An anonymous reader quotes a report from The Register: Two years after the Log4Shell vulnerability in the open source Java-based Log4j logging utility was disclosed, circa one in four applications are dependent on outdated libraries, leaving them open to exploitation. Research from security shop Veracode revealed that the vast majority of vulnerable apps may never have updated the Log4j library after it was implemented by developers as 32 percent were running pre-2015 EOL versions. Prior investigations from Veracode also showed that 79 percent of all developers never update third-party libraries after first introducing them into projects, and given that Log4j2 -- the specific version of Log4j affected by the vulnerability -- dates back to 2014, this could explain the large proportion of unpatched apps.

A far smaller minority are running versions that were vulnerable at the time of the Log4j vulnerability's disclosure in December 2021. Only 2.8 percent are still using versions 2.0-beta9 through 2.15.0 -- post-EOL versions that remain exposed to Log4Shell, the industry-coined moniker of the vulnerability's exploit. Some 3.8 percent are still running version 2.17, a post-patch version of the Java logger that's not exposed to Log4Shell attacks, but is vulnerable to a separate remote code execution (RCE) bug (CVE-2021-44832).

The researchers believe this illustrates a minority of developers that acted quickly when the vulnerability was first disclosed, as was the advice at the time, had returned to older habits of leaving libraries untouched. Altogether, just shy of 35 percent remain vulnerable to Log4Shell, and nearly 40 percent are vulnerable to RCE flaws. The EOL versions of Log4j are also vulnerable to three additional critical bugs announced by Apache, bringing the total to seven high and critical-rated issues. "At a surface level, the numbers above show that the massive effort to remediate the Log4Shell vulnerability was effective in mitigating risk of exploitation of the zero-day vulnerability. That should not be surprising," said Chris Eng, chief research officer at Veracode.

"The bigger story at the two-year anniversary, however, is that there is still room for improvement when it comes to open source software security. If Log4Shell was another example in a long series of wake-up calls to adopt more stringent open source security practices, the fact that more than one in three applications currently run vulnerable versions of Log4j shows there is more work to do.

"The major takeaway here is that organizations may not be aware of how much open source security risk they are exposed to and how to mitigate it."

Despite being valued at $86 billion by private investors, OpenAI reported $44,485 in revenue in 2022, almost entirely from investment income. CNBC reports: That's from the nonprofit parent's 990 filing with the Internal Revenue Service, a form that has to be filled out by organizations wishing to maintain their tax-exempt status. Federal standards don't require audited financial statements from nonprofits. In its home state of California, OpenAI was able to avoid submitting audited financials for 2022 because the foundation's stated revenue was below the $2 million reporting threshold. The last time OpenAI filed with the state was 2017, when revenue was $33.2 million, or more than 700 times what the foundation reported for 2022.

For all its talk of openness, OpenAI's financials remain a black box. Created as a nonprofit in 2015, OpenAI launched a so-called capped-profit entity in 2019, enabling it to raise billions of dollars in outside funding and attain attributes of a tech startup, such as the ability to hand out equity to employees. The for-profit side of the house went on to develop ChatGPT, the chatbot that took the world by storm late last year and kicked off the generative AI boom. [...]

Thad Calabrese, a professor of public and nonprofit financial management at New York University, said OpenAI's current status is confusing, and is unlike anything he has seen in the nonprofit world. He said OpenAI could give up its nonprofit status, and he cited the Blue Cross Blue Shield Association, which in 1994 allowed associated nonprofit medical insurance plans to switch into for-profit entities. "There's no real need to have the nonprofit," Calabrese said. "If you want to be a startup, be a startup." Regarding OpenAI's reporting with the IRS, he said "fundamentally you can't really get a holistic sense of these organizations when you don't have consolidated financial statements."

An anonymous reader quotes a report from REVE News: The U.S. Energy Information Administration (EIA) expects, for the first year on record, combined electricity generation from wind and solar to surpass generation from coal in 2024. EIA expects solar generation in 2024 to increase 39% (228 kilowatthours) from 2023, driven by continued increases in solar capacity. "Renewables, particularly solar photovoltaics, are growing rapidly and making large contributions to electricity generation," DeCarolis said.

EIA expects natural gas prices to be $2.77 per million British thermal units this winter, about 23% lower than previously forecast. The winter season is off to a warmer-than-expected start, so U.S. households are consuming less natural gas for heat than expected. The lower natural gas consumption is also contributing to rising U.S. natural gas inventories, which typically results in lower prices. "We're seeing record domestic natural gas production paired with lower-than-expected natural gas demand, and we expect that is going to push prices lower this winter season," DeCarolis said. EIA will publish its next STEO on January 9, 2024, including the agency's first forecasts for the energy sector through 2025. The full report is available on the EIA website.

Politico reports that the climate bill passed in America in 2022 "has ignited a new zeal among leaders around the world for the kind of winner-picking, subsidy-flush governing that has been out of fashion in many countries for the past 40 years."

The bill's "mix of lavish support for clean energy technologies and efforts to box out foreign competitors is also promoting a kind of green patriotism — and even some politicians on the right, at least outside the U.S., say that's a climate message they can sell." [The bill] is having a real-world impact as investors shift their money to the U.S. from abroad, hungry to take advantage of the tax breaks. In July, for example, Swiss solar manufacturer Meyer Burger canned plans to build a factory in Germany, choosing Arizona instead. That has left political leaders across the world with a choice: Grinch and grumble about the United States' sudden clean industry favoritism, or follow suit... Even the United States' favorite pals on the global stage have felt rattled by the sudden diversion from decades of free trading. But in the U.K., European Union and Australia, many leaders are now working on their own versions.
Some examples of upcoming climate actions:

- Australia's Labor party "has budgeted $1.3 billion in spending this year on green hydrogen projects and around $660 million on moving the economy toward electricity rather than fossil fuels."

- The EU will "start operating a border tariff on high-carbon products in 2026, which seeks to keep hold of its heavy industries even as they pay an increasingly punitive price for polluting to the EU Emissions Trading System."

- The UK Labour party plans messaging "that casts the green energy transition as a national mission which can create jobs in former industrial communities."

- In the U.S. the White House says its bill will spur closer to $700 billion — or even $1 trillion — in green incentives over 10 years. "As the White House sees it, the jump means the tax credits for priorities such as homegrown clean power and electric vehicles have proven more popular than initially anticipated."


Taken together, all the bills "reflect the urgency of the problem," Politico argues, "by aiming to transform the economy at a pace the market can't deliver on its own." "We are in the middle of a climate crisis because firms couldn't do the job of decarbonizing," said Todd Tucker, director of industrial policy and trade at the progressive think tank Roosevelt Institute. "The climate crisis is the world's biggest market failure ever and it's going to take really strong public investment."

David Shepardson reports via Reuters: U.S. Commerce Secretary Gina Raimondo said she expects to make around a dozen semiconductor chips funding awards within the next year, including multi-billion dollar announcements that could drastically reshape U.S. chip production. She announced the first award on Monday -- $35 million to a BAE Systems facility in Hampshire to produce chips for fighter planes from the "Chips for America" semiconductor manufacturing and research subsidy program approved by Congress in August 2022.

"Next year we'll get into some of the bigger ones with leading-edge fabs," Raimondo told reporters. "A year from now I think we will have made 10 or 12 similar announcements, some of them multi-billion dollar announcements." In an interview with Reuters, Raimondo said that the number of awards could go higher than 12. She said she wants the percentage of semiconductors produced in the United States to rise from about 12% to closer to 20% -- though that is still down from 40% in 1990 -- and to have at least two "leading-edge" U.S. manufacturing clusters. In addition, she wants the U.S. to have cutting-edge memory and packaging production and to "meet the military's needs for current and mature" chips. Raimondo noted that the U.S. currently does not have any cutting-edge manufacturing production and wants to get that to about 10%.

An anonymous reader quotes a report from the New York Times: [H]ow do we feed ourselves without further damaging the planet or worsening rising levels of hunger? This year's United Nations climate summit has confronted this question like never before. For the first time there is a broad acknowledgment that the food agenda is aligned with the climate fight across the board," said Ed Davey of the World Resources Institute, who worked with organizers of the summit, known as COP28, on its food agenda. [...] More than two-thirds of the world's countries endorsed an agreement to retool the global food system, though it's vague, lacks concrete targets, and is nonbinding. The United Nations food agency issued a landmark report laying out what it would take to align the global food system with the goal to limit average global temperature rise to manageable levels. The United States and the United Arab Emirates together committed about $17 billion toward agricultural innovations to address climate change. [...]

The F.A.O. road map means doing different things in different countries. In North America, food experts said, it means nudging citizens to eat less meat and dairy, which produce high emissions. In countries of sub-Saharan Africa, it means increasing agricultural productivity. Every country must cut food loss and waste. "We are at this reckoning point where we have to move away from pure awareness raising and actually start changing habits," Yvette Cabrera, a food waste expert at the Natural Resources Defense Council, said.

Road maps, of course, are only that until someone starts following the directions. In this case, that's up to national governments. That's where the Emirates Declaration on Sustainable Agriculture, Resilient Food Systems and Climate Action comes in. It commits countries to including agricultural emissions in their next round of climate targets, in 2025. It contains no other targets or timelines, nor prescribes any specific policies. So far, 154 countries have signed on. India, which has long been sensitive to any global accords that impact food security, was a holdout. One measure of the coming food fight is that it's unclear whether there's any appetite to include agricultural emissions targets in the main agreement, which is the subject of bitter negotiations at the moment. The latest draft does not include them.

Nearly 1 in 5 teenagers in the U.S. say they use YouTube and TikTok "almost constantly," according to a Pew Research Center survey. CNBC reports: The survey showed that YouTube was the most "widely used platform" for U.S.-based teenagers, with 93% of survey respondents saying they regularly use Google's video-streaming service. Of that 93% figure, about 16% of the teenage respondents said they "almost constantly visit or use" YouTube, underscoring the video app's immense popularity with the youth market. TikTok was the second-most popular app, with 63% of teens saying they use the ByteDance-owned short-video service, followed by Snapchat and Meta's Instagram, which had 60% and 59%, respectively. About 17% of the 63% of respondents who said they use TikTok indicated they access the short-video service "almost constantly," the report noted.

Meanwhile, Facebook and Twitter, now known as X, are not as popular with U.S.-based teenagers as they were a decade ago, the Pew Research study detailed. Regarding Facebook in particular, the Pew Research authors wrote that the share of teens who use the Meta-owned social media app "has dropped from 71% in 2014-2015 to 33% today." During the same period, Meta-owned Instagram's usage has not made up the difference in share, increasing from 52% in 2014-15 to a peak of 62% last year, then dropping to 59% in 2023, according to the firm.

A draft deal to cut global fossil fuel production is "grossly insufficient" and "incoherent" and will not stop the world from avoiding dangerous climate breakdown, according to delegates at the UN's Cop28 summit. From a report: The text put forward by the summit presidency after 10 days of wrangling was received with concern and anger by many climate experts and politicians, though others welcomed elements of the draft including the first mention in a Cop text of reducing fossil fuel production. Some countries are despairing that the text does not require a full phase-out of fossil fuels.

Cedric Schuster of Samoa, chair of the Alliance of Small Island States, said: "We will not sign our death certificate. We cannot sign on to text that does not have strong commitments on phasing out fossil fuels." The Cop28 presidency released a draft text in the early evening on Monday, which called for "reducing both consumption and production of fossil fuels, in a just, orderly and equitable manner, so as to achieve net zero by, before or around 2050, in keeping with the science."

The text avoids highly contentious calls for a "phase-out" or "phase-down" of fossil fuels, which have been the focus of deep disagreement among the more than 190 countries meeting in Dubai. But instead of requiring fossil fuel producers to cut their output, it frames such reductions as optional, by calling on countries to "take actions that could include" reducing fossil fuels. "That one word 'could' just kills everything," said Eamon Ryan, Ireland's environment minister.

Fei-Fei Li and John Etchemendy, the founding co-directors of the Stanford Institute for Human-Centered Artificial Intelligence, in an op-ed on WSJ argue that AI is too important to be left entirely in the hands of the big tech companies: Among other things, 2023 will be remembered as the year artificial intelligence went mainstream. But while Americans from every corner of the country began dabbling with tools like ChatGPT and Midjourney, we believe 2023 is also the year Congress failed to act on what we see as the big picture: AI's impact will be far bigger than the products that companies are releasing at a breakneck pace. AI is a broad, general-purpose technology with profound implications for society that cannot be overstated.

[...] So what needs to happen? President Biden has set the stage, and with all this attention, it's time for Congress to act. They need to pass the Create AI Act, adhere to the elements called on by the new executive order, and invest more in the public sector to ensure America's leadership in creating AI technology steeped in the values we stand for. We also encourage an investment in human capital to bring more talent to the U.S. to work in the field of AI within academia and the government.

But why does this matter? Because this technology isn't just good for optimizing ad revenue for technology companies, but can fuel the next generation of scientific discovery, ranging from nuclear fusion to curing cancer. Furthermore, to truly understand this technology, including its sometimes unpredictable emergent capabilities and behaviors, public-sector researchers urgently need to replicate and examine the under-the-hood architecture of these models. That's why government research labs need to take a larger role in AI. [...]

New York has partnered with chip firms to build $10 billion semiconductor research site at University at Albany, featuring cutting-edge ASML equipment to develop most advanced chips. From a report: Once the machinery is installed, the project and its partners will begin work on next-generation chip manufacturing there, according to New York Gov. Kathy Hochul's office. The partners include tech giant IBM, memory manufacturer Micron and chip manufacturing equipment makers Applied Materials and Tokyo Electron.

The expansion could help New York's bid to be designated a research hub under last year's $53 billion Chips Act. That legislation included $11 billion for a National Semiconductor Technology Center to foster domestic chip research and development. Expanding domestic chip manufacturing and research has become a federal and state-level priority in recent years as concern grows in the U.S. over China's expanding grasp over the industry. Chips are increasingly seen as a crux of geopolitical power, underlying advanced weapons for militaries and sophisticated artificial-intelligence systems.

The White House is racing to overcome internal differences and hash out a new policy over how the US and other governments should view the rapid rise of global data flows that are fueling everything from AI to advanced manufacturing. From a report: In a series of sessions due to begin on Wednesday, President Joe Biden's national security and economic teams are due to meet with companies, labor and human rights advocates, and other experts on the digital economy as part of a review launched last month, according to people directly involved. At issue is laying out a clear US position on the rules for the global internet as governments confront an accelerating amount of data flowing across borders with mounting economic, privacy, income inequality and national security consequences.

Coming just days after the EU agreed late Friday to new regulations for AI, the Biden administration's push highlights how governments are racing to figure out their role in a fast-evolving digital economy and competing to lead the conversation. [...] In an interview, a senior administration official said the US was not backing away from long-standing US advocacy for a free and open internet even as some governments around the world are increasingly trying to restrict information flows.

Open source model startup Mistral AI released a new LLM last week with nothing but a torrent link. It has now offered some details about Mixtral, the new LLM. From a report: Mistral AI continues its mission to deliver the best open models to the developer community. Moving forward in AI requires taking new technological turns beyond reusing well-known architectures and training paradigms. Most importantly, it requires making the community benefit from original models to foster new inventions and usages.

Today, the team is proud to release Mixtral 8x7B, a high-quality sparse mixture of experts models (SMoE) with open weights. Licensed under Apache 2.0. Mixtral outperforms Llama 2 70B on most benchmarks with 6x faster inference. It is the strongest open-weight model with a permissive license and the best model overall regarding cost/performance trade-offs. In particular, it matches or outperforms GPT3.5 on most standard benchmarks.

Mixtral has the following capabilities:
1. It gracefully handles a context of 32k tokens.
2. It handles English, French, Italian, German and Spanish.
3. It has strong performance in code generation.
4. It can be finetuned into an instruction-following model that achieves a score of 8.3 on MT-Bench.

"The machines in the facility waft air towards a water-based solvent," reports the Times of London, "which carbon dioxide in the air dissolves into. An electrical current then separates those compounds from the solvent, creating a pure stream of CO2."

More details from Sky News: The UK's first-ever direct air capture plant has been turned on to remove CO2 from the atmosphere and turn it into jet fuel. The machine, developed by Mission Zero Technologies in partnership with the University of Sheffield, will run on solar power to recover 50 tonnes of CO2 from the air per year and turn it into Sustainable Aviation Fuel (SAF)...

Aviation accounts for about 2% of the world's emissions and Ihab Ahmed, research associate from the University of Sheffield, said the fuel has the capacity to massively reduce the impact of aviation on the environment — and is an important step towards the government's ambitious target to increase the use of SAF to at least 10% by 2030.
America opened its first carbon-capture facility in November in a warehouse in California. While the carbon isn't converted into sustainable air fuel, it can capture a maximum of 1,000 tons of carbon dioxide per year/

Long-time Slashdot reader schwit1 shared an interesting article from ScienceAlert: Undersea volcanic eruptions account for more than three-quarters of all volcanism on Earth, but rarely do we see the impacts. The Hunga Tonga-Hunga Ha'apai eruption of 2022 was a dramatic exception. Its furious explosion from shallow waters broke the ocean surface and punched through the stratosphere, generating supercharged lighting and an atmospheric shock wave that circled the globe several times.

But there was far more to the fallout than satellite images could possibly capture or observers could report. We know the human toll this explosion took, but now a new study investigating the underwater impacts of the Hunga-Tonga eruption has detailed just how ferociously the explosion tore open the seafloor, ripped up undersea cables, and smothered marine life... The team also compiled a trove of data from ship-based sonar, sediment cores, geochemical analyses, water column samples, and video footage to chart the devastatingly powerful upheaval...

Their analyses show at least 6 cubic kilometers (km3) of seafloor was lost from within the caldera — 20 times the eruptive volume of the 1980 Mount St. Helens eruption — and an additional 3.5 km3 of material was blasted out of the Hunga volcano's submerged flanks... That leaves roughly four-fifths of the ejected material in the ocean; material that was funneled into fast-moving density flows that scoured out tracks 30 meters deep in the seafloor and accumulated 22 meters (72 feet) thick in some places.

"Over the years, Austin has seen a huge migration of tech companies moving to the city, from billionaire owners of Twitter (X) to the largest search engine in the world," according to a local news site in Texas.

"But many startups are now choosing to leave the capital city they once flocked to because of the rising cost of living, low funding, and lack of diversity, according to TechCrunch. " On Thursday, December 7, the cloud computing company VMWare announced it was laying off 577 employees in Austin as part of a nationwide job reduction to cut costs, according to the Austin American-Statesman. TechCrunch is reporting that startup founders, like Techstars Managing Director Amos Schwartzfarb, are announcing their decisions to leave Austin's "lackluster" startup scene... In 2022, Meta abandoned plans to move into the biggest skyscraper in Austin, and Google froze plans to move into 35 floors of a different downtown building, despite paying rent to the developer, according to the Washington Post...

In January, CEO Don Ward of Laundris, a B2B enterprise industrial software platform, announced he would be relocating his company to Tulsa because it reminded him "of where Austin was 10 years ago in terms of the tech ecosystem being built," according to Tulsa World. Last month, startup unicorn Cart, an e-commerce business, announced it was moving its headquarters back to Houston after relocating to Austin in late 2021, according to TechCrunch.

"U.S. lawmakers and ministers from around the world blasted a letter that emerged Friday night, warning OPEC member states to resist calls at the COP28 climate summit for a fossil fuel phase-out," reports Axios: The letter has shaken up the climate talks in a critical phase, as nations spar over whether to include historic language in an emerging climate agreement that calls for a phase-out of fossil fuels... "OPEC's letter is outrageous. OPEC wants to talk about emissions, but not the source of the emissions," said Sen. Ed Markey (D-MA), who is visiting COP28 as part of a congressional delegation. "It would be like the tobacco industry saying you can talk about lung cancer, but you can't talk about cigarettes. It's outrageous, it's preposterous," he told Axios. "The extent to which they had the nerve to write such a preposterous letter, just shows you how much in denial they still are." The letter, reportedly sent by the OPEC secretary general to all 13 member nations and 10 members of the larger OPEC+ coalition on Dec. 6, warned of the possibility of a tipping point toward a COP28 outcome containing language calling for a phase-out of fossil fuels.
Reuters reports that "It was the first time OPEC's Secretariat has intervened in the U.N. climate talks with such a letter, according to Alden Meyer of the E3G climate change think tank. 'It indicates a whiff of panic,' he said."

More from Politico: The full-scale resistance that oil-exporting countries are mounting against a COP28 deal to end fossil fuel use is a sign of "panic," said Germany's climate envoy... [T]o Jennifer Morgan, Germany's special envoy for international climate action, the letter was also a rare admission from the oil industry that these climate talks pose an existential threat to its business model...

As the talks speed toward a close, officials are working to craft language that can get support from the nearly 200 countries participating in the process. It will be up to the UAE presidency of COP28 to attempt to find consensus. Draft text over the weekend offered several options for a pledge to "phase out" fossil fuels, all with various caveats. But several people close to the talks said that Saudi Arabia and the Arab group of negotiators have resisted such language, including storming out of one meeting room, according to one observer of the process granted anonymity to discuss the closed-door talks.

"We have raised our consistent concerns with attempts to attack energy sources instead of emissions," Saudi Arabia's Albara Tawfiq said during Sunday's public session.
The Guardian adds that "there is some optimism coming from the discussions." Catherine Abreu, the executive director of Destination Zero, said: "In eight years of attending climate talks, I have never felt more that we were talking about what really matters. Hearing ministers from all around the world talk straight about the realities of phasing out fossil fuels is something I could not have imagined happening in this process even two years ago. "What's clear after this Majlis dialogue at Cop28 is that there is overwhelming consensus that phasing out fossil fuels and scaling up renewable energy is absolutely necessary to hold to the promise of the Paris Agreement and keep the hope of 1.5 alive.

"The United States military is preparing to launch its secretive X-37B space plane on a seventh mission in orbit," reports NBC News.

Shaped like a small space shuttle, "It's an itty-bitty spaceplane, not quite 30 feet long and under 10 feet tall," writes the Washington Post, "with a pair of stubby wings and a rounded, bulldog-like nose." Space.com says the launch window for the uncrewed vehicle opens Monday at 8:14 p.m. EST.

From NBC News: For the first time, the X-37B will ride into orbit atop a SpaceX Falcon Heavy rocket. Since its debut more than a decade ago, the X-37B has been a source of intrigue within the space community, mostly owing to the mysterious nature of its activities in low Earth orbit. Despite not knowing its true purpose or location, skywatchers have occasionally spotted and photographed the space plane in the night sky using telescopes... The military is tight-lipped about such operations, but the Space Force said the X-37B missions "are key to ensuring safe and responsible operations in space for all users of the space domain..."
The "U.S. Space Force says that launching on SpaceX's Falcon Heavy rocket will allow testing "in new orbital regimes, experimenting with space domain awareness technologies and investigating the radiation effects to NASA materials."

The Washington Post notes that "The reference about 'space domain awareness' could mean that it will be keeping an eye on other satellites, potentially watching for threats": At least one part of the mission is known. The vehicle will "expose plant seeds to the harsh radiation environment of long-duration spaceflight" in an experiment for NASA. In the past, the Pentagon has also used the X-37B to test some of its cutting edge technologies, including a small solar panel designed to transform solar energy into microwaves, a technology that one day could allow energy harnessed in space to be beamed back to Earth...

If Sunday's X-37B mission is like previous ones, the spaceplane could be in space for a while. Its first flight, which launched in 2010, lasted 224 days.

Four Republican candidates for U.S. president debated Wednesday — and moderator Megyn Kelly had a tough question for former South Carolina governor Nikki Haley. "Can you please speak to the requirement that you said that every anonymous internet user needs to out themselves?" Nikki Haley: What I said was, that social media companies need to show us their algorithms. I also said there are millions of bots on social media right now. They're foreign, they're Chinese, they're Iranian. I will always fight for freedom of speech for Americans; we do not need freedom of speech for Russians and Iranians and Hamas. We need social media companies to go and fight back on all of these bots that are happening. That's what I said.

As a mom, do I think social media would be more civil if we went and had people's names next to that? Yes, I do think that, because I think we've got too much cyberbullying, I think we've got child pornography and all of those things. But having said that, I never said government should go and require anyone's name.

DeSantis: That's false.

Haley: What I said —

DeSantis:You said I want your name. As president of the United States, her first day in office, she said one of the first things I'm going to do --

Haley: I said we were going to get the millions of bots.

DeSantis: "All social medias? I want your name." A government i.d. to dox every American. That's what she said. You can roll the tape. She said I want your name — and that was going to be one of the first things she did in office. And then she got real serious blowback — and understandably so, because it would be a massive expansion of government. We have anonymous speech. The Federalist Papers were written with anonymous writers — Jay, Madison, and Hamilton, they went under "Publius". It's something that's important — and especially given how conservatives have been attacked and they've lost jobs and they've been cancelled. You know the regime would use that to weaponize that against our own people. It was a bad idea, and she should own up to it.

Haley: This cracks me up, because Ron is so hypocritical, because he actually went and tried to push a law that would stop anonymous people from talking to the press, and went so far to say bloggers should have to register with the state --

DeSantis:That's not true.

Haley: — if they're going to write about elected officials. It was in the — check your newpaper. It was absolutely there.
DeSantis quickly attributed the introduction of that legislation to "some legislator".

The press had already extensively written about Haley's position on anonymity on social media. Three weeks ago Business Insider covered a Fox News interview, and quoted Nikki Haley as saying: "When I get into office, the first thing we have to do, social media companies, they have to show America their algorithms. Let us see why they're pushing what they're pushing. The second thing is every person on social media should be verified by their name." Haley said this was why her proposals would be necessary to counter the "national security threat" posed by anonymous social media accounts and social media bots. "When you do that, all of a sudden people have to stand by what they say, and it gets rid of the Russian bots, the Iranian bots, and the Chinese bots," Haley said. "And then you're gonna get some civility when people know their name is next to what they say, and they know their pastor and their family member's gonna see it. It's gonna help our kids and it's gonna help our country," she continued... A representative for the Haley campaign told Business Insider that Haley's proposals were "common sense."

"We all know that America's enemies use anonymous bots to spread anti-American lies and sow chaos and division within our borders. Nikki believes social media companies need to do a better job of verifying users so we can crack down on Chinese, Iranian, and Russian bots," the representative said.
The next day CNBC reported that Haley "appeared to add a caveat... suggesting Wednesday that Americans should still be allowed to post anonymously online." A spokesperson for Haley's campaign added, "Social media companies need to do a better job of verifying users as human in order to crack down on anonymous foreign bots. We can do this while protecting America's right to free speech and Americans who post anonymously."

Privacy issues had also come up just five minutes earlier in the debate. In March America's Treasury Secretary had recommended the country "advance policy and technical work on a potential central bank digital currency, or CBDC, so the U.S. is prepared if CBDC is determined to be in the national interest."

But Florida governor Ron DeSantis spoke out forecefully against the possibility. "They want to get rid of cash, crypto, they want to force you to do that. They'll take away your privacy. They will absolutely regulate your purchases. On Day One as president, we take the idea of Central Bank Digital Currency, and we throw it in the trash can. It'll be dead on arrival." [The audience applauded.]

The Washington Post reports: A prominent disinformation scholar has accused Harvard University of dismissing her to curry favor with Facebook and its current and former executives in violation of her right to free speech.

Joan Donovan claimed in a filing with the Education Department and the Massachusetts attorney general that her superiors soured on her as Harvard was getting a record $500 million pledge from Meta founder Mark Zuckerberg's charitable arm. As research director of Harvard Kennedy School projects delving into mis- and disinformation on social media platforms, Donovan had raised millions in grants, testified before Congress and been a frequent commentator on television, often faulting internet companies for profiting from the spread of divisive falsehoods. Last year, the school's dean told her that he was winding down her main project and that she should stop fundraising for it. This year, the school eliminated her position.
As one of the first researchers with access to "the Facebook papers" leaked by Frances Haugen, Donovan was asked to speak at a meeting of the Dean's Council, a group of the university's high-profile donors, remembers The Columbia Journalism Review : Elliot Schrage, then the vice president of communications and global policy for Meta, was also at the meeting. Donovan says that, after she brought up the Haugen leaks, Schrage became agitated and visibly angry, "rocking in his chair and waving his arms and trying to interrupt." During a Q&A session after her talk, Donovan says, Schrage reiterated a number of common Meta talking points, including the fact that disinformation is a fluid concept with no agreed-upon definition and that the company didn't want to be an "arbiter of truth."

According to Donovan, Nancy Gibbs, Donovan's faculty advisor, was supportive after the incident. She says that they discussed how Schrage would likely try to pressure Douglas Elmendorf, the dean of the Kennedy School of Government (where the Shorenstein Center hosting Donovan's project is based) about the idea of creating a public archive of the documents... After Elmendorf called her in for a status meeting, Donovan claims that he told her she was not to raise any more money for her project; that she was forbidden to spend the money that she had raised (a total of twelve million dollars, she says); and that she couldn't hire any new staff. According to Donovan, Elmendorf told her that he wasn't going to allow any expenditure that increased her public profile, and used a number of Meta talking points in his assessment of her work...

Donovan says she tried to move her work to the Berkman Klein Center at Harvard, but that the head of that center told her that they didn't have the "political capital" to bring on someone whom Elmendorf had "targeted"... Donovan told me that she believes the pressure to shut down her project is part of a broader pattern of influence in which Meta and other tech platforms have tried to make research into disinformation as difficult as possible... Donovan said she hopes that by blowing the whistle on Harvard, her case will be the "tip of the spear."
Another interesting detail from the article: [Donovan] alleges that Meta pressured Elmendorf to act, noting that he is friends with Sheryl Sandberg, the company's chief operating officer. (Elmendorf was Sandberg's advisor when she studied at Harvard in the early nineties; he attended Sandberg's wedding in 2022, four days before moving to shut down Donovan's project.)

Linux magazine interviewed an AlmaLinux official about what happened after their distro pivoted to binary compatibility with Red Hat Enterprise Linux rather than being a downstream build: Linux Magazine: What prompted AlmaLinux to choose ABI over 1:1 compatibility with RHEL?

benny Vasquez, chair of the AlmaLinux OS Foundation: The short answer is our users. Overwhelmingly, our users made it clear that they chose AlmaLinux for its ease of use, the security and stability that it provides, and the backing of a diverse group of sponsors. All of that together meant that we didn't need to lock ourselves into copying RHEL, and we could continue to provide what our users needed.

Moreover, we needed to consider what our sponsors would be able to help us provide, and how we could best serve the downstream projects that now rely on AlmaLinux. The rippling effects of any decision that we make are beyond measure at this point, so we consider all aspects of our impact and then move forward with confidence and intention.

LM: How did AlmaLinux's mission of improving the Linux ecosystem for everyone influence this decision?

bV: We strongly believe that the soul of open source means working together, providing value where there is a gap, and helping each other solve problems. If we participate in an emotional reaction to a business's change, we will then be distracted and potentially hurt users and the Enterprise Linux ecosystem overall. By remaining focused on what is best (though not easiest), and adapting to the ecosystem as it is today, we will provide a better and more stable operating system.

LM: What opportunities does the ABI route offer over 1:1 compatibility?

bV: By liberating ourselves from the 1:1 promise, we have been able to do a few small things that have proven to be a good testing ground for what will come in the future. Specifically, we shipped a couple of smallish, but extremely important, security patches ahead of Red Hat, offering quicker security to the users of AlmaLinux... This also opens the door for other features and improvements that we could add back in or change, as our users need. We have already seen greater community involvement, especially around these ideas.

LM: Does the ABI route pose any extra challenges?

bV: The obvious one is that building from CentOS Stream sources takes more effort, but I think the more important challenge (and the one that will only be solved with consistency over time) is the one of proving that we will be able to deliver on the promise... We will continue on our goal of becoming the home for all users that need Enterprise Linux for free, but in the next year I expect that we will see an expansion in the number of kernels we support and see some new and exciting SIGs spun up around other features or use cases, as the community continues to standardize on how to achieve their goals collectively.
Linux magazine notes that in August AlmaLinux added two new repositories, Testing and Synergy. "Testing, currently available for AlmaLinux 8 and 9, offers security updates before they are approved and implemented upstream. Synergy contains packages requested by community members that currently aren't available in RHEL or Extra Packages for Enterprise Linux (EPEL, a set of extra software packages maintained by the Fedora SIG that are not available in RHEL or CentOS Stream)."

The article also points out that "On the upside, AlmaLinux can now include comments in their patches for greater transparency. Users will see where the patch comes from, which was not an option before."

Vasquez tells the magazine, "I think folks will be seriously happy about what they find as we release the new versions, namely, the consistency, stability, and security that they've come to expect from us."