Candlelites

Everything from Everywhere

google highlights security measures built into open source hypervisor - Search

google highlights security measures built into open source hypervisor Searched between all the resources and sites across the web. To view the full text news click on the links searched. All links are displayed with the source site.



google highlights security measures built into open source hypervisor


google has often touted the various mana ent and security capabilities available with its cloud services as part of an ongoing paign to convince businesses about the enterprise readiness of its hosted offerings. continuing in that vein, the company this week offered some fresh details on the multiple security measures it has in place for hardening the open-source kvm (kernel-based virtual machine) hypervisor at the core of its compute engine and container engine services. in a blog, google's technical lead manager andy honig and senior product manager nelly porter outlined seven high-level security controls that google employs for protecting kvm. they include processes for reducing the attack surface of the hypervisor, code provenance measures for ensuring the integrity of the code runnin






mirageos 3.0 looks beyond xen for the unikernel future


the open-source mirageos unikernel project reached a major milestone on feb. 23, with the launch of mirageos 3.0. the basic idea behind a unikernel is that it is a highly-optimized and purpose-built operating system that can help to enable efficient operation and delivery of applications. the mirageos 1.0 release debuted back in december 2013 as an effort led by the linux foundation's xen hypervisor virtualization project. with the new mirageos 3.0 release, the unikernel is now expanding beyond the confines of the xen hypervisor and now also supports the kvm and bhyve hypervisors as well. what has also changed since the mirageos 1.0 release is the ownership of unikernel systems, which is one of the lead developers behind mirageos. docker inc. acquired unikernel systems in january 2016. "mi






mirageos 3.0 looks beyond xen for the unikernel future


the open-source mirageos unikernel project reached a major milestone on feb. 23, with the launch of mirageos 3.0. the basic idea behind a unikernel is that it is a highly-optimized and purpose-built, operating system that can help to enable efficient operation and delivery of applications. the mirageos 1.0 release debuted back in december 2013 as an effort led by the linux foundation's xen hypervisor virtualization project. with the new mirageos 3.0 release, the unikernel is now expanding beyond the confines of the xen hypervisor and now also supports the kvm and bhyve hypervisors as well. what has also changed since the mirageos 1.0 release is the ownership of unikernel systems, which is one of the lead developers behind mirageos. docker inc. acquired unikernel systems in january 2016. "m






critical flaw leads google to patch thousands of open-source projects


a google security researcher this week offered the first details on an effort by a 50-member volunteer team at the company last year to help patch more than 2,600 open-source projects against a critical vulnerability in a widely used java process. a consultant at foxglove security first drew attention to the so-called java deserialization issue in november 2015 when he demonstrated attacks exploiting the vulnerability in weblogic, websphere, jboss and other middleware products. the demonstration prompted vulnerability disclosures from multiple vendors, including oracle, ibm and cisco, and led many security researchers to estimate that millions of applications—commercially developed, custom-built and open source—were susceptible to the issue. about five months after the foxglove security co






critical flaw leads google to patch thousands of open-source projects


a google security researcher this week offered the first details on an effort by a 50-member volunteer team at the company last year to help patch more than 2,600 open-source projects against a critical vulnerability in a widely used java process.a consultant at foxglove security first drew attention to the so-called java deserialization issue in november 2015 when he demonstrated attacks exploiting the vulnerability in weblogic, websphere, jboss and other middleware products.the demonstration prompted vulnerability disclosures from multiple vendors, including oracle, ibm and cisco, and led many security researchers to estimate that millions of applications—commercially developed, custom-built and open source—were susceptible to the issue.about five months after the foxglove security consu






hackerone gives professional services away for free to open source projects


hackerone has already made an impact by making bug bounty programs easier to launch and maintain, but the company wants to go further by offering paid services for free to the open-source community.on thursday, the bug bounty platform announced the formation of the hackerone community edition, a program designed to give open-source projects the chance to take advantage of hackerone professional services without paying a cent.in a blog post, hackerone said the firm will give open-source projects assistance in setting up and maintaining vulnerability submission, coordination, dupe detection, analytics, and bounty programs to enhance the security of these often volunteer-based programs which so many other vendors and software developers rely on.more security news"our company, product, and app






hackerone gives professional services away for free to open source projects


hackerone has already made an impact by making bug bounty programs easier to launch and maintain, but the company wants to go further by offering paid services for free to the open-source community.on thursday, the bug bounty platform announced the formation of the hackerone community edition, a program designed to give open-source projects the chance to take advantage of hackerone professional services without paying a cent.in a blog post, hackerone said the firm will give open-source projects assistance in setting up and maintaining vulnerability submission, coordination, dupe detection, analytics, and bounty programs to enhance the security of these often volunteer-based programs which so many other vendors and software developers rely on."our company, product, and approach is built-on,






google engineer team patched 2,600 open-source projects


today's topics include a google volunteer team patching thousands of open-source projects, google’s progress on teaching computers to diagnose cancer, hewlett packard enterprise’s decision to realign its technical services unit and symantec’s tool that helps users identify cloudbleed risks.a google security researcher last week offered the first details on an effort by a 50-member volunteer team at the company last year to help patch more than 2,600 open-source projects against a critical vulnerability in a widely used java process.the demonstration prompted vulnerability disclosures from multiple vendors, including oracle, ibm and cisco, and led many security researchers to estimate that millions of applications—commercially developed, custom-built and open source—were susceptible to the






the top open source rookie projects of the year to watch


stock photo open-source projects underpin many of today's popular apps, software packages, and online services.the internet of things 10 types of enterprise deployments as businesses continue to experiment with the internet of things, interesting use cases are emerging. here are some of the most common ways iot is deployed in the enterprise.if a vendor releases code to the open-source community, license restrictions are removed and software can be integrated into other systems. from google's end-to-end encryption system e2email to the netflix cross-scripting site vulnerability scanner sleepy puppy, open-source development is thriving and thousands of developers contribute their time to improving coding and ferreting out bugs every month.there are ongoing open-source projects which have bee






the top open source rookie projects of the year to watch


stock photo open-source projects underpin many of today's popular apps, software packages, and online services.if a vendor releases code to the open-source community, license restrictions are removed and software can be integrated into other systems. from google's end-to-end encryption system e2email to the netflix cross-scripting site vulnerability scanner sleepy puppy, open-source development is thriving and thousands of developers contribute their time to improving coding and ferreting out bugs every month.there are ongoing open-source projects which have been built upon for years, but as the technology space evolves and moves into new areas.according to open-source software management provider black duck software's ninth annual open source rookies of the year report, in 2016, the best,






google has open-sourced chrome for ios


google has finally figured out how to open-source chrome for ios. on tuesday, google announced that developers could now modify and compile the ios version of chrome. previously, developers could compile open-source versions of chrome for the web and android. with this new update, chrome for ios is now joining google’s open-source chromium project repository.  chromium started as an initiative for desktop web development, and in may 2015 google incorporated android mobile web browser the ios version of chrome was kept apart from chromium because apple required “additional complexity” to create a web browser for ios. google worked for years to make chrome for ios be built on top of both webkit, the ios rendering engine, as well as blink, google’s rendering engine. the impact on you: now






google chrome for ios is now open source too


while you can use browsers other than safari on ios, and have been able to for a few years now, none of those alternatives are allowed to bring their own rendering engines to apple's platform. so they all have to use the built-in webkit rendering engine that also powers safari. this is why up until today the code for google chrome's ios version has been kept separate from the chromium open source project, which is available for developers to use to compile browsers for the other operating systems that chrome runs on.yet google has "spent a lot of time over the past several years" making the necessary changes required to upstream the code for chrome for ios into chromium, and these efforts have come to fruition today. chromium now supports both webkit (for ios) and google's own blink (for o






google volunteer team patches thousands of open-source projects


a 50-member team of google engineers voluntarily worked to patch 2,600 open-source projects against a java deserialization bug in 2016.






google end-to-end encrypted email code goes open-source


google google has announced that e2email, an experimental end-to-end encryption system, has now been given to the open-source community with no strings attached.whether you are concerned about government surveillance and spying, man-in-the-middle (mitm) attacks by threat actors or you are an enterprise player with the need to keep communications as secure and private as possible, end-to-end encryption is viewed as a method to prevent snooping.not every email service provider offers end-to-end encryption -- the best-known being pgp -- although, in the wake of former nsa contractor edward snowden's disclosures concerning the mass-spying efforts of the us government, more services have popped up or increased in popularity, including protonmail, wire, whatsapp, and signal.as we become more con






google engineer team patched 2,600 open-source projects


google engineers patch java bug in 2,600 open source projectsdaily video: google volunteer team patches thousands of open-source projects; google makes progress... yahoo ceo mayer to lose compensation due to massive data breachesdaily video: yahoo ceo mayer will forgo bonuses due to security lapses; aws outage demonstrates need... google says rcs messaging available on more than one billion devicedaily video: more mobile carriers, manufacturers commit to google rcs messaging app; red hat updates... aws outage knocks s3 storage, many web sites offlinedaily video: service interruption hits aws's s3 facility in northern virginia; spacex targets 2018... sap rebrands cloud platform; supports ios enterprise app developmentdaily video: sap goes all in with new public cloud platform, ios dev tools






youtube for ios is finally getting chromecast lock screen controls


why it matters to you own a chromecast and an iphone? controlling your cast will now be a lot easier thanks to the latest youtube update.youtube is making it a little easier for ios users to cast to their tv. when casting to a tv, ios users have had to unlock their phone and go through their open apps to pause or rewind what’s being cast to the tv. now, with the new youtube app, they can control what they’re casting straight from their device’s home screen.the new controls don’t just work with the google chromecast — they’ll also work with smart tvs and other cast-enabled home devices. and you’ll even be able to control things from your apple watch. on the device, you’ll have the ability to play, pause, play the previous item, play the next item, and control the volume.more: using nothing






google has now made chrome for ios open source


why it matters to you google's decision to open-source chrome for ios is a boon for third-party mobile development.google’s chrome browser on desktop has been open source almost since its inception — in 2008, the mountain view, california-based company released a large portion of chrome’s underlying code as an open-source project called chromium, which it permitted third-party developers to study and use as they saw fit.but that wasn’t the case for chrome for ios, which google kept separate from the rest of the chromium project due to “the additional complexity required for the platform.” on tuesday, though, google announced that the chrome for ios’s underlying code will be rejoining chromium and will move into the open-source repository.the challenge, apparently, involved working around






ibm extends quantum computing access with new aps, sdk


google engineers patch java bug in 2,600 open source projectsdaily video: google volunteer team patches thousands of open-source projects; google makes progress... yahoo ceo mayer to lose compensation due to massive data breachesdaily video: yahoo ceo mayer will forgo bonuses due to security lapses; aws outage demonstrates need... google says rcs messaging available on more than one billion devicedaily video: more mobile carriers, manufacturers commit to google rcs messaging app; red hat updates... aws outage knocks s3 storage, many web sites offlinedaily video: service interruption hits aws's s3 facility in northern virginia; spacex targets 2018... sap rebrands cloud platform; supports ios enterprise app developmentdaily video: sap goes all in with new public cloud platform, ios dev tools






ibm extends quantum computing access with new aps, sdk


google engineers patch java bug in 2,600 open source projectsdaily video: google volunteer team patches thousands of open-source projects; google makes progress... yahoo ceo mayer to lose compensation due to massive data breachesdaily video: yahoo ceo mayer will forgo bonuses due to security lapses; aws outage demonstrates need... google says rcs messaging available on more than one billion devicedaily video: more mobile carriers, manufacturers commit to google rcs messaging app; red hat updates... aws outage knocks s3 storage, many web sites offlinedaily video: service interruption hits aws's s3 facility in northern virginia; spacex targets 2018... sap rebrands cloud platform; supports ios enterprise app developmentdaily video: sap goes all in with new public cloud platform, ios dev tools






microsoft integrates black duck open-source tools with visual studio


black duck, the company that focuses on automated open-source code management, and microsoft are integrating black duck's hub program with microsoft visual studio team services (ts), formerly visual studio online, and team foundation server (tfs).black duck hub's knowledgebase identifies open-source code within your project.black duck hub is a database and code-checking service. its database, black duck knowledgebase, contains data on over 2 million open-source projects and 79,000+ known open-source vulnerabilities. armed with this data, hub scans your project's code to identify its open-source components. it then checks the code for known vulnerabilities and for new vulnerabilities as they're reported. it also enables you to prioritize and track your remediation efforts. this way you can






yahoo data breaches cost ceo mayer bonus, stock awards


google engineers patch java bug in 2,600 open source projectsdaily video: google volunteer team patches thousands of open-source projects; google makes progress... google says rcs messaging available on more than one billion devicedaily video: more mobile carriers, manufacturers commit to google rcs messaging app; red hat updates... aws outage knocks s3 storage, many web sites offlinedaily video: service interruption hits aws's s3 facility in northern virginia; spacex targets 2018... sap rebrands cloud platform; supports ios enterprise app developmentdaily video: sap goes all in with new public cloud platform, ios dev tools; amazon, lenovo motorola... apple investigating recent battery fire in iphone 7 plusdaily video: apple trying to permanently resolve iphone 6 and 7 battery faults; rese






google open sources chrome for ios code


google said it will move its chrome for ios code into the open source community and may have gotten a few digs into apple while it was at it.special feature securing your mobile enterprise mobile devices continue their march toward becoming powerful productivity machines. but they are also major security risks if they aren't managed properly. we look at the latest wisdom and best practices for securing the mobile workforce.in a blog post, google noted that chrome ios "was kept separate from the rest of the chromium project due to the additional complexity required for the platform."now google is moving it into the chromium project's open source repository. google noted that to move the code it needed to do "careful refactoring."specifically, google said chrome on ios had to support webkit'






google istant will arrive on on the nexus 6p and nexus 5x soon, rumor says


one of the unique selling points for google's pixel and pixel xl has so far been the integrated google istant. the more conver ional virtual istant offers a more polished experience when talking to it compared to past iterations that weren't called istant. despite that, the istant's capabilities are still more limited in certain areas than what google now used to provide, but that doesn't mean people don't want it on their non-pixel android devices.the lg g6 may be the first such smartphone to get the google istant built-in, but apparently it won't be the last. a new rumor says the huawei nexus 6p and lg nexus 5x will finally receive the istant alongside the next "major" android update that will hit these devices.no other, less vague details have been shared unfortunately. however, the use






linus torvalds on sha-1 and git: 'the sky isn't falling'


the real worry about google showing sha-1 encryption is crackable, as pointed out by peter gutmann, a cryptography expert at the at the university of auckland, new zealand, is "with long-term document signing and certificates". but, what about the distributed version control system git code repositories? linus torvalds, linux and git's inventor, doesn't see any real security headaches ahead for you.sha-1 may be vulnerable to attack but your git-based source code is still safe for all practical purposes. torvalds and other linux kernel developers created git in 2005 as linux's distributed version control system. it's also used by multiple major companies including facebook, google, and twitter, to manage their code-bases. git is also used in github, the world's most popular source code-mana






google to showcase android o features at google i/o


there’s no doubt that google has been working on the latest version of android since the release of the google pixel back in october. as a matter of fact, a “source familiar with the matter” told venturebeat that we can expect google to showcase a few features that may or may not make their way to the final version of android o.there are a few features rumored to make their way to android o. the first one is something called “copy less”. the feature would be able to predict when you are trying to send an address to someone from, say, another app like yelp. gboard would show you a text suggestion after you type "it's at". the idea is to cut down on switching between apps back and forth. it’s not known, however, if this app would be a part of an updated gboard or if it will be baked into and






open gapps can now enable google istant on your custom rom


android: most custom roms don’t come with google apps pre-installed for legal reasons. open gapps helps you install them on a new rom, and now it can also turn on google istant for you.advertisementgetting google istant on a non-pixel phone is a relatively straightforward affair already, but it’s a little inconvenient. if you’re using a custom rom, you can now select an optional toggle that will modify your build.prop file for you. it’s not the easiest method if you want to keep the stock rom that e on your phone, but if you’re already using a custom rom, it’s a convenient new feature.open gapps adds option to enable google istant during installation | xda






google open-sources chrome for ios


google today announced that the code for chrome for ios is now part of its chromium open source project.on ios, chrome has to use apple’s webkit rendering engine instead of google’s own blink engine. because of this, google didn’t add the chrome for ios code to the chromium code base before. supporting both rendering engines in the same code base, after all, adds quite a bit of complexity.over the last few years, though, google’s team worked on making the necessary code changes to add the chrome for ios code to chromium. that work is now complete and developers who want to compile the ios version of chromium can now take the ios code from the chromium repository and do so ( uming, of course, that they run os x and use xcode).google argues that this move also means that the development spee






use voice commands to quickly check your google security settings


android: it’s a good idea to check on your google security and privacy settings every once in a while. google makes it even easier with a few handy voice commands that can jump right to the important parts of your account.advertisementas highlighted by android police, google offers a few key voice commands that can jump to important places in your account, including your search history and privacy settings. here are the most useful commands:“show me my google account” will open a basic settings section of your google account.“show my google search history” will show you your search activity and let you delete anything you don’t want in there.“adjust my google privacy settings” will launch the google privacy checkup.“adjust my google security settings” will run the google security checkup a






google’s sha-1 research will force necessary upgrades to online security standar


when a paper demonstrating the first known sha-1 collision was published last month, it caused quite a stir among the tech community. sha-1 is still an extremely popular form of encryption, and breaking it wide open could expose a wealth of sensitive information.“it’s moved from a theoretical attack, to a provable, real-world attack with proofs of concept that are out there in the wild,” said brian hanrahan, product manager as endpoint security specialist avecto, speaking to digital trends on the telephone. “so, the probability of someone out there leveraging a sha-1 collision attack has increased exponentially, because now there’s code that shows how to do it.”more: google will stamp down on sha-1 security certificates in 2016when google releases the source code behind its findings, anyon






google updates gboard for ios with new emoji and voice-typing


apple upgraded messages in ios 10 to include a ton of new features, but that doesn’t mean that google is giving up on gboard, its third-party ios keyboard. on thursday, google updated gboard to support new emoji, voice-typing, 15 additional languages, and google doodles. google originally released gboard in may 2016 to give ios users features like glide typing and built-in gif search.after the update, gboard will now be able to search and send all the new emoji that debuted in ios 10.2 late last year. in addition, google has expanded support for 15 languages, including greek, swedish, and latin american spanish. to type in these languages, open the gboard app, select “languages,” and then “add language.”gboard has also integrated a voice-typing feature for users who like to dictate their m






google has renamed its messenger app to android messages


google's messenger app has received a new update. while in terms of functionality, there aren't any major changes, what's news-worthy is that the mountain view, california-based company has changed the name of the app.the app is now called android messages. "a new name! messenger is now android messages, the messaging app built for android," the change-log for the update says.aside from name-change, the other changes included the update are bug fixes, stability improvements, and simpler sign-up for enhanced features on supported carriers. the updated app is now available for download from google play.source






google engineer team patched 2,600 open-source projects


yahoo ceo mayer to lose compensation due to massive data breachesdaily video: yahoo ceo mayer will forgo bonuses due to security lapses; aws outage demonstrates need... google says rcs messaging available on more than one billion devicedaily video: more mobile carriers, manufacturers commit to google rcs messaging app; red hat updates... aws outage knocks s3 storage, many web sites offlinedaily video: service interruption hits aws's s3 facility in northern virginia; spacex targets 2018... sap rebrands cloud platform; supports ios enterprise app developmentdaily video: sap goes all in with new public cloud platform, ios dev tools; amazon, lenovo motorola... apple investigating recent battery fire in iphone 7 plusdaily video: apple trying to permanently resolve iphone 6 and 7 battery faults;






google now launcher will die by the end of march


if you've been confused by the fact that there are two google-made launchers in the play store, namely the google now launcher (gnl) and the pixel launcher, then prepare to become un-confused pretty soon. sure, the pixel launcher is only installable on the pixels, as its name implies, but the search giant is getting ready to stop supporting the google now launcher. the upside is that there will be only one google launcher in the play store by the end of the first quarter of this year (so on march 31 at the latest). the downside is that this probably means the end of the road for any big feature additions to the gnl.we say "probably" because in another confusing move, google has been pushing updates to the gnl through the google app for android (seriously, that's how this works). and obviou






google pixel 2 and 2b | news, release date, specs, and rumors


why it matters to you google's pixel smartphone was our best phone of 2016. here's a rundown of the new features we expect the second-generation model to have.it has only been a few months since the google pixel and pixel xl’s release, but we’re already hearing rumors and news about the 2017 model that’s expected to launch in the fall.it’s not just rumors we’ve heard about the pixel 2, however. google hardware boss rick osterloh officially confirmed in an interview with android pit that there will, in fact, be a second iteration of the google pixel. it’s not surprising to hear, but it’s still nice to get confirmation of the phone.we don’t know what google’s planning on naming the next model, so we’re tentatively going to stick with the pixel 2. here’s everything you need to know.more: goog






google assistant is coming to a droid near you


google assistant is finally making its way to all android smartphones running os version 6.0 and 7.0.the personal assistant will become available to english users in the us this week, followed by english users in australia, canada and the uk. german-speaking users in germany can expect it around the same time too. google says it will continue adding more languages this year.users will begin seeing google assistant as it's gradually being rolled out through a google play services update.currently google assistant is available on the pixel and pixel xl, google home, google's allo messenger and android wear.google says we'll see google assistant on newly announced partner devices, such as the lg g6, which has it built-in. it's interesting if google assistant will come preloaded on the upcomin






google releases e2email end-to-end encryption tech to open source


google has released an experimental version of its e2email end-to-end encryption technology to the open-source community. the tool is intended to give users a way to more easily encrypt their email beyond what google already offers by default with gmail. in a blog post, google engineers kb sriram, eduardo vela nava and stephan somogyi described the e2email code as a chrome extension for integrating openpgp into gmail with little of the complexity that is otherwise involved in doing it. the goal, according to a google description on github, is to give email users a way to improve data confidentiality for occasional small messages in a way that makes it impossible even for the email provider to extract message content once it has been encrypted.e2email runs independently of gmail’s web inter






a complete list of the most useful "ok, google" voice commands


one of the most useful things about using google is the voice commands. using just your voice you can command your device to do many things on your behalf. it’s fast, convenient, and still feels a bit like the future. the complete list of “ok, google” commands and compatible apps has grown considerably over time, meaning there are likely things you can do with google that you’re not even aware of.more: how to get the most out of google nowif you own an android device, you might want to turn on “ok, google” so that you can start using this feature without having to tap the microphone icon. the first thing we need to do is make sure this feature is turned on, so let’s see if it is.turning on “ok, google”open your app drawer, and open the google app.tap the hamburger menu () in the upper-left






raspberry pi zero wireless hands-on


the raspberry pi zero wireless isn't so much a new pi, as an update to the $5 pi zero, but as refreshes go, it's rather transformative. by adding wi-fi and bluetooth connectivity to the pi zero, a fun and incredibly cheap board has become far more useful out of the box, albeit at a slightly higher price of £9.60 ($10 plus tax). you can read our guide to everything you need to know about the pi zero wireless, known as the pi zero w for short, here. we set out to measure how the board performs, starting with the new features like network performance and how wi-fi support affects power consumption.more about open source first, let's take a look at how the built-in wi-fi performs compared to the pi 3 and the ethernet performance of a pi 1. on paper, you might expect little difference between t






google will soon open-source google earth enterprise


google earth enterprise, which originally launched over ten years ago, was google’s tool for businesses that wanted to build and host private versions of google earth and google maps for their internal geospatial applications. in 2015, the company announced that it would shut the service down in march 2017 but in what is becoming a pretty standard move for deprecated products, google this week announced that it would open source all of the core google earth enterprise (gee) tools.this means that gee fusion, server and portable server (that’s a total of 470,000 lines of code) will be available on github under the apache 2 license in march. the company explicitly notes that neither the gee client, nor the google maps javascript api v3 or the google earth api will be open sourced. the company






raspberry pi zero w: hands-on with the $10 board


the raspberry pi zero w isn't so much a new pi, as an update to the $5 pi zero, but as refreshes go, it's rather transformative. by adding wi-fi and bluetooth connectivity to the pi zero, a fun and incredibly cheap board has become far more useful out of the box, albeit at a slightly higher price of £9.60 ($10 plus tax). you can read our guide to everything you need to know about the pi zero w. we set out to measure how the board performs, starting with the new features like network performance and how wi-fi support affects power consumption.more about open source first, let's take a look at how the built-in wi-fi performs compared to the pi 3 and the ethernet performance of a pi 1. on paper, you might expect little difference between the pi 3 and the pi zero w, as they both support 802.11






why you should thank mary tyler moore for your yoga pants and leggings


when mary tyler moore was cast to play laura petrie on “the dick van dyke show” in 1961, she was a 25-year-old dancer and actress with a short resume and long legs. she also had something else — a defining characteristic that propelled her into tv history. call it “spunk.”that spunk made her america’s sweetheart and a subtle, smiling challenge to the status quo for women on tv. moore e to be laura in a very old-school hollywood way. she had appeared as happy point, a cat-eared, leotard-wearing mascot for an appliance company and then in “richard diamond: private detective” as the titular character’s secretary, sam.but sam was never seen. she was known only by her alluring legs under a desk as she took calls for the boss. it was eye-rollingly reductive, but moore used it to her a ntage. she