Maybe in 20 years when the UK IT industry no longer exists the government might wake up and realise this wasn't such a good idea after all.
770 posts • joined 12 Mar 2008
SMS 2FA gave us sweet FA security, says Reddit: Hackers stole database backup of user account info, posts, messages
Re: Thirteen Years of Operation...
If they hadn't hired an InfoSec guy would they even have announced this breech?
If they hadn't hired an InfoSec guy, would they even have known - that's a scarier question.
And why on earth are they keeping ten year old backups anyway? That makes me suspicious.
Re: What about the rest?
They should at least log the URL and prevent anyone else linking to it.
I had that happen when someone reported a video as being "offensive". It wasn't, unless you object to vintage pop music shows (this was from France, so it didn't have the excuse of containing gratuitous images of Jimmy Savile). But because of that, the video is blocked for all time.
So surely they should be able to do something about that...
Re: Finally took the plunge with 18.04 last night..
Strange. I've been running 18.04 for a few months with no problems.
However I usually do a nice clean reinstall - copy all my files off to the NAS box and then wipe and install from freshly downloaded media. I've found upgrading ubuntu releases in place is... well... not always a good idea.
Re: The Institution?
I have to wonder about Capata their reputation as a bunch of corrupt pirates has long been established, at this point, there can be nobody who deals with them who is not aware of this fact so why are they being hired?
In my experience, government thinking goes as follows:
5. They have three years of audited accounts, therefore they are eligible.
4. They are not the most expensive option, therefore they are not overcharging.
3. They are not the cheapest option, therefore they are providing a quality service.
2. If something goes wrong, we can take them to court instead of holding elected officials to account.
1. Everybody else is using Capita, therefore they must be the best.
Simple - the same ideas underpin their implementation of the same thing. Speculative execution and so forth are fairly industry standard techniques, and even if they aren't necessarily implemented in exactly the same way, it's possible that people have made similar mistakes in their implementation - especially if there's an open "reference implementation" that includes the bug.
It will get better, finally. When Microsoft finally wakes up and drops Flash from Windows 10. Until then, you can't* even uninstall it!
* Well, you can, if you're willing to drop into an administrator console, delete files from two places, wave a chicken in the air, say a backwards prayer to Bill Gates and then put up with Windows Update bitching about how it can't update Flash forever.
Aside the fuss about production cycles, my other question is why are people accepting delivery of broken parts in the first place? Maybe there should be legislation about putting warning stickers on things: "warning, this device has X known vulnerabilities". I suspect Intel would start taking it a bit more seriously then...
I started with Slackware back in 1994, and like other contributors, I remember downloading Linux from the University of Kent's lovely mirror service (I haven't used it in a while as there are now nearer mirrors to me, but it's still a buzz to go hunting through its archives with my ftp client, just to see what's there).
I'm not sure it'll tempt me away from Ubuntu 18.04 - maybe I'm getting lazy in my old age - but it's good to know it's still going strong.
A (virtual) beer for the Slackware maintainers...
Re: Not just Azure
Personally, I dislike Powershell intensely. It feels like they wanted to try and make their own version of bash but without making it look too much like bash and now they're too far down the rabbit hole to back out.
If I were in charge of MS I'd just cancel Powershell immediately - no further products to ship, and all existing products remove all support in their next release. I appreciate that this sentiment will get me downvoted by all the Powershell junkies but hey, just my opinion...
I wish they'd just open source SmartSuite. I still have my DVD of the last version (Millennium 9.6 or something like that) and I still have it installed on a VM just for sentimental reasons (although I don't use it much any more).
But I used to love Organizer. If I could have that connecting to Google calendar, or Hotmail... *sigh*
Cryptomining sounds a sensible place for malware slingers to go. I'd think it's less risky because corporates are more likely to treat it the same as any other low-level virus infection, whereas I'd think with ransomware they're much more likely to get the plod involved.
Depressing as that sounds, I know...
Microsoft now splashes out on companies that implement Outlook functionality from scratch.
And closes them down, usually, doesn't it? They probably incorporate the one thing they wanted into Outlook, of course, but it also thins down the potential competitors.
Ironically, I think one of the reasons Outlook succeeded early on was competing against the bloat of Notes. Now Outlook/Exchange seems to be just as bloated these days as Notes ever was when I used it.
Re: Max Fine
£500,000 is the maximum fine, and yet it is parking ticket for the uber-rich. Why is there a maximum fine?
Because that's an old law. The GDPR replaces it with much larger fines - it would have been in billions under GDPR - but because of when the offences were committed, they can only fine what was the maximum at the time.
Re: Compaq 'security'?
"You had to know the original virtual cylinder/head/sector values "
Which were usually written on the top of the drive.
For old enough drives, they weren't. I used to carry around a book with thousands of CHS values for various drives in it.
Plus, for added laughs, people would often put the wrong number of heads or sectors in. So the drive would sort-of work, but not all of it would be accessible. And they would then get cross when you tried to upgrade their PC. "How can I have lost all my files?????"
Re: Office Applications? OLE?
"who the fuck decided to introduce the concept of workflow via the medium of Excel spreadsheets"
Microsoft BizTalk, I guess?
"They're going to be using our workflow engine, so how can we further lock them into our 'ecosystem'?"
"Make a dodgy Excel connector and then sort of get halfway ish with workflow in Excel?"
"Well done, there. Well done."
(No joke icon because I'm half serious here)
I was always a Commodore 64 person but I was totally in the ethos. I can still remember the bits of the memory map I used most - D000 was where the character rom lived, A000-BFFF was the basic, then there was C000, KERNAL started at E000, D012 was the current raster line, D020 was the border colour, D021 was the screen colour, always set $01 to $35 to clear out the ROMS from memory and turn the tape off...
Ah, heady days...
...are they going to use the time they save not supporting Maverick to make sure Chrome works properly on High Sierra then?
It regularly seizes, says "connection interrupted" or otherwise falls over for me.
(Before you ask Vivaldi, Firefox, Pale Moon, Safari are all working fine. And yes, I know Vivaldi is based on Chrome...)
Uber really isn't a great business. In New York, the scarcity of taxis is basically to try and reduce congestion in the city. With Uber, that policy gets shafted and everybody loses (because, by implication, the cost of ordering a cab/Uber is now more than before, as the time spent waiting in congestion is greater than before).
I have no patience with them. Never used them, never will. Anyone who thinks they're "the future of public transport" is deluding themselves - they're the new Addison-Lee / Foxtons of public transport, if they survive that long (and given their cash burn rate, who knows)
Re: If ARM is so good
The reason Apple aren't going to release ARM based MacBooks is they don't want to interrupt their competitors while they're making a mistake...
ARM on Windows failed a few years ago for the same reasons it'll fail now. Try running any moderately recent program on 1GB of RAM and an 800MHz chip and you'll be in hell. Yet this is the standard ARM configuration that gives you the low power consumption and long battery life. Microsoft are trying to fit a ten-pound bag of manure into a five-pound bag. Again. And it's not going to work.
And I agree alternatives to Intel are needed. But the easy way is to simply licence from AMD and build it yourself, surely?
So IBM didn't do the original job, and got hired when things got bad?
Well, there's a reason that firms like IBM exist, and part of it is that if you hire them before things go wrong, they can advise you on how to do them correctly.
To then hire them and ask "what did we do wrong" and then quibble with the answer is a bit like running over your own dog, taking it to the vets and then quibbling with the diagnosis, saying the dog needs to be treated for fleas...
Re: A Kludge
Frankly, I wish Microsoft would take these issues as seriously and disable cruft like this in the consumer OS's by default.
Yes, this would be great. However it would annoy their long-term buddy, Intel.
That said, if they really are planning their own line of chips, maybe they'll do it to cripple Intel kit and bolster sales of their own silicon. (Cynical, moi? Yep.)
Re: Still at the FPGA stage after all these years?!?!?!?!???
You can absolutely guarantee Intel said no. This represents Microsoft turning into an Apple-ish end-to-end factory, where they make the hardware and the software.
I half expect Windows to become confined to Microsoft hardware only, like Apple. No more tinkering. No more buying whichever graphics card you feel like and slapping it in a tower and having it work. No more writing your own Windows apps without an MSDN account.
Great for Microsoft, but if that happens the days of open computing are over. To quote the Great Sage* himself, "they're selling hippy wigs in Woolworths, man. The greatest decade in the history of mankind is over. And as Presuming Ed here has pointed out, we have failed to paint it black."
* Bruce Robinson, natch.
Re: Typical installer written in a large company
Nah, you don't have to be a pro developer.
Actually, that's right. I've known people who were InstallShield gurus* who couldn't write a line of code, yet know where all the registry keys live for things, the "right way" to install stuff... it's knowing how the system works that's the main thing, not necessarily how it's written.
I'm actually encountering this on an open source thingy I'm writing. I can write the code, no idea how to get it installable (yet). *sigh*
* I was going to say "wizards", but that would conjure up a totally different image...