Re: Citrix VPN
The vulnerability was apparently mass-exploited before patches were widely installed. Backdoors were installed and the networks were they are still accessible are now subsequently "milked".
352 posts • joined 20 Jun 2008
IT-department probably asked for anything that was recommended in the comments above (separation, IDP, whatever) but management told them "No budget, make it work".
A while ago I was at an event (yeah, it was a while ago, because it was still physical and there was food served afterwards) that was primarily some talks about DNS and DNSSEC and also hosted a panel with politicians and engineers where the audience could fling questions at the panel.
There was one guy from a rather large and well-known hospital, begging the politicians on the podium for stricter laws so he could get the manager at his hospital to give him more money to fight the incoming threats. If it wasn't so sad, it would have been comical.
Hospitals in Germany mostly belong to large chains that are profit driven. If they can shave a Euro from the budget by buying cheaper mice, they will.
But if a security-measure costs money to implement and isn't obviously required by law, they'll just skip it "because we've been good so far, right?".
The problem with Chef was and is (AFAIK) that integration into 3rd-party things was always quite complicated.
This is maybe rooted in the idea that chef would be *the* source of truth of an enterprise and not some cog-in-the-wheel.
You can see this when you look how e.g. The Foreman tries to integrate chef in comparison to ansible.
I have done some chef in the past (now everything is ansible) and the learning-curve was comparatively steep.
So, chef's "mind-share" was certainly shrinking.
If you do some google-searches, you also get to postings on reddit where people claim that large chef-environments claim that they became unmanageable over time...
Chef's hosted chef-server (which we never used) was also often criticized for having less-than-stellar availability-figures.
Some aspects of chef I really liked, e.g. the fact that it ran continuously and thus there was little doubt about the state of the node.
I use it on an embedded AMD Geode APU2 from PCEngines. This CPU only has one core and thus none of the Intel bugs of the last years.
It's passively cooled and I get pfSense updates for a very long time.
My access point is from Apple. I guess it does phone home a bit, but at least they don't sell to advertisers or hand it through to Facebook et.al.
I hope it will be viable to run your own access point at some time (with open firmware).
A while (months at least) ago, somebody on the freebsd-fs mailinglist had an unrecoverable 36T pool after repeated crashes (due to power-failures, IIRC) and the subsequent (uncompleted) resilvers. There was also some sort of metadata corruption.
It was a huge thread that petered out with no solution - until the author came back a month or so later to claim she was able to access the pool again with the help of a commercial Windows-only tool made by a 3rd-party company.
Because we could send the output of xview to other screens in the lab.
It was 1996 or 1997 and people didn't have internet in the dorms, so they couldn't enjoy pictures of pretty ladies they downloaded from the internet from the comfort of their own room, mostly. So they did it in the lab.
That usually didn't go unnoticed, but most didn't care.
A friend hat the idea to make a banner, a collage of a stop-sign and other icons found on the internet with the words "Stop. Internet-Police. You've been caught watching porn" - or something like that (I cannot remember exactly).
When we spotted somebody enjoying a set of naughty pics, we sent him the banner via xview.
They'd usually straighten-up (having been thrown out of their porn-trance abruptly and without warning), close all browser windows, log out and leave the lab immediately.
The are NOT wireless and there were never any software-updates.
They work very well.
Apple will soon eat their lunch in the earphone-department. Because unlike Bose, they do issue firmware-fixes and if in the rare case these brick a device, they'll issue a fix to unbrick it soon after (or actually give you new hardware).
The AirPod Pro's are already almost as good as the Sony ANCs.
13" comes with 8GB, 16" comes with 16GB standard RAM.
If it had a replaceable battery, you'd still need to lug that around, wouldn't you?
While user-upgradable RAM and SSD would be nice, the reality is that most users never do that and rather enjoy sleek and portable devices.
It's a bit like insisting that every car come with feature X, because you need that feature.
Even though most people wouldn't care.
Why should everybody else pay for your special requirements?
Same as USB-C vs. the rest. Apple has decided that the future is USB-C and Bluetooth - and it seems that consumers are currently voting with their feet to support that decision (witness the rising number of non-apple BT headphones and in-ear headphones on the market).
Yes, you need batteries etc. but with the exception of the headphones, I'm with Apple on this one.
For a portable device, less is more.
Those calculators are great, though.
At school, a simple one was enough back then.
But at university, I needed a programmable one.
And unless you insist on installing some games on them, there are also far fewer distractions than with a laptop or a tablet.
So, while it costs 100, it's really priceless in overall benefits.
Though, technically, in the exams I had it was mostly irrelevant if you had a result at the end.
You got most points for understanding the the questions, formulating a solution-approach and showing how you'd solve it. That was usually 85-90% of the points.
I actually once forgot mine and approximated most results in my head/on paper. Was still enough for a good exam.
As for the article - I do agree that learning something from a physical text-book is much, much better. You learn best by engaging as many senses as possible. Being able to physically grab pages of a book is invaluable.
At least, they use Apple hardware. It could be Chrome books, ensuring the kids get conditioned from early age to watch ads and buy the products. That would be much worse.
AFAIK, standard practice for anything that touches "defense".
In most countries.
Any Chinese company with some government-contracts wouldn't let a white monkey touch the source-code with a barge pole.
They'd also be careful not to hire somebody with too much ties to the US (relatives living there, kids studying there).
But software which OpenBSD uses and redistributes must be free to all (be they people or companies), for any purpose they wish to use it, including modification, use, peeing on, or even integration into baby mulching machines or atomic bombs to be dropped on Australia.
email@example.com mailing list, May 29, 2001
The world is full of hypocrites and these days they seem to congregate around software-projects.
China wants big phones.
Thus, you only get a big phone. And you get a big phone. And you. Everybody just get a big phone.
Just like cars will all look like Tesla Model 3 in a few years, because Asians like big displays also in the car.
So, better start liking them or your life will get miserable...
Waited for the "SE2", too. But finally got fed up with my 4S, so got an Xr.
This will be good for some time.
There might be an SE2 next year (as every year). But it won't be as small as the SE. Most apps look shit these days on small displays.
I've started to think that Apple does an SE2 every year but never releases it. It's only being done on the off-chance that sales tank dramatically and they need to pull the iPhone-equivalent of a rabbit out of their hat (made from bespoke materials).
Prototypes surface all the time, sometimes even case-designs. But the prototypes never make it to production. Hence the above conclusion.
The Xr has grown on me (ha). Sort of.
I miss the ease of handling the 4S had. It was much, much less prone to accidental dropping.
I think I could still use an SE or even a 4S (with more modern innards). Just would skip on a lot of apps and generally spend less time with it (which is bad for all the businesses who want to extract time, money and commitment from you via your phone).
So you see: those small screens aren't coming back. Ever.
Do People who bought a new Samsung last year already think about getting a new one?
Very, very few iPhone owners think of upgrading every year - or even every two years.
This is a phone for people several generations behind, maybe 7 or even 6S/SE users.
In the grand scheme of things, it’s not that much money, considering what people spend it for otherwise.
Would the world really be a better place if people could replaced their phones more often and generated even more e-waste?
Would it be a better place if Google or Huawei had the location data of 100% of the people 100% of the time, and all their browsing history etc?
Is a bit of privacy worth the price difference of an iPhone? I don’t know. For me it is.
I also don’t get all the criticism about the headphone jack (which few enough people use so that most manufacturers have killed it by now, and most new headphones are wireless anyway, unfortunately).
Other Apple products and services I’m not really that interested in - because I have little use for them.
Any reputable journalist who writes about more than the 5'o clock bingo sessions at the retirement-home should not use any kind of public cloud.
There are dropbox-like solutions that you can self-host. Use those.
There's Zimbra, if running Exchange on premise is too difficult.
I remember when the Steve Jobs biography publication date was suddenly put forward, it didn’t take long before the news of his death shook the world. In the context here, it could be that Snowden got a headsup that his stay might come to end a bit early. Snowden always knew that everything and everybody has a price. The only question is, what Putin will get in return from The Donald.
Yes, everybody knows about the Play-Store unbundling.
But AFAIK, this does nothing for most actual Android vulnerabilities - of which Android has plenty.
Apple's iOS Updates and Upgrades kill those, too.
If your device contains all your mails, credit-card data, health-data, pictures, text and god knows what else - maybe some people will want to play it safe there?
I certainly do.
Can you actually work next to such a thing?
I know that HP et.al also charge serious money for their pro-workstations, they are among other things, optimized for less noise.
For raw processing power, I'd try to farm it off to a SMC server that isn't exactly under my desk.
But this is for workloads than can hardly be farmed-off to a remote server, like (color-correct) editing those 8k video-streams or music-sheets with lots of instruments.
Apparently, the color-correct display of HDR videos at such high resolution isn't really a thing available elsewhere. And certainly not for less money.
People who earn money with this kind of thing are apparently able to make a business-case for buying it. I certainly can't, but then I'm not in that trade.
People get worked-up on the price of the stand. But the reality is that every single one of those whiners wouldn't want to buy the display anyway at 4999 - with or without stand.
That's a bit like people complaining about the costs of oil-changes for Bugatti Veyrons (20k apparently), though they'll never be able to afford such a car anyway in the first place.
I bought a new Xr in January, subsidized by the contract that is paid by my employer.
But I used a 4S for almost six years and intend to use the Xr for at least five.
The 4S I got for free, shortly before the 5 came out. The previous telco company had much better bonuses for renewing your contract - and iPhones were much cheaper, admittedly.
Why anyone would pick Huawei over Google as "overlord" is beyond comprehension to me.
Hardware and software work best when they're developed alongside.
Unfortunately, due to scale-effects, this only makes sense for the largest of manufacturers, as both hardware and software only really make a good profit at scale.
The OS is one thing.
Would you buy a phone that can't do any of the Chat and Social Media Apps, no Netflix or just about any app that needs some sort of API key to work?
It doesn't matter in China, because they've blocked all of these anyway. But it matters in the rest of the world.
What about this?
There's no court decision, AFAIK.
There's the case Alcatel-Lucent brought against them, but IIRC it was settled out of court.
The US has never really cared about any international board or committee that might have a different opinion on things as they themselves at some point, hence their absence on certain ones.
US dominance in everything IT-related (from DNS Root Servers to chips and software) has long since been regarded a problem even beyond China, Russia and North Korea. Some people seem to wake it to it just now, though.
Biting the hand that feeds IT © 1998–2020