Posts by James Turner

Re: If the only purpose is work checks...

It should have changed in England and Wales a decade ago, except the SNP decided it merited an exception from their usual policy of not voting on legislation that doesn’t cover Scotland.

Re: Lammy

Probably because he isn't Foreign Secretary now.

It will say on the advisory that Cisco will provide security updates for out of contract devices, but the route to getting them is to phone up TAC rather than being able to download from the website normally.

Re: Just another Trump lie

People always seem to leave off the rest of Gove's comment about experts.

"I think the people in this country have had enough of experts from organisations with acronyms saying that they know what is best and getting it consistently wrong."

How often do you hear that economic forecasts have been revised? Many of them make astrologers look good and accurate, which was his point.

Re: Firewalls? Who needs them?

HTTP challenge is not the only method of authenticating to Lets Encrypt. If you control DNS you can put a token in there that does the same job. You’ll want to be able to automate your DNS as the token changes each time.

But webservers are generally easy, you can install things like certbot to do this for you. The pain is with ‘appliances’ where the only access is through a GUI.

Re: DAAMIT and chipsilla

Intel changed to a RISC-like core with the Pentium Pro.

The first company to go down that route was NexGen, whose Nx586 came out a year before the Pentium Pro. They were bought out by AMD and their designs influenced the AMD K6.

Re: Timeline question

The X-37 programme goes back to 1999 when it started off with NASA. It then moved over to the military under the Air Force. Trump set up Space Force to consolidate the various space operations the different services have.

Re: A very measured "this wouldn't have happened on Linux"...

Which has existed for the last two years, as you'll see from the link you provided.

Getting people to use it may be another thing.

The Crowdstrike Linux kernel panic was from a version that _didn't_ use eBPF...

Re: But why?

The sockets API that everyone decided to use came from Berkeley and is known as BSD sockets.

But the implementations are not derived from BSD code. Infamously around 2000 Windows was using a BSD-derived TCP/IP stack, but that was rewritten for Vista. There’s probably the odd utility they haven’t bothered to rewrite, but the core of Windows or Linux networking is not BSD.

Re: does anyone

If your iPhone 14 is only doing WiFi 5 then something is broken. Apple are reasonably quick to jump on new wireless standards and have supported WiFi 6 since the iPhone 11. Only the 15 Pros have 6E, but that’s had relatively little deployment.

Amiga had the famous boing ball demo at CES in January 1984. Their financial issues that resulted in being bought by Commodore might have delayed the launch until the next year, but they had a working GUI then so it wasn’t something written in the time since the Mac came out.

Or next to a pool?

https://www.bbc.co.uk/news/technology-64939558

Re: Windows 12 ?

They didn’t.

One of their evangelists, Jerry Nixon, said it at a conference, but it was never an official position of MS.

Re: Shocked, of Hamel Hampsted

Vodafone are also an exception. The device is a separate loan repayment unaffected by increases to the airtime contract.

Yes, Dinorwig can output 1.8GW at full power which would cover something like Hinkley Point C going offline suddenly. But its capacity is ‘only’ 9GWh, so after 5 hours it’s empty and you need to wait for it to be refilled.

Nicking from withouthotair.com, the situation you need to prepare for is a major lull in wind across the UK for several days. The number he uses is 10GW of wind power being unavailable for 5 days = 1200GWh. (And as the amount of wind capacity we build goes up that number only gets bigger).

So you’re looking at 100s of Dinorwigs, are there that many suitable sites in the country? Are people going to get upset when you start flooding valleys for reservoirs?

Re: always do the secondary

Depends what you’re doing.

If you’re updating a pair that does failover and there’s a bug in the new version, if you’ve updated the primary first then you’ll see the bug and you can failover to the secondary that’s still running the old code.

Whereas if you updated the secondary first you now have two broken boxes.

Re: Might want to check....

The later lawsuit by Symantec (who bought Veritas) was over their Volume Manager. That would tend to sit underneath the file systems rather than being a part of it.

I suspect a more likely source of encumbrance would be IBM depending on how the OS/2 and NT divorce was sorted out.

Re: Intel Itanium

The first properly released 64bit Windows XP. But that doesn’t mean MS didn’t have a version of 2000 internally which they decided not to release. You can find things like https://web.archive.org/web/20000301193850/http://www.microsoft.com/WINDOWS2000/guide/platform/strategic/64bit.asp which talk about what MS had.

In the same vein there are beta versions of Windows 2000 for DEC Alpha floating around. But it never got to the full release as Compaq killed that processor.

Re: Why were they even thinking about ESXi on Mac Pro?

I work in academia which is very much a mixed Mac/PC environment.

The common use case for a Mac VM is support/development. New bit of software comes out, or even just an updated version, you want to install it on a test machine first. With a PC it’s easy enough to have VMs running the standard image for testing, you can roll back and all the other good stuff.

But Apple insists on Mac hardware to run their OS, even in a VM. So do you have to give all your support people Macs so they can test things as well as a PC? Having a nice big host let’s you consolidate into one box which is one of the advantages of virtualisation.

Pah, AWS are newbies at this conference lark. Cisco have been doing Cisco Live for 30 years now.

Though they just had to cancel the one scheduled for Melbourne next month due to Covid-19.

Re: Another IPV6 article which exposes issues with IPV6

You don't need a specific allocation for the IPv6 network. The IPv6-only host doesn't need to know about IPv4 at all.

NAT64 is usually combined with DNS64. An IPv6-only host will do a DNS request, the DNS resolver will see if the response only includes IPv4 addresses. If so, it rewrites the response to an IPv6 address that points at the gateway and encodes the IPv4 address. The gateway then has the smarts to spot this IPv6 packet is actually for an IPv4 host and translates it.

NAT works in both directions, you publish your service on a public IPv4 address and translate it to the IPv6 server sitting behind the gateway.

Re: I remember

That second CPU was completely wasted under Win98. Only the NT-based Windows did anything with more than one CPU.

Re: Yeah, but...

That's not entirely true. https://twitter.com/NerdPyle/status/876880390866190336 states there is an option you can set in recent builds of Windows 10/Server 2016 to have SMB2/3 without OpLocks.

Re: Fair cop?

Article 95 lists the 50 metres rule if you don't have a licence that exempts you.

Re: The bad decision that keeps on biting back

NAT64 or 464XLAT allows you to have IPv6-only clients. Do translation at the gateway and you can keep your internal network IPv4-free.

You can also invert it and have IPv6-only datacentres.

Re: Extradition

Wrong, the US-UK extradition treaty was ratified by the US a decade ago. US citizens have been extradited to the UK.

https://en.wikipedia.org/wiki/UK–US_extradition_treaty_of_2003

Your recollection is about a decade out of date - https://en.m.wikipedia.org/wiki/UK–US_extradition_treaty_of_2003

Re: Bridging the gap

It exists in theory, called NAT46.

There are two bits you need, first is your gateway to generate IPv4->IPv6 mappings on the fly so that your IPv4-only hosts have an address they can communicate with.

Next is you need your DNS server to rewrite queries from IPv6 addresses into these dynamic IPv4 addresses.

Re: Um...

No, those processors are too chunky for a phone. Intel previously did Atom in phones and you're looking at more like 1-2W max power consumption.

Re: "without pre-installed software"

If that's an Enterprise licence of Windows you're installing, it's generally only an Upgrade version. So you still need a Windows licence attached to the machine to upgrade from.

Re: Lack of 32-bit Server platform

32bit applications work fine on current 64bit Windows, using WoW64.

If they're using browser components, MS are still shipping both 32bit and 64bit versions of IE on their 64bit OSes.

Re: Why does anything identifiable need to leave the GP?

Because they're matching it against the hospital records they already have. So you can do things like spot everyone prescribed a certain treatment later turned up in hospital suffering a particular illness.

The identifiers are then kept separately and the data released only has the things you mention.

Re: Can someone explain...

Because we got to z and have wrapped round.

http://en.wikipedia.org/wiki/IEEE_802.11#Standard_and_amendments

There is more than just your main wireless types, standardising QoS (which can apply to any of the types) is 11e, 11i is more commonly known as WPA2...

Re: Simple solution

Except the thieves are too stupid to tell fibre and copper apart. I've seen several cases of BT fibre infrastructure being ripped out by thieves who thought it was copper.

Re: Not to throw a damper on this lovefest...

Do you have a source you can cite for that? All the articles I've seen state Haswell supports OpenGL 3.2 and OpenCL 1.2.

Re: take a leaf from ARM

Isn't the process migration something the OS should be doing? AMD and Intel already shut down many bits of their CPUs (including whole cores) when they're not in use.

AMD are already doing that with their latest generation graphics cards, they're calling it 'ZeroCore'.

The problem with lots of small servers is the overhead. Even your dinky little ARM servers are going to be using some power all the time. Whereas in a virtual environment you'll have fewer servers so the base load of them sitting idle will be less. You can even shut down servers completely if the load isn't sufficient for them all to be running.

Re: New?

That was presumably the E5-2600 version of the DL360 Gen8 (which appear to have gained a p suffix), whereas these are DL360e Gen8 (note the different suffix).

Nice way to confuse people HP. At least Dell are giving their systems different numbers (their equivalents are R420 (E5-2400) and R620 (E5-2600).

Re: Intel thoroughly missing the point here

I don't think Intel are missing the point, they just see gaps in their line-up that need filling. (i.e. between single socket and a full-on dual socket, and between dual socket and their big E7 quad setup).

Intel cores are currently faster, clock for clock. For example, lets take anandtech's review of the E5-2600 ( http://www.anandtech.com/show/5553/the-xeon-e52600-dual-sandybridge-for-servers/ ). In that they take a simulated E5-2630 (6 cores, 2.3GHz) and they reckon it beats an Opteron 6276. Thats a $616 CPU beating a $788 CPU (list prices for both).

But still, the Opteron reaches futher down than the 2600 series does, so Intel knocked off a few of the extras to produce the 2400 series to compete with those. Likewise, the E7 is overkill for many where you just want 4 sockets-worth of ram and cpu, so bump up the E5 to fit there.

Indeed. They've typoed the name (It's a 6904 card, not a 6094). And the 44 ports is for a full 6913 chassis. It's 4 ports per card.

http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/data_sheet_c78-696623.html if you're into your hardware porn.

Why would you assume that?

People have to go out and actively get Opera mini for their smartphones. Whereas the huge number of people waving iPhones about will all be using Safari by default.

They're only following in Apple's steps. You had noticed that as soon as Lion released, Apple stopped bothering with any more updates for Leopard? The last PPC-compatible version...

There's a paper http://www.thoughtcrime.org/papers/ocsp-attack.pdf on how the protocol can be MITM attacked.

Rather than bandwidth usage, resource usage of the server running the OCSP service might be an issue if you get millions of requests. If it takes a while to respond, people will complain their browsing is slow (you're waiting for OCSP to respond before trusting the site). If it fails to respond at all, do you block access to the site? (That'll be disabled if people want to get to their stuff). Or allow access, risking people going to a site that shouldn't be trusted?