YouTube opens mobile live streams to those with 10k+ fans, paid Super Chat exits beta

Google’s video powerhouse YouTube is today taking its latest step to compete with Facebook Live and Twitter’s Periscope to be the go-to platform for live video streaming, specifically of the unscripted, on-the-fly kind.

YouTube today is turning on live video recording directly from its mobile app for creators who have at least 10,000 subscribers. And on top of this it’s taking Super Chat — a service where viewers can pay to bump up their comments in the stream — out of beta. Now, live video creators with over 1,000 subscribers in 20 countries can turn it on, and viewers from 40 can pay to promote their pearls of wisdom.

The opening up of YouTube mobile live streaming comes about six months after Google first turned on the feature for a select number of users (such as Lewis of Unbox Therapy and athlete-turned-YouTuber Ben Brown). In a blog post, product managers Barbara Macdonald and Kurt Wilms write that the feature will soon be rolled out even more widely, beyond the 10,000 follower mark set today.

As with the more limited roll out, the live streaming feature is built into the app, where you will be able to snap a cover picture, and then press another button to start recording. Once the live video is over, YouTube visitors will be able to discover them just like they would any other video (and you the creator can also set up privacy features as you would for any other video).

One thing that’s different with the version of live streams on mobile going live today is that YouTube will slow down live chat. “It turns out receiving 2,000 messages per second is a little too fast!” Macdonald and Wilms write. They also note that they’ve also worked on improving streaming quality across a wider range of devices.

YouTube likes to remind us that it has been a notable platform for people to watch live streams since 2011, with events like Felix Baumgartner’s record-breaking skydive in 2012 attracting 8 million live viewers on the platform; and more recently, the U.S. elections seeing millions come to YouTube to watch debates and other events as they unfold.

The difference here is the emphasis on videos recorded by YouTubers and everyday people with mobile devices, an area where YouTube has been slow to move.

Instead, services like Facebook’s Live and Periscope (and the now-defunct Meerkat) were quicker to tap into the confluence of faster mobile networks, better devices, and willing audiences of viewers and creators that have a taste for improvised video, to create content that has set a standard for live, unscripted streams.

(It’s notable too that Facebook launched its Live product as a mobile app-first effort in 2015 (the same year that Periscope also emerged) and only turned on a web-originated version last month.)

However, the significance of YouTube finally making a move to expand live vide streams on mobile is that it’s far and away the world’s biggest platform for online video today, with over 1 billion users (nearly one-third of all internet users) visiting at least once a day.

And the fact that more than half of those visits are on mobile means that there is a ready and willing audience of creators and consumers for live streams made on mobile.

While broadcast TV has died a little in the age of on-demand content, it’s services like this, created on platforms the size of YouTube, that have a shot of resuscitating live video popularity for today’s consumers and creators.

super-chat-youtube…and, it might be added, advertisers. YouTube — like Facebook — has been playing with a lot of different formats for how best to monetize video — from autoplaying videos interspersed with ads to adding “midroll” ads during a single video” on its platform — and today marks a wider launch of another revenue-generating feature.

Creators making live videos on desktop or mobile can now turn on Super Chat for comments. Launched in a beta version last month, Super Chat will let viewers pay some money to boost their comments and pin them to the top of the pile for some time — the degree of the boost and pin will depend on how much a commenter is willing to pay. (It’s not unlike the Cheering feature that launched on Twitch last year.) Creators will be responsible for moderating their own Super Chats, as they do their live chats, YouTube notes.

It also looks like YouTube splits revenues for Super Chat in the same way that it does for AdSense, as you can track your revenues from them in the AdSense dashboard.

Perhaps one of the most interesting things about Super Chat is that it lays the groundwork for paying for a whole lot of other things during live streams, and also helps motivate creators to make more of these live streams as part of their bigger business efforts.

New PHP discharge brings another speed help

Form 7.1.0 of the dialect likewise backs nullable sortsThe PHP 7 line, which appeared a year back, has gotten its first point discharge overhaul, enhancing execution and including nullable sorts.

Adaptation 7.1.0 likewise offers capacities like a void return sort and class steady perceivability modifiers. However, a key PHP advocate focused on execution. The update "[provides] up to 35 percent better execution in CPU-concentrated workloads," said Zeev Suraski, CTO at PHP devices maker Zend.

Nullable sorts in 7.1 permits a check sort to be of some sort or invalid. "Sort statements for parameters and return qualities can now be set apart as nullable by prefixing the sort name with a question mark. This connotes and in addition the predefined sort, invalid can be passed as a contention, or returned as an esteem, separately," documentation states.

Variant 7.1 likewise underpins class consistent perceivability to reflect the conduct of strategy and property perceivability. "Class steady might be characterized as open, private or ensured. class constants announced with no express perceivability watchword are characterized as open," as indicated by the proposition.

A "void" return sort in PHP 7.1 makes it clear that a capacity plays out an activity as opposed to delivering an outcome. An iterable pseudo-sort, then, can be utilized as a parameter sort to show that a capacity requires an arrangement of qualities while not thinking about the type of the esteem set. "This sort is practically equivalent to callable, tolerating numerous sorts rather than one single sort," documentation states.

PHP 7.2 is slated to present an Argon2 secret word hash. "Argon2 addresses a few key drawbacks of existing calculations in that it is intended for the most noteworthy memory filling rate, and compelling utilize different figuring units while as yet giving barrier against tradeoff assaults," the documentation states.

Unpatched Vulnerability Affecting PHP 7 Servers 

PHP 7 is influenced by an unpatched helplessness that opens servers running the most recent branch of the PHP programming dialect to assaults.

The powerlessness, yet unpatched is a piece of a trifecta of bugs uncovered amid a presentation by Yannay Livneh, Check Point analyst, at the current year's 33rd Chaos Communication Congress.

Vulnerabilities influence PHP 7's unserialize system 

Every one of the three bugs influence PHP's unserialize component, the way toward changing over a surge of bytes once more into a PHP question.

The CVE recognizable proof markers of the three bugs are CVE-2016-7478, CVE-2016-7479, and CVE-2016-7480.

As indicated by a specialized report discharged by Livneh, the primary bug is a Denial of Service (DoS) issue, however which can be abused remotely and used to bring about a PHP server to expend an excessive amount of memory, hang the site, and even close down the server procedure.

The other two bugs are remote code execution (RCE) vulnerabilities that permit an assailant to execute noxious code on the server, which in a few situations may empower the gatecrasher to assume control over the whole server.

One bug remains unpatched 

Livneh says he educated the PHP group of the issues in August and September this year. The PHP group pushed a bugfix on October 13, with the arrival of PHP 7.0.12, and on December 1, with the arrival of PHP 7.1.0.

The PHP group settled just two of the three issues at the season of composing, with one bug remaining unpatched. Bleeping Computer has connected with Stanislav Malyshev, an individual from the PHP group, to ask about the status of the last bug. As indicated by Malyshev, the PHP group doesn't "typically have particular discharge dates for individual bugs."

"The arrivals of PHP are done like clockwork, with the following one anticipated January fifth," Malyshev said. "Once the settle for the specific bug is prepared, it is discharged in the following planned discharge."

Livneh says the three bugs can be abused utilizing a system he beforehand point by point in August. The specialist has not determined which of the three bugs remained unpatched.

Bleeping Computer has connected with Livneh to ask if there is confirmation that any of the three bugs has been misused in nature.

The unending adventure of serialize/unserialize issues 

The serialize/unserialize component (changing information objects into memory bytes and the other way around) has been a noteworthy reason for issues in prior PHP renditions, and it creates the impression that it will be the same for PHP 7.

A bug in the PHP serialize instrument has already permitted specialists to hack into PornHub.

So also, issues with the unserialize operations additionally influence Java applications, and a noteworthy bug has been utilized to bargain some PayPal administrations this year.

The following is Livneh showing his three issues that influence PHP 7's unserialize component at the current year's Chaos Communication Congress.