buy songs wirelessly. iTunes will also sell customizable 99-cent ringtones for the iPhone."

An anonymous reader writes "Safari Books Online has just posted an interview with Andy Oram and Greg Wilson, the two editors who put together the recent O'Reilly book, Beautiful Code. "Beautiful Code" features 33 different case studies about challenging coding scenarios from some of today's most high-profile developers and OS project leaders. There's also a new Beautiful Code web site based on the book where many of the authors are blogging about their work and coding practices."

Logged in users have noticed for some time the request to drink from the Slashdot Firehose. Well now we're ready to start having everybody test it out. It's partially a collaborative news system, partially a redesigned & dynamic next-generation Slashdot index. It's got a lot of really cool features, and a lot of equally annoying new problems for us to find and fix for the next few weeks. I've attached a rough draft of the FAQ to the end of this article. A quick read of it will probably answer most questions from how it works, what all the color codes mean, to what we intend to do with it.

The Webguy writes "Apple has released the first update for the iPhone. Updated components in the v1.0.1 update include Safari, the WebCore, and the WebKit. Quoting from the Apple Knowledge Base, the 'update is only available through iTunes, and will not appear in your computer's Software Update application, or on the Apple Support Downloads site.'" One source speculated that Apple wanted to get fixes in users' hands ahead of the Black Hat conference where details of early iPhone vulnerabilities could be revealed.

juct writes "Although the Mozilla developers have fixed a known hole in the password manager of Firefox & Co, a door remains open for exploitation. According to an article on the heise site, hackers can still use JavaScript to steal passwords from users of the Mozilla, Firefox, and Safari browsers. However, the real problem might not be Firefox' password manager. If users can set up their own pages containing script code on a server, the JavaScript security model breaks. Heise Security demonstrates the possible password theft in a demo. 'From the users' perspective, this means that they should not entrust their passwords to the password manager on web sites that allow other users to create their own pages containing scripts. Otherwise somebody can easily create a page that steals the password as soon as the page is opened ... Users could also disable JavaScript or use add-ons such as NoScript to set up rules to provide additional protection. In the age of Web 2.0 this would, however, mean that many pages would cease to function. On the other hand it is doubtful that by not using a password manager security levels would be raised, since the resultant need to remember passwords often induces users to choose simplistic passwords and use them on multiple sites.'"

Slashdot users of the Discussion2 system now have a new 'Update' button visible on their floating control slider, as well at the end of the discussion. This button will update your page to include comments posted since the page was loaded, so now you can keep discussion pages up to date without doing a full reload. It's nowhere near complete yet, but it's a nice step that goes a long ways towards making it easier to use larger discussions while they are actively updating. If you aren't using Discussion2, you need to log in, and toggle the checkbox visible on every page. You probably need bother only if you are using Firefox 1.5 or 2.x or Safari. You can send bug reports to me if you want.

Tookis writes "Mozilla's Firefox web browser has made dramatic gains on Microsoft's Internet Explorer throughout Europe in the past year with a marked upturn in FF use compared to IE over the past four months, according to French web monitoring service XiTiMonitor. A study of nearly 96,000 websites carried out during the week of July 2 to July 8 found that FF had 27.8% market share across Eastern and Western Europe, IE had 66.5%, with other browsers including Safari and Opera making up the remaining 5.7%. In some key European markets FF has already reached parity and is threatening to overtake IE as the market leading browser."

Ohreally_factor takes us back to Friday when both the iPhone and the GPLv3 were released. "This article at Tectonic suggests that Apple's iPhone might run afoul of the GPL. Peter Brown, executive director of the FSF is quoted as saying: 'Today, Steve Jobs and Apple release a product crippled with proprietary software and digital restrictions: crippled, because a device that isn't under the control of its owner works against the interests of its owner. We know that Apple has built its operating system, OS X, and its web browser Safari, using GPL-covered work — it will be interesting to see to what extent the iPhone uses GPLed software.' Might there really be GPLed code in the iPhone? It's well known that OS X built on BSD, which of course uses the BSD license. Webkit is based on KHTML which uses the LGPL."

Even though the iPhone has already been released into the wild, the amount of excitement surrounding this device doesn't seem to be subsiding by any measurable degree. Many readers have submitted their favorite reactions to the shiny new gizmo including a BusinessWeek report that suggests the iPhone only costs around $220 to make, a user review from MacScoop, one user's top 10 interface mistakes, a roundup of early security concerns, and details on the hardware behind the phone. Read on for more details.

We have a number of Slashdot features that we've added in recent months that I've neglected to mention so I wanted to take a moment to share them with everyone today. I'd like to start by reminding all logged in users to try playing with our new experimental Discussion2 system. It's very nearly complete at this point. You can activate it with a checkbox on any article page (provided you actually have logged in). Read on to learn about Podcasts, IM, improved quoting in discussions, new subscriber options and more.

peter deacon writes "Is the iPhone the next Segway, the next Zune, or the next iPod? The Perfect Storm offers some iPhone details that aren't secrets, but tend to be lost upon the analysts and journalists cranking out hit pieces on the iPhone. Why is everyone from Gartner to Gizmodo calling for a boycott of the iPhone? An interesting take on how Apple's new mobile phone will push to open up the web as a mobile platform for every mobile device on the market with a standards-based browser, and how Apple 'hacked the hackers' by releasing Safari for Windows in advance of its new phone."

An anonymous reader calls to our attention a blog post about the way the iPhone's multi-touch UI will strain the interface conventions of Web 2.0. This looming clash comes clearer as Apple releases more details of the iPhone's UI. Much has been made about the iPhone including Safari to provide a full web browsing experience. But this reader is wondering how compatible certain sites will be with the iPhone's input. From the post: "[Web 2.0-style interaction] makes somewhat heavy use of 'onmouse' events and cursor changes... along with CSS a:hover styles. The iPhone challenges those particular Web 2.0 conventions, though, because it is a device that not only adds support for another pointer, but at the same time eliminates them as interface objects... [T]he user doesn't get to express their attention with the iPhone... They only get to express their immediate action." This reader asks, "What other pitfalls lurk in the multi-touch web? Do any Slashdot readers plan to adjust their sites to ensure they work with the iPhone, and can you think of any similar issues that will crop up with such a different browsing experience?"

Rebelgecko writes "It turns out the iPhone's mystery app is a custom YouTube viewer. The iPhone will play YouTube's videos using the H.264 codec(as will the AppleTV after an upgrade) for higher quality. From the look of it, it will take advantage of the iPhone's screen design and touch capabilities much more than watching videos in the iPhone's version of Safari would. The videos can be streamed via a Wi-Fi connection or the EDGE network."

Rob writes with a link to a Computer Business Review article on the negative impact Mozilla COO John Lilly sees Apple is having on Open Source. Lilly claims that Jobs' recent discussion of Safari on Windows is an attempt to create a duopoly of browsers (IE and Safari), with Firefox and the rest on the outside looking in. "The graph 'betrays the way that Apple, so often looks at the world,' Lilly said. 'But make no mistake: this wasn't a careless presentation, or an accidental omission of all the other browsers out there, or even a crummy marketing trick,' he said. 'Lots of words describe Steve and his Stevenotes, but 'careless' and 'accidental' do not. This is, essentially, the way they're thinking about the problem, and shows the users they want to pick up.'" We discussed an analyst's opinion on this subject this past Friday.