Obit Celebrated information security researcher Dan Kaminsky, known not just for his technical ability but also for his compassion and support for those in his industry, has died. He was 42.
Though Kaminsky rose to fame in 2008 for identifying a critical design weakness in the internet’s infrastructure – and worked in secret with software developers to mitigate the issue before it could be easily exploited – he had worked behind the scenes in the infosec world for at least the past two decades.
Not that Dan was the celebrity type. When he disclosed the DNS poisoning flaw at that year‘s Black Hat conference, he looked distinctly uncomfortable in a suit – the first time many had seen him wear one – though when it came to explaining the vulnerability and its solution, he was unparalleled.
When your humble Register hack asked him why he hadn’t gone to the dark side and used the flaw to become immensely wealthy – either by exploiting it to hijack millions of netizens’ web traffic, or by selling details of it to the highest bidders – he said not only would that have been morally wrong, he didn’t want his mom to have to visit him in prison. You can read more technical info on the DNS flaw here.
Besides discovering the domain-name system weakness, he had been a stalwart of the security research scene for years, and was a much-loved regular at conferences big and small. You can find a YouTube playlist of his DEF CON presentations, for instance, here. He would talk with and advise anyone – even paying the entrance fees for some researchers or letting them crash in his hotel room floor – and it was this generosity that people are overwhelmingly remembering this weekend.
Dan Kaminsky’s @dakami passion, creativity, desire to learn and teach really help influence both #defcon and @BlackHatEvents in the early years. He became an icon in all the positive ways and we looke up to him. RIP Hacker.
Dan Kaminsky was one of our best and kindest. Dan showed me, a then budding infosec journo with next to no knowledge and out of my depth 15 odd years ago, only kindness and patience. He never changed in the intervening years. Biggest smile in infosec. 💙 to friends and family.
Absolutely heart-breaking to open up Twitter and be hit by the tragic news about @dakami. He was incredible. Truly. He inspired me from the very first time I met him. The infosec world will forever shine a little less bright. 💔
He would just pop up in friends lives to spread cheer. He recently sent me a fun little retro computing kit to hack on with my kids, totally out of the blue. Dan never expected anything in return. He was just that kind of guy.
It’s hard to meet a person in the computer security field for whom everyone has a good word, and Kaminsky was one of them. He also came up with some top-notch research besides the DNS poisoning issue.
Dan was a force of nature. A hacker who saw not just 1 or 2 moves ahead but so many you sometimes wondered if he was playing the same game: I asked him for a demo. He brought a record turntable he used to move a VM forwards & backwards in time like a DJ scratching.
For example, in 2005, Sony BMG decided to install rootkits on people’s PCs without telling them to counter CD music piracy. Company president Thomas Hesse argued that “most people, I think, don’t even know what a rootkit is, so why should they care about it?” After the issue was identified by Mark Russinovich, now CTO of Microsoft Azure, Kaminsky helped in identifying just how many folks likely had the anti-piracy mechanism on their systems – in short, some 570,000 networks had computers touched by Sony BMG’s code.
He also did sterling work in spotting flaws in SSL, and in automating the detection of Conficker malware infections. Outside of these high-profile discoveries, Kaminsky was beloved by so many because he had a sense of fun and clearly enjoyed collaborating with others.
It’s a huge loss to our community. Here is the Hackers fan movie we made, that @dakami was kind enough to participate in. @mattblaze was my AD/deputy and everyone just did it for fun and as a tribute to the film. Hack The Planet, Dan. Your spirit lives on. https://t.co/DChVCGsb6j
His conference talks at Black Hat, DEF CON, and smaller cons were often overbooked and standing-room only at the back. He had an unerring knack for finding elegant or interesting ways of probing code, explaining the ramifications to an audience, and then answering as many questions as he could.
As a journalist, this was a blessing for your vulture – Kaminsky had no animosity to the press if they were trying to get the full story out, and would explain stuff quickly and simply to make sure coverage was accurate. This hack remembers cancelling dinner plans when he called late one afternoon with an interesting story: you knew it was going to be a late night though it would be worth it.
There is now a move to see Kaminsky inducted into the Internet Hall of Fame. It is an accolade he thoroughly deserves. ®
There were complaints of ‘a large number of hurdles’ to unsubscribe from Amazon Prime such as complicated menus, skewed wording, confusing choices and warnings.
Amazon has committed to making it easier for users to cancel their Prime subscription to comply with EU rules.
The tech giant will now let consumers in the EU and EEA unsubscribe from Amazon Prime with just two clicks, using a prominent cancel button.
This came following a dialogue with the European Commission and national consumer protection authorities. Complaints had been issued to the Commission by the European Consumer Organisation, the Norwegian Consumer Council and the Transatlantic Consumer Dialogue.
These consumer authorities noted “a large number of hurdles” to unsubscribe from Amazon’s service, such as complicated navigation menus, skewed wording, confusing choices and repeated nudging.
Amazon made initial changes last year, labelling the cancel button more clearly and shortening the explanatory text. This text will now been reduced further so consumers don’t get distracted by warnings and deterred from cancelling.
“Consumers must be able to exercise their rights without any pressure from platforms,” said EU commissioner for justice Didier Reynders.
“Opting for an online subscription can be very handy for consumers as it is often a very straightforward process, but the reverse action of unsubscribing should be just as easy. One thing is clear: manipulative design or ‘dark patterns’ must be banned.”
Amazon has committed to implementing the new changes on all its EU websites and for all devices. The tech giant will be monitored by the European Commission and national authorities to ensure it complies with EU consumer law.
“Customer transparency and trust are top priorities for us,” an Amazon spokesperson said.
“By design we make it clear and simple for customers to both sign up for or cancel their Prime membership. We continually listen to feedback and look for ways to improve the customer experience, as we are doing here following constructive dialogue with the European Commission.”
Amazon has had a number of dealing with the European Commission over the years regarding its business practices. The tech giant was hit with a Statement of Objections in 2020 based on its use of marketplace seller data.
The country was ordered to recoup €250m in back taxes. However, Amazon won its appeal against this ruling last year, as the EU’s general court said the European Commission didn’t provide the “requisite legal standard” to prove Amazon received favour from tax authorities.
10 things you need to know direct to your inbox every weekday. Sign up for the Daily Brief, Silicon Republic’s digest of essential sci-tech news.
Why read books, in this day and age? “Haven’t we all secretly sort of come to an agreement, in the last year or two or three, that novels belonged to the age of newspapers and are going the way of newspapers, only faster?” wrote Jonathan Franzen, tongue firmly in cheek, in a 2010 essay. The comment feels trenchant a decade later, in an era marked by a saturation of streaming platforms, short-form video, podcasts and screen adaptations of said podcasts.
The proportion of non-readers in Australia has grown in recent years: results of the 2021 National Reading Survey found that 25% of people reported not reading a single book in the previous year – up from 8% in a 2017 survey.
Any bibliophile can easily rattle off a list of reasons for reading. Books enlighten and challenge us, they transport us to different worlds, they reflect essential truths about the human condition.
“People who read well and read a lot learn more, pick up more general knowledge … and can then be better critical consumers of what they read,” says Prof Pamela Snow, co-director of the Science of Language and Reading lab at La Trobe University.
So, within our busy lives, how do we better find the time for books? How can we get more out of the reading experience?
We commonly interact with texts in different modes. In skimming through an article, taking in a few lines – a headline and subheadings, for example – we might gain a general but shallow understanding of its meaning. We also scan texts for specific numbers, names, or ideas – a quantity in a recipe, say.
Then there’s deep reading, what the scholars Dr Maryanne Wolf and Dr Mirit Barzillai define as “the array of sophisticated processes that propel comprehension and that include inferential and deductive reasoning, analogical skills, critical analysis, reflection, and insight. The expert reader needs milliseconds to execute these processes; the young brain needs years to develop them.”
Reading on screens has turned us into adept text skimmers. An influential 2005 study that analysed how reading behaviour had changed over the previous decade – coinciding with the global rise of the internet – found that online reading was characterised by “more time spent on browsing and scanning, keyword spotting, [and] one-time reading … while less time is spent on in-depth reading, and concentrated reading”.
“Readers must engage in an active construction of meaning, in which they grapple with the text and apply their earlier knowledge as they question, analyse, and probe,” she and Barzillai have suggested. One technique for in-depth reading of narrative texts is RIDA: to Read, Imagine the scene, Describe it to yourself, and Add more mental detail by noting powerful imagery or salient passages.
Physical books, rather than devices like smartphones, tend to support more focused reading, says Baron, though she says the choice of medium is ultimately a matter of personal preference.
Screens themselves are not inherently detrimental to our ability to focus, says the head of the visual and cognitive neuroscience laboratory at the University of Melbourne, Prof Trichur Vidyasagar.
“People often have the belief, particularly concerned parents, that if you spend too much time on screen devices your concentration may get poorer. That’s not necessarily true,” he says. “If used correctly and not at the cost of other useful activities, they can greatly benefit learning.”
The key is the internet’s boundless potential for distraction. “When you use the screen, there are so many hyperlinks, so many sites, stories, and rabbit holes to go into,” Vidyasagar says. The temptation to multitask – “an illusory myth,” he says – can be hard to resist. “If you think you’re multitasking, what you’re actually doing is switching between two tasks at a rapid rate, and your performance in both goes down.”
“When you read a [physical] book it’s quite different – you can’t get distracted as easily.”
Research in university students has found that comprehension is generally higher for print reading. “There is something about reading digitally that seemingly increases the speed at which students move through the text and this processing time translates into reduced comprehension,” one study found. “The findings are especially true when you’re talking about longer materials,” Baron says, adding as a caveat that research tends to focus on academic rather than leisure reading.
Results seem to differ slightly for dedicated e-reader devices. One study, in which participants read a 28-page mystery story by Elizabeth George either in print or on a Kindle, found no differences in most standard comprehension measures. The print readers, however, were better at reconstructing the plot and chronological aspects of the story – potentially because “the physical substrate of paper provides material placeholders” for events within the story.
Rediscovering joy and meaning
Dr Judith Seaboyer, formerly a senior lecturer in literary studies at the University of Queensland, who retired last May, recently went through a fiction dry spell. “There’s so much good stuff to listen to [on the radio], so much good journalism out there to read, and I was finding that I wasn’t reading novels any more.”
“As somebody … who’s done a PhD in contemporary literary fiction, and taught it for over 20 years – you think I’d know [reading books] is worth doing.”
What broke Seaboyer out of her slump was reading new work by an author she loves – Ali Smith’s Companion Piece. Synthesising ideas and making comparisons across multiple texts is also a known strategy for deepening reading comprehension, so some might find it helpful to dig into multiple books by the same author.
Seaboyer’s advice is to read with curiosity and to carefully consider an author’s choices, which can lead to a deeper understanding of language, characters and plot. “Jot things down, annotate your book, write things in the margin,” she says. “Some publishers are putting out reading guides now – that’s often quite useful.”
Nabokov believed that “One cannot read a book: one can only reread it”. For him, revisiting books – like the process of regarding a painting – meant the mind first “takes in the whole picture and then can enjoy its details”.
“You [might] remember that you really loved reading Austen,” Seaboyer says. “It’s interesting to be thinking as you read … now that I’m older and wiser, am I seeing any of this any differently than I did when I was 18?”
“There are ways to be kind to yourself, to allow yourself the opportunity not to understand something the first time through, or to say … maybe there’s a different book I should read first,” Baron says. “It’s like reading James Joyce: if you want to start with Ulysses, good luck. If you start with A Portrait of the Artist as a Young Man, you’ll have a better shot at working your way in.”
If reading solely for pleasure, abandoning books that are not bringing enjoyment could, in fact, increase reading time. Of frequent readers surveyed in 2021 – those who consumed at least one book a month – 54% reported not finishing a book if they disliked it. As a result, they “move[d] on more quickly to the next book for greater enjoyment … and have fewer and shorter gaps between books”.
For those wanting to read more – for relaxation or self-improvement – Baron suggests committing to short but regular periods of reading, similar to time set aside for exercise or meditation.
The speed question
Some people are naturally fast readers – celebrated academic Harold Bloom claimed to be able to read 1,000 pages an hour in his prime. Most adults, according to 2019 analysis, read English nonfiction silently at a rate of between 175 and 300 words a minute, and fiction at a rate of 200 to 320.
While speed reading techniques or apps may seem alluring for the time poor, they’re unlikely to work without compromising understanding.
“Fast readers are not necessarily better at reading comprehension,” Vidyasagar says.
There are no shortcuts to reading faster. Becoming a better reader requires persistence and “dealing with the frustration at not seeing overnight results”, Snow says. “It’s like any skill – learning a musical instrument, learning to drive a car.”
A 2016 review of the science of reading found that reading can be improved in the same way all other skills are developed: through practice. “The way to maintain high comprehension and get through text faster is to practise reading and to become a more skilled language user.”
“If two goals of reading might be to learn for the long haul, and to think – that may be part of enjoyment, that may be part of learning – then what’s the hurry?” Baron says. “Why are we feeling like the White Rabbit?”
For Seaboyer, reading a good book is akin to a meditative experience . The “wonderful, immersive process that is deep reading” reliably brings her pleasure. “Something else is picking you up, and moving your mind and body and soul into a different space so you can think about the world differently.”
Comment Liquid and immersion cooling have undergone something of a renaissance in the datacenter in recent years as components have grown ever hotter.
This trend has only accelerated over the past few months as we’ve seen a fervor of innovation and development around everything from liquid-cooled servers and components for vendors that believe the only way to cool these systems long term is to drench them in a vat of refrigerants.
Liquid and immersion cooling are by no means new technologies. They’ve had a storied history in the high-performance computing space, in systems like HPE’s Apollo, Cray, and Lenovo’s Neptune to name just a handful.
A major factor driving the adoption of this tech in traditional datacenters is a combination of more powerful chips and a general desire to cut operating costs by curbing energy consumption.
One of the challenges, however, is many of these systems employ radically different form factors than are typical in air-cooled datacenters. Some systems only require modest changes to the existing rack infrastructure, while others ditch that convention entirely in favor of massive tubs into which servers are vertically slotted.
The ways these technologies are being implemented is a mixed bag to say the least.
Immersion cooling meets rack mount
This challenge was on full display this week at HPE Discover, where the IT goliath announced a collaboration with Intel and Iceotope to bring immersion-cooling tech to HPE’s enterprise-focused Proliant server line.
The systems can now be provisioned with Iceotope’s Ku:l immersion and liquid-cooling technology, via HPE’s channel partners with support provided by distributor Avnet Integrated. Iceotope’s designs meld elements of immersion cooling and closed-loop liquid cooling to enable this technology to be deployed in rack environments with minimal changes to the existing infrastructure.
Ice’s chassis-level immersion-cooling platform effectively uses the server’s case as a reservoir and then pumps coolant throughout to hotspots like the CPU, GPU, or memory. The company also offers a 3U conversion kit for adapting air-cooled servers to liquid cooling.
Both designs utilize a liquid-to-liquid heat exchanger toward the back of the chassis, where deionized water is pumped in and heat is removed from the system using an external dry cooler.
This is a stark departure from the approach used by rival immersion-cooling vendors, such as LiquidStack or Submer, which favor submerging multiple systems in a tub full of coolant — commonly a two-phase refrigerant or specialized oil.
While this approach has shown promise, and has even been deployed in Microsoft’s Azure datacenters, the unique form factors may require special consideration from building operators. Weight distribution is among operators’ primary concerns, Dell’Oro analyst Lucas Beran told The Register in an earlier interview.
Standardized reference designs in the works
The lack of a standardized form factor for deploying and implementing these technologies is one of several challenges Intel hopes to address with its $700 million Oregon liquid and immersion cooling lab.
Announced in late May, the 200,000-square-foot facility, located about 20 miles west of Portland at its Hillsboro campus in the US, will qualify, test, and demo its expansive datacenter portfolio using a variety of cooling tech. The chipmaker is also said to be working on an open reference design for an immersion-cooling system that’s being developed by Intel Taiwan.
Intel plans to bring other Taiwanese manufacturers into the fold before rolling out the reference design globally. Whether the x86 giant will be able to bring any consistency to the way immersion cooling will be deployed in datacenters going forward remains to be seen, however.
Even if Intel’s reference design never pans out, there are still other initiatives pursuing similar goals, including the Open Compute Project’s advanced cooling solutions sub project, launched in 2018.
It aims to establish an ecosystem of servers, storage, and networking gear built around common standards for direct contact, immersion, and other cooling tech.
In the meantime, the industry will carry on chilling the best ways it can. ®