Posts by Vic

Re: Next week's "Line Break" article....

so then the whole plane has to be restarted, at 30,000 feet, lol

That's really no big deal.

Restarting at 300ft - yeah, that's you in the hole[1] in that field.

Vic.

[1] Yeah, the *new* hole...

Re: Linky

Not sure it seems hugely inventive

It seems to be re-inventing quite a lot of what we were doing 20 years ago in HAVi

Vic.

Re: All well and good

How do you mesh this with the cutthroat world of today where "you only live once" and "you fail = you're dead"?

You need to introduce risk gently, so that proper assessment and mitigation becomes part of the experience of growing.

If the first time you experience risk is a life-threatening situation - you run the risk of not surviving that learning process.

TL;DR: we shouldn't wrap kids in cotton wool all the time.

Vic.

Re: Since users too often click through those warnings.

As an admin is there actually ever a good reason to even allow such a behaviour on client PC's?

I have an invalid certificate on my webmail server. It is deliberate.

From time to time, I will find myself on customer site where all the machines trust a local CA, and there is a MitM machine to intercept HTTPS traffic. I don't want my data to be intercepted. Thus, if I *don't* get a certificate warning when I try to connect, I know I cannot use my webmail from that location...

Vic.

Re: Interesting...

not a peep about El Reg's "wobbly day". Error 524 or 5 march 2016. Down for hours

El Reg has had a couple of those now. I'm still waiting for the article guffawing at such occurrences...

Vic.

Re: Thames

Or would you code a site in C++?

I've coded sites in C, using apxs.

I'm not going to claim it's suitable for everyone, but in the right set of circumstances, it gives you a very performant site for minimal coding difficulty. Sometimes, that's the right choice.

Vic.

Re: And the moral is.......?

Another is that every operating system allows any program to write to any file based on user privileges only. If, for instance, only your office suite was allowed to write to word processor files and spreadsheets a random encryption program couldn't touch them

SELinux provides exactly that protection...

Vic.

Re: getting close to home

Hopefully makes you think that the beer's lovely, and so are the restaurants

Yep. I went to Belgium about a month ago. I was surprised to find how much I enjoyed the bits of it other than the beer[1].

Vic.

[1] Which was, of course, magnificent :-)

Re: The whole thing is a crock of s**t for everyone

I'm with Eclipse, and in my area OpenReach rolled out FTTC at the end of last year. Since then, the ADSL drops out infrequently due to interfearence on the line.

I used to be with Eclipse. I had fairly frequent drop-outs.

I sent them my router logs - clearly showing double-CHAP requests. The first would succeed, the second would fail. But they claimed this was clearly a fault in my equipment, as if there was anything wrong at their end, everyone would be complaining.

I left Eclipse. I went to A&A. I still use all the same kit[1], but the drop-outs no longer occur...

Vic.

[1] They did send me a new router - which would improve my speed. But I haven't quite got round to installing it yet :-)

Re: Haters gonna hate

I like that when I insert a USB thumb drive it can automatically FSCK it if needed.

I don't. I want my devices to stay intact until I decide to do something with them.

This sort of thing means that forensic examination is no longer possible - if the device is altered as soon as you plug it in, your evidence is destroyed.

Vic.

Re: Noooo...!

you can't put a ship on a boat

Sure you can.

Probably just the once, though...

Vic.

Re: Prisoner release dates

there is also loss of remission for bad behaviour to be taken into account (which was calculated as days added to the determined release date, not to the sentence, but still before taking into account weekends and Bank Holidays).

A mate of mine did some time in an Army prison some while back. The approach is, apparently, rather simpler: you are sentenced to n days in prison, but that is "serving under sentence", and you are expected to obey your commanding officer during that time. So if you do something wrong - you are not serving, so that day does not count as one of the days of your sentence. You are, quite literally, wasting your own time...

Multiple sentences, for example 6 months for a primary offence and two consecutive 3 month sentences to run concurrently, make things interesting as it is not always obvious which is going to be the longer.

OO programming is your friend...

Vic.

Re: Dalton

He claimed a machine had been implanted in his stomach (I forget by who or what) that was telling him to kill.

That's Videodrome, isn't it?

Vic.

Re: WCPGW

I think all managers need to have a bronze plaque installed on their office wall for every time they ignore warnings

I think they need a lead plaque installed on their ankles every time they ignore warnings.

Then, at month-end, we throw them in the canal.

Vic.

Re: Everyone in the study used NRT

Short term, no-one has produced methodologically sound evidence of any serious harm

Given the provenance of Nicotine and the known toxic effects, it would be a brave man that says there is no risk. But compared to everything else in a cigarette? It's clearly dramatically safer...

Vic.

Re: Skynet's chariot

"Don't tread on an ant, he's done nothing to you

There might come a day when he's treading on you"

Have you unplugged the jukebox yet?

Vic.

Re: PS/2 Mice

do you still need to reboot after inserting a PS/2 mouse or keyboard for it to be recognised?

That seems to depend on the motherboard; some cope just fine with hot-insertion. And some don't.

Vic.

Re: Much as I hate to say...

Can you tell some more about that? Personally, I regularly download 'free' apps and I've never been asked for a card on the play store.

I also keep getting a popup that I need to add a card.

There is a "skip" button; it works, but you will get asked again...

Vic.

Re: Perfectly understandable

But not from Linux, which has a big capability gap here.

Bullshit. Linux has the same capabilities, as well as a few more. You do not know what you are talking about.

Even the slightest technical knowledge about SUDO would tell you that's EXACTLY how it works so you clearly don't understand the subject matter - /usr/bin/sudo must be owned by uid 0 - the next time you run SUDO, type echo $UID

[vic@perridge ~]$ sudo echo $UID

1000

Oh look - it's not 0.

[vic@perridge ~]$ sudo -u jetty -s

991

Still not 0.

The sudo binary must be owned by root to have its capabilities - but that does *NOT* mean that anyone that uses sudo gets root capabilities, nor that they become root explicitly[1]. You do not know what you are talking about.

I don't know whether you're paid for this crap, or whether you get some sort of kick out of it, but your knowledge is so substantially wrong, you're really not doing anyone any favours here. Read the man page - you might learn something[1].

Vic.

[1] Becoming root *may* be permitted, according to how the sudoers file is set up. But it is one of many ways to run sudo. You might want to find out some of the others, as they competely destroy your assertion.

[2] This does, of course, presuppose an open mind. So maybe you won't.

Re: Easily turned around...

plenty of organizations, where Sony is the most obvious example, had very specific polities for user passwords to make sure things were safe

I used to have a very simple rule for password complexity.

I would run john against the shadow file overnight. Any accounts that got cracked in less than an hour would be locked...

It was surprisingly effective - especially as you found out which accounts weren't being used at all[1].

Vic.

[1] I had inherited the userset, amongst which were many remote workers. It was quite clear that some of the accounts were dormant, as no-one ever asked me to unlock them.

Re: TROPPUS TI

myths that there are signs in the village, pointing the way to the sea and emblazoned with "Muff Diving" are sadly just that.

There is a Muff Diving Club, though...

Vic.

Re: The syntax police

"He says risk is critical for security executives despite that he admits it is his weakest area." Maybe "despite admitting," or even "even though he admits."

I suspect a semicolon after the word "executives" would be more appropriate.

That said, I suspect the word "understanding" is missing just before "risk"; the alternative really isn't very palatable[1].

Vic.

[1] Although it might be correct as is ::shudder::

Re: hypotheticals?

Perhaps send the "world's most powerful army" to convince them stop encrypting?

You want to invade every country in the world simultaneously to prevent them doing (currently) legal things?

That'll work well...

Vic.

to whence

Please. "Whither", if you must...

Vic.

Re: Not all that bad

Not too bad if it's a 4 point harness.

It wasn't the harness that caused the problem. I was laying quite far forward in the cockpit. Then raised the nose sharply...

Vic.

Re: No. Shan't.

Damnit, my hands are weapons.

As are your feet.

One of the best weapons in confined surroundings is a broken bottle.

Yep.

Do you carry a laptop power cable? It takes less than three seconds to tie a clove hitch in one - that's a very effective weapon.

Do you have a sock? Put anything with a bit of mass in it and you have something lethal.

The list is endless. Just don't tell airport security or none of us will ever fly again...

Vic.

Re: What do you have installed?

aww, I lost my badge

I suspect you might have a browser problem; I can see it...

I guess that means I have a life now??

*snort*.

Vic.

Re: I just checked my account

I've (accidentally) paid over £6 for a pint.

Erratum - it was over £8 for a pint.

Still worth it...

Vic.

proving someone did NOT do something would require 100% surveillance of that person.

But that's not what happens here; "exculpatory evidence" could be a small amount of surveillance that, for example, provides a watertight alibi. It would require 100% surveillance to guarantee to find all such exculpatory evidence, but that does not preclude some being found in a lesser degree of surveillance.

So I think that is a cover for Parallel Construction

It's possible - but note that in the UK, we don't have the "fruit of the poisoned tree" doctrine, so unless the security services were simply trying to disguise their capabilities, parallel construction is unlikely to be necessary.

That includes passport info which includes all the biometrics for most Brits.

No, not any more. All that big biometric gulp has been abandoned. Current passports contain very little (I think mine just has a digital photograph).

Vic.