Dave Schools Subs For Phil Lesh In Guest-Filled Terrapin Crossroads Celebration [Video]

first_imgIn continuation of their 5th anniversary celebration, Terrapin Crossroads hosted Scott Law & Ross James’ Cosmic Twang for the Wednesday night show. Unfortunately venue founder and Grateful Dead bassist Phil Lesh fell sick with a cold, but recruited Widespread Panic’s Dave Schools to fill in on bass for the entire show.Scott Law & Ross James’ Cosmic Twang were also joined by keyboardist Jason Crosby, vocalist Nicki Bluhm, Cass McCombs, Barry Sless, and drummers Mark Levy and Alex Koford throughout the evening. Thanks to YouTube User MarkoVision Films, you can watch both guest-filled sets below. Setlist: Scott Law & Ross James’ Cosmic Twang | Terrapin Crossroads | San Rafael, CA | 3/8/17:Set I: Sittin’ on Top of the World (SL), Luxury Liner (NB), West L.A. Fadeaway (RJ, NB, AK), Million Dollar Bash (CM), Across the Great Divide (CM, NB), I Don’t Know You (SL, NB), Big Railroad Blues (RJ), Light Up or Leave Me Alone (AK) > New Speedway Boogie (AK) > The Other One (SL) > New Speedway Boogie (AK) > Light Up or Leave Me Alone (One Way or Another) > Light Up or Leave Me Alone (AK)Set II: China Cat Sunflower > (SL, CM) Lucy in the Sky with Diamonds > (CM) Help on the Way > (SL) Slipknot! > Franklin’s Tower (SL, JC, RJ, CM, NB), Get It While You Can (SL, NB), The Stranger (Two Souls in Communion) (CM), Grievous Angel (SL, NB)E: Sin City (SL, NB)[via JamBase][cover photo via Instagram User @stuartlevinephotography]last_img read more

For the Chinese connect

first_imgShe started liking the poetry of India’s poet laureate Rabindranath Tagore while in school, and now China’s noted dulcimer player Liu Yuening has made the first Chinese transcription of Tagore’s songs with the aim of creating an enduring basis for India-China ties as the two countries embark on summit-level talks after a month of problems this week. ‘Tagore’s poetry is like music, it is melodic, sweet and lovely,’ Liu said in an interview here on her way back from Kolkata where she attended the opening of a China gallery at Rabindra Bharati University in Jorasanko, Tagore’s ancestral estate, earlier this week. The gallery has several photographs of Tagore and his family members’ visit to China. Also Read – ‘Playing Jojo was emotionally exhausting’ At a concert in Kolkata to mark the 150th anniversary Tagore’s birth in 2011, Liu on the dulcimer had presented a combination of Chinese and Indian music accompanied by Indian musicians and instruments like the tabla. Beyond her childhood love for Tagore’s poetry, it is her musical instrument – yangqin or the Chinese-hammered dulcimer – that has made Liu the leading exponent of the India-China music dialogue and a key ambassador of culture. The yangqin is a stringed musical instrument with the strings stretched over a trapezoidal sounding board. Also Read – Leslie doing new comedy special with Netflix ‘The first world-wide dialogue between Indian yangqin or santoor and Chinese yangqin was held in Calcutta in 2011 at the concert themed ‘Night of the Orient, When East Meets East’, said Liu, who has studied in India with noted santoor maestro Shiv Kumar Sharma. ‘More than 20 countries around the world have this instrument that originated in the Iran-Iraq region,’ Liu said of the Chinese dulcimer that is quite similar to the santoor.Liu undertook a seven-month research at the University of Delhi on a Ford Foundation fellowship in 2009 to explore the grammar of the two musical instruments of the same family. Liu, who is a professor at China’s Central Conservatory of Music and the youngest professor of yangqin in the country’s history, aims to create an enduring basis of dialogue ‘between our two oriental cultures’.  ‘With my Indian gurus, I am trying to make a new style of India-China music… Chinese melody, put in the Indian raga structure to create a new sentence and style,’ Liu said.Liu directs a yangqin ensemble called Jasmine and plans to bring it to India on a music tour of the Buddhist heritage sites. In May 2009, Liu held a trio concert with an Indian band called the Kedia Brothers in Jharkhand, where the yangqin, the sitar and the sarod were played together. ‘The basic tones in Chinese music are also found in India music,’ said Liu. Chinese Premier arrived in the Capital to have the first summit-level formal talks.last_img read more

The best backend tools in web development

first_imgIf you’re a backend developer, it’s easy to feel overwhelmed by the range of backend development tools available. It goes without saying that you should use what works for you but sometimes it’s not that easy to even work that out. With this in mind, this year’s Skill Up report offers a useful insight into some of the most popular backend tools being used today. Let’s take a look at what tools came out on top. That should help you make decisions about what you’re going to use or maybe even just learn. Read the Skill Up report in full. Sign up to our weekly newsletter and download the PDF for free. Node.js More than 50% respondents said, they prefer Node.js, the popular server-side Javascript coding framework. Node.js is a Javascript runtime that runs on the V8 JavaScript runtime engine. Node.js adds capabilities to Javascript (front-end language) to let it do more than just creating interactive websites. It uses an event-driven, non-blocking I/O model that makes it lightweight and efficient. The latest stable release of Node, Node 10, will be the next candidate in line for the Long Term Support (LTS) in October 2018. Node.js 10.0 comes with plenty of new features like OpenSSL 1.1.0 security toolkit, upgraded npm, N-API, and much more. Get started with learning Node.js with the following books: Learning Node.js DevelopmentLearn Node.js by Building 6 ProjectsRESTful Web API Design with Node.js 10 – Third Edition ASP.NET Core The next popular alternative was ASP. NET Core with over 25% developers approving it as their choice of backend framework. ASP.NET Core is the open-source cross-platform framework for building backends, web apps and services, and IoT apps. According to the skill-up survey, it was also one of the most popular framework used by developers. It provides a cloud-ready, environment-based configuration system. It seamlessly integrates with popular client-side frameworks and libraries, including Angular, React, and Bootstrap. Get started with ASP.NET Core by reading: Learning ASP.NET Core 2.0Mastering ASP.NET Core 2.0ASP.NET Core 2 High Performance – Second Edition Express.js Developers and tech pros also like to work with Express JS, and hence it ranked No. 3 on our list. Express JS is the pre-built Node JS framework that can help developers build faster and smarter websites and web apps. Express basically extends Node.js to build complete web apps. It is the perfect framework to learn for developers, who are fluent in Node.js, but want to transition to creating apps from just server-side technologies. Express is lightweight and comes with extra, built-in web application features and the Express API to support the already robust, feature-packed Node.js platform. Express is not just limited to NodeJS. It also works seamlessly with other modules and offers HTTP utilities and middleware for creating APIs. It can help developers master single-page and multiple-page websites, as well as some complex web apps. You can go through Projects in ExpressJS [Video], a complete course to learn professional web development using Express.js. Laravel Next, was Laravel, a prominent member of a new generation of web frameworks. It is one of the most popular PHP frameworks and is also free and and open source. It features: A simple, fast routing engine Powerful dependency injection container Multiple back-ends for session and cache storage Database agnostic schema migrations Robust background job processing Real-time event broadcasting The latest stable release, Laravel 5 is a substantial upgrade with a lot of new toys, at the same time retaining the features that made Laravel wildly successful. It comes with plenty of architectural as well as design-based changes. Start building with Laravel with these videos. Beginning Laravel [Video]Laravel Foundations: Basics to Every App [Video] Java EE The fifth most popular choice of backend tool is the Java EE. The Enterprise Java standard or Java EE is a collection of technologies and APIs for the Java platform designed to support Enterprise. By enterprise, we mean applications classified as large-scale, distributed, transactional and highly-available, designed to support mission-critical business requirements. Applications written to comply with the Java EE specification do not tie developers to a specific vendor; instead, they can be deployed to any Java EE compliant application server. The Java EE server application implements the Java EE platform APIs and provides the standard Java EE services. The latest stable release, Java EE 8 brings with it a load of features, mainly targeting newer architectures such as microservices, modernized security APIs, and cloud deployments. Our best picks for learning Java EE: Java EE 8 Application DevelopmentArchitecting Modern Java EE ApplicationsJava EE 8 High Performance The other backend tools which were among the top picks by developers included: Spring, a programming and configuration model for building modern Java-based enterprise applications, on any kind of deployment platform. Django, a powerful Python web framework for creating RESTful web services. It reduces the amount of trivial code, which simplifies the creation of web applications and results in faster development. Flask, a framework for building web servers in Python. It is a micro framework, meaning it’s not a full stack web application development framework. It just gives the developers very basics to get a web server running. Firebase, Google’s mobile platform to help developers run mobile backend code without managing servers and develop high-quality apps. Ruby on Rails, one of the oldest, backend technology. A certain percentage of people still prefer using ruby on rails for their backend code. Rails is a flexible and IDE friendly framework with easy functions and manipulations and the support of the powerful ruby language. The entire skill up survey report can be read on the Packt website, which details on what developers think about the changing tech landscape and the parameters that are driving that change. This survey report is launched at the start of the Skill Up campaign, where every eBook and video will be available for $10. Go grab your free content now!last_img read more

Remote Code Execution Flaw in APT Linux Package Manager allows maninthemiddle attack

first_imgYesterday a remote code execution bug was found in the APT high-level package manager used by Debian, Ubuntu, and other related Linux distributions. Max Justicz, the security researcher who discovered the bug, says that the bug “allows a network man-in-the-middle (or a malicious package mirror) to execute arbitrary code as root on a machine installing any package.” Justicz’s blog post states that the vulnerable versions of APT don’t properly sanitize certain parameters during HTTP redirects. An attacker can take advantage of this and perform a remote man-in-the-middle attack to inject malicious content, thus tricking the system to install certain altered packages. HTTP redirects while using apt-get command help Linux machines to automatically request packages from an appropriate mirror server when other servers are unavailable. If the first server fails, it returns the location of the next server from where the client should request the package. Justicz has also demonstrated this man-in-the-middle attack in a short video: Justicz told The Hacker News that a malicious actor intercepting HTTP traffic between APT utility and a mirror server, or just a malicious mirror, could execute arbitrary code on the targeted system with the highest level of privileges, i.e. root. He further adds, “You can completely replace the requested package, as in my proof of concept. You could substitute a modified package as well if you wanted to”. The APT is also used by major Linux distributions like Debian and Ubuntu, who have also acknowledged and released security patches for this vulnerability. Hacker News also points how this flaw comes around the time when cybersecurity experts are fighting over Twitter, in favor of not using HTTPS and suggesting software developers to rely on signature-based package verification since the APT on Linux also does the same. They further add that the APT exploitation could have been mitigated if the software download manager was strictly using HTTPS to communicate securely. The developers of APT have released version 1.4.9 that fixes the issue. The bug has also been fixed in APT 1.2.29ubuntu0.1, 1.7.0ubuntu0.1, 1.0.1ubuntu2.19, and 1.6.6ubuntu0.1 packages, as well as in APT 1.4.9 for the Debian distribution. You can head over to Max Justicz official blog for more insights on this news. Read Next Kali Linux 2018 for testing and maintaining Windows security – Wolf Halton and Bo Weaver [Interview] Black Hat hackers used IPMI cards to launch JungleSec Ransomware, affects most of the Linux serversHomebrew 1.9.0 released with periodic brew cleanup, beta support for Linux, Windows and much more!last_img read more