That's real spycraft, not just going through the motions.
That deserves one of these -->
Posts by Stuart Moore
178 publicly visible posts • joined 8 May 2008
Military infosec SNAFUs: What WhatsApp and bears in the woods can teach us
Vote to turf out remainder of Nominet board looks inevitable after .uk registry ignores reform demands
Nominet chooses civil war over compromise by rejecting ex-BBC Trust chairman
Scottish National Party members found among list of names signed up to rival Alba Party after website whoopsie
OVH flames scorched cloud customers with pledge to build data centre fire simulation lab
I haven't bought new pants for years, why do I have to keep buying new PCs?
We know it's hard to get your kicks at work – just do it away from a wall switch powering anything important
Nominet vows to freeze wages and prices, boost donations, and be more open. For many members, it’s too little, too late
Friday 12th February 2021 09:29 GMT 
Tell your Domain Registrar
I was delighted to find that my preferred domain registrar (34sp.com) have already signed, and sent them an email to say so. If your registrar has - congratulate them, will help them fight any pushback internally. If they haven't - email to ask why not, and why you shouldn't move to one that has?
DBA heroes don't always wear capes. Sometimes they just have a bunch of forgotten permissions
45 million medical scans from hospitals all over the world left exposed online for anyone to view – some servers were laced with malware
Sunday 20th December 2020 09:58 GMT
Re: Security model is upside down so they can't implement SSO
Single sign on doesn't mean giving everyone access to everyone's records. It means that you have one authentication, which then gives you access to the things you have the right to access, whatever system they're in.
Working out what you have a right to access becomes more complicated, but it isn't impossible. One solution I heard is that every access should be audited and the patient themselves can review, along with reviews of suspicious events (e.g. doctors receptionist getting records of someone not registered at the surgery - there are valid reasons - emergency appointment when visiting relatives - but if one receptionist goes outside the statistical norms you can ask them what's going on).
This is a complex problem to solve, and making things too secure could end up with the patient getting incorrect treatment. However we should be honest about what the problem is.
Internet Archive to preserve Flash content for posterity with Ruffle emulator
What a Hancock-up: Excel spreadsheet blunder blamed after England under-reports 16,000 COVID-19 cases
Ancient telly borked broadband for entire Welsh village
Ex-Apple engineer lifts lid on Uncle Sam's top-secret plan to turn customized iPod into 'Geiger counter'
Dido 'Queen of Carnage' Harding to lead UK's Institute for Health Protection because Test and Trace went so well
Wednesday 19th August 2020 03:45 GMT
Depends what you're comparing the large scale agriculture to. You've chosen to compare to organic farming; you could alternatively compare it to what the land would be doing if it wasn't farmed at all, which is a valid comparison of you're comparing where we are now globally to decades ago.
Likewise you've carefully chosen the northern hemisphere for your deforestation stat, rather than globally, despite the atmosphere being global... could that be because looking globally doesn't match the outcome you want?
So you really didn't touch the settings at all, huh? Well, this print-out from my secret backup says otherwise
Unlucky for some, GitLab 13.0 is DevSecOps in a box, but will it play nicely with others?
Friday 22nd May 2020 21:35 GMT
Can report the same flaws apply to ultimate too...
It's a good product, and it is getting better. I like having the CI setup itself in source control. Some of the security analysis features are pretty good. There are a few nice features where just a little more work will make them really nice.
Not perfect, but worth a look
Easyjet hacked: 9 million people's data accessed plus 2,200 folks' credit card details grabbed
Wednesday 20th May 2020 06:19 GMT
Re: Never store CC details
If they're doing it properly, then the credit card numbers will be passed to a CC processor, who will return a transaction number. If they want to refund the transaction, that's what they need. The CC processor will hold that link, but there are a small number of them and they can afford to do security a lot better (and understand that they need to do it).
Likewise for repeating credit card payments, saved cards etc. done properly it will be passed to the CC processor who will return a token. That token can only be used by that merchant - so if the token does get exposed you can't use it all over the place.
Of course, no guarantees that things are done properly, and it's very easy to e.g. turn on debug logging of all inputs without remembering there are some you definitely shouldn't be logging!
Xiaomi Mi 9 owners furious after dodgy Vodafone software patch bricked their mobes
What do you call megabucks Microsoft? No really, it's not a joke. El Reg needs you
Cloudflare outage caused by techie pulling out the wrong cables
NASA mulls restoring Saturn V to service as SLS delays and costs mount
Quick, show this article to the boss, before they ask you to spin your own crisis comms Power App in 2 days
Download this update from mybrowser.microsoft.com. Oh, sorry, that was malware on a hijacked sub-domain. Oops
RIP Katherine Johnson: The extraordinary NASA mathematician astronauts trusted over computers
Help! I'm trapped on Schrodinger's runaway train! Or am I..?
What was Boeing through their heads? Emails show staff wouldn't put their families on a 737 Max over safety fears
'Buyer's remorse' drove HP's legal crusade to go after Lynch, High Court told
Train-knackering software design blunder discovered after lightning sparked Thameslink megadelay
Today's budget for application improvements is brought to you by the letters "Y", "K" and the number "2"
Microsoft: Oh Christmas Tree, Oh Christmas Tree, my PowerShell has gone RC
In tribute to Galaxy Note 7, BBC iPlayer support goes up in flames for some Samsung TVs
Tuesday 10th December 2019 22:34 GMT
Same happened to my samsung blu ray
My TV is relatively dumb (has Netflix but nothing else), I got a Samsung blu-ray to give me the smart functionality - a BD-H6500-ZF, bought April 2016. Same thing, they turned off my iPlayer despite me trying software updates. Samsung support said it was the BBCs fault. https://twitter.com/mrstumo/status/1192172108316581888?s=19
Ended up buying a Roku as the best of a bad bunch. Last time I buy a Samsung
It's Hipp to be square: What happened when SQLite creator met GitHub
Can't you hear me knocking? But I installed a smart knocker
GitLab reset --hard bad1dea: Biz U-turns, unbans office political chat, will vet customers
Astronaut Tim Peake reminds everyone about the time Excel mangled his contact list on stage at Microsoft AI event
Clutching at its Perl 6, developer community ponders language name with less baggage
Trump attacks and appeals 'fundamentally misconceived' Twitter block decision
Subcontractor's track record under spotlight as London Mayoral e-counting costs spiral
NPM Inc settles union-busting complaints on third try – after CEO trolled for ordering internal mole hunt
Home Office cops an earful for emergency network feck-ups - £3bn overbudget and 3 years late
Autonomy was a 'pure-play software company', testifies former HP chief exec Léo Apotheker
'Occult' text from Buffy The Vampire Slayer ep actually just story about new bus lane in Dublin
Wednesday 20th February 2019 07:08 GMT
Re: Dross?
I have also recently started a re-watch, and I'd agree it holds up well - far fewer jokes that now make you cringe than many other shows of the time. The first season is ok but the second is noticeably better when they've had a chance to work out what works.
We also decided to get the box set of Angel (spin off from season 3, I think) and watch them in parallel with the overlaps... Less convinced by Angel so far but it's not bad. Somewhere online there's a suggested watching order so that you don't get continuity out of order.
My 2019 resolution? Not to buy any of THIS rubbish
Friday 4th January 2019 14:45 GMT
Re: Hospitality sector had it coming
Our mortgage broker definitely found me a deal I wouldn't have found myself, probably saving thousands over the length of the mortgage, as well as explaining things like the way rates are calculated (e.g. your rate won't improve unless you can get your deposit above this level...).
Total cost to me? Zero! They did it based on commission from the building society (but still it was better than any rate I could find publicly). So as far as I'm concerned it was a win. The same person has also helped several friends and family too.
This was Nick at www.privatepremierfinance.co.uk - I hope the mods won't mind me posting that here.
Boeing 737 pilots battled confused safety system that plunged aircraft to their deaths – black box
Peers to HMRC: Digital tax reforms 3 days after Brexit? Hold your horses, how 'bout 3 years...
Saturday 24th November 2018 09:31 GMT
Radio 4 moneybox
There was a Radio 4 Moneybox episode about this a few weeks ago, should be still there in the podcast. Most accurate thing was when this was all described as making tax difficult.
It sounds like the original plans might have been useful with extra detail, but now they're watered down to uselessness someone is insisting on going on to save face... Bloody politicans
Bright spark dev irons out light interference
ZX Spectrum reboot latest: Some Vega+s arrive, Sky pulls plug, Clive drops ball
Visa fingers 'very rare' data centre switch glitch for payment meltdown
HTC U12+: Like a Pixel without the pratfalls, or eye-watering price tag
Wednesday 23rd May 2018 09:07 GMT 
No Headphone Jack, No Sale
You forgot to mention, but there's no headphone jack (according to https://www.techadvisor.co.uk/new-product/mobile-phone/htc-u12-plus-3664388/ )
Shame as there does appear to be an SD card (had to look at https://www.engadget.com/2018/05/22/htc-leaks-flagship-u12-plus/?guccounter=1 to find that!)
Biting the hand that feeds IT
