* Posts by Rainer

352 posts • joined 20 Jun 2008


Woman dies after hospital is unable to treat her during crippling ransomware infection, cops launch probe


Re: Citrix VPN

The vulnerability was apparently mass-exploited before patches were widely installed. Backdoors were installed and the networks were they are still accessible are now subsequently "milked".


It's money, as usual

IT-department probably asked for anything that was recommended in the comments above (separation, IDP, whatever) but management told them "No budget, make it work".

A while ago I was at an event (yeah, it was a while ago, because it was still physical and there was food served afterwards) that was primarily some talks about DNS and DNSSEC and also hosted a panel with politicians and engineers where the audience could fling questions at the panel.

There was one guy from a rather large and well-known hospital, begging the politicians on the podium for stricter laws so he could get the manager at his hospital to give him more money to fight the incoming threats. If it wasn't so sad, it would have been comical.

Hospitals in Germany mostly belong to large chains that are profit driven. If they can shave a Euro from the budget by buying cheaper mice, they will.

But if a security-measure costs money to implement and isn't obviously required by law, they'll just skip it "because we've been good so far, right?".

DevOps pilgrim Progress forks out $220m for automation crew Chef


Not really surprised

The problem with Chef was and is (AFAIK) that integration into 3rd-party things was always quite complicated.

This is maybe rooted in the idea that chef would be *the* source of truth of an enterprise and not some cog-in-the-wheel.

You can see this when you look how e.g. The Foreman tries to integrate chef in comparison to ansible.

I have done some chef in the past (now everything is ansible) and the learning-curve was comparatively steep.

So, chef's "mind-share" was certainly shrinking.

If you do some google-searches, you also get to postings on reddit where people claim that large chef-environments claim that they became unmanageable over time...

Chef's hosted chef-server (which we never used) was also often criticized for having less-than-stellar availability-figures.

Some aspects of chef I really liked, e.g. the fact that it ran continuously and thus there was little doubt about the state of the node.

AMD pushes 64-core 4.2GHz Ryzen Threadripper Pro workstation processors


No idea what I would do with that

I don't game, I don't do ML, I don't do sims, I don't do 3d, I don't to video.

Just a couple of VMs, Youtube, reading El Reg and reddit...

Man responsible for least popular iteration of Windows UI uses iPad Pro as a desktop*


You wouldn't either, if you were as loaded as him.

Tom Cruise to increase in stature thanks to ISS jaunt? Now that's a mission impossible


Who‘s paying?

Your guess is as good as mine - but what are the odds that the taxpayer isn’t paying for this?

Leaving Las Vegas... for good? IT industry conference circuit won't look the same on other side of COVID-19 pandemic


And wasn't one of the main attraction points of CES...

that it was at the same time and location as Adult Entertainment Expo?

Maersk prepares to lay off the Maidenhead staffers who rescued it from NotPetya super-pwnage


That's too obvious.

You need to make it more subtle like "Jean", or "Chantal".

The big secret is to let the mark's brain do all the work and fill in the stuff you couldn't (and didn't want to) write on the small label ;-)

You spoke, we didn't listen: Ubiquiti says UniFi routers will beam performance data back to mothership automatically



I use it on an embedded AMD Geode APU2 from PCEngines. This CPU only has one core and thus none of the Intel bugs of the last years.

It's passively cooled and I get pfSense updates for a very long time.

My access point is from Apple. I guess it does phone home a bit, but at least they don't sell to advertisers or hand it through to Facebook et.al.

I hope it will be viable to run your own access point at some time (with open firmware).

Gin and gone-ic: Rometty out as IBM CEO, cloud supremo Arvind Krishna takes over, Red Hat boss is president


They could solve a lot of money by paying the execs with local contracts, that's for sure ;-)

BT adopts Ubuntu OpenStack as core brains for its 5G, fibre-to-the-premises rollout


Re: No CloudStack then

> So clearly BT decided that their own „cloud”, based on CloudStack, is not

> good enough. I wonder what BT’s tenants will think about that?

It was mentioned here:


'No BS' web host Gandi lives up to half of its motto... Some customer data wiped out in storage server meltdown


Re: Interesting

Not sure if el reg allows links:


Here you go.



A while (months at least) ago, somebody on the freebsd-fs mailinglist had an unrecoverable 36T pool after repeated crashes (due to power-failures, IIRC) and the subsequent (uncompleted) resilvers. There was also some sort of metadata corruption.

It was a huge thread that petered out with no solution - until the author came back a month or so later to claim she was able to access the pool again with the help of a commercial Windows-only tool made by a 3rd-party company.

Intel teases NUC-leheads with new desktop-class graphics systems and a fast i9 CPU


Re: Displacement??

This is important for people who want to do a full-submersion oil-cooled NUC.

Cops storm Nginx's Moscow offices after a Russian biz claims it owns world's most widely used web server, not F5


Meanwhile on reddit

A guy from Russia claims that Rambler.ru was acquired by Sberbank a while ago (largest state-owned bank) and this is the "usual" way to extract money and instill state-influence over a Russian or foreign business. It's "business as usual" for Russia, literally.

We strained our eyes with Lenovo's monster monitor: 43.4 inches for price of five 24" screens


No Pro Display XDR?


Beware the trainee with time on his hands and an Acorn manual on his desk


Our university lab had somehow enabled xhost+ or the equivalent

Because we could send the output of xview to other screens in the lab.

It was 1996 or 1997 and people didn't have internet in the dorms, so they couldn't enjoy pictures of pretty ladies they downloaded from the internet from the comfort of their own room, mostly. So they did it in the lab.

That usually didn't go unnoticed, but most didn't care.

A friend hat the idea to make a banner, a collage of a stop-sign and other icons found on the internet with the words "Stop. Internet-Police. You've been caught watching porn" - or something like that (I cannot remember exactly).

When we spotted somebody enjoying a set of naughty pics, we sent him the banner via xview.

They'd usually straighten-up (having been thrown out of their porn-trance abruptly and without warning), close all browser windows, log out and leave the lab immediately.

'Literally a paperweight': Bose users fume at firmware update that 'doesn't fix issues'


Re: Not impressed with Bose

They came out with the QC35-II to fix it...

And now there's the even-more-expensive next version...


I have QC25 NC over ear headphones

The are NOT wireless and there were never any software-updates.

They work very well.

Apple will soon eat their lunch in the earphone-department. Because unlike Bose, they do issue firmware-fixes and if in the rare case these brick a device, they'll issue a fix to unbrick it soon after (or actually give you new hardware).

The AirPod Pro's are already almost as good as the Sony ANCs.

Boffins show the 2017 Nork nuke can move, move, move any mountain (by a meter)


Not a big problem, IMO - until

North Korea has better missiles that can actually carry such a thing and land it on target.

I would imagine the "gadget", was rather big. Think 1950s-style Castle-Bravo size.

Until then, I'm not too concerned.

I'm more concerned over India-Pakistan, TBH.

Complete with keyboard and actual, literal, 'physical' escape key: Apple emits new 16" $2.4k+ MacBook Pro


Re: it might he a hipster thing to do

And, if you buy a 2019 Yoga, do you think it's still as well maintainable?

I'd be shocked if it wasn't glued together, too.


Re: Selective deafness

13" comes with 8GB, 16" comes with 16GB standard RAM.

If it had a replaceable battery, you'd still need to lug that around, wouldn't you?

While user-upgradable RAM and SSD would be nice, the reality is that most users never do that and rather enjoy sleek and portable devices.

It's a bit like insisting that every car come with feature X, because you need that feature.

Even though most people wouldn't care.

Why should everybody else pay for your special requirements?

Same as USB-C vs. the rest. Apple has decided that the future is USB-C and Bluetooth - and it seems that consumers are currently voting with their feet to support that decision (witness the rising number of non-apple BT headphones and in-ear headphones on the market).

Yes, you need batteries etc. but with the exception of the headphones, I'm with Apple on this one.

For a portable device, less is more.

Teachers: Make your pupils' parents buy them an iPad to use at school. Oh and did you pack sunglasses for the Apple-funded jolly?


Re: Where have I seen this before?

They probably have no-one from the academic body who is willing and capable of administrating this stuff in his spare time.


Those calculators are great, though.

At school, a simple one was enough back then.

But at university, I needed a programmable one.

And unless you insist on installing some games on them, there are also far fewer distractions than with a laptop or a tablet.

So, while it costs 100, it's really priceless in overall benefits.

Though, technically, in the exams I had it was mostly irrelevant if you had a result at the end.

You got most points for understanding the the questions, formulating a solution-approach and showing how you'd solve it. That was usually 85-90% of the points.

I actually once forgot mine and approximated most results in my head/on paper. Was still enough for a good exam.

As for the article - I do agree that learning something from a physical text-book is much, much better. You learn best by engaging as many senses as possible. Being able to physically grab pages of a book is invaluable.

At least, they use Apple hardware. It could be Chrome books, ensuring the kids get conditioned from early age to watch ads and buy the products. That would be much worse.

'That roar is terrific... look at that rocket go!' It's been 52 years since first Saturn V left the pad


Re: Poor filing practice?

It's a good thing the main architects and developers were Germans coming from WW2. They knew a thing or two about making-it-up-as-you-go.

Baffled by bogus charges on your Amazon account? It may be the work of a crook's phantom gadget


Probably not too hight on the list

A lot of people won't even notice the small charges, so Amazon might actually improve its bottom-line by this.

GitLab mulls ban on hiring Chinese and Russian support staff because 'security'


Nothing to see here

AFAIK, standard practice for anything that touches "defense".

In most countries.

Any Chinese company with some government-contracts wouldn't let a white monkey touch the source-code with a barge pole.

They'd also be careful not to hire somebody with too much ties to the US (relatives living there, kids studying there).

We're free in 3... 2... 1! Amazon unhooks its last Oracle database, nothing breaks and life goes on


Re: Unlike Aurora

Ever installed it on premise?

Blood money is fine with us, says GitLab: Vetting non-evil customers is 'time consuming, potentially distracting'


Take a page from Theo's book


But software which OpenBSD uses and redistributes must be free to all (be they people or companies), for any purpose they wish to use it, including modification, use, peeing on, or even integration into baby mulching machines or atomic bombs to be dropped on Australia.

cvs@openbsd.org mailing list, May 29, 2001

The world is full of hypocrites and these days they seem to congregate around software-projects.

Microsoft, GitHub staff tell Satya Nadella: It's time to ice ICE, baby. Rip up those tech contracts


Hey, snowflakes!

If you don't like what your employer is doing, just quit.

I'm sure Gitlab would hire some of you, if you can show some code and not just virtue signaling.

Google sounds the alarm over Android flaw being exploited in the wild, possibly by NSO


Who cares?

It's much cheaper than an iPhone. And that's obviously what most Android users care about.

Lights, camera, camera, camera, action: iPhone, iPad, Watch, chip biz in new iPhone, iPad, Watch, chip shocker


Re: Where is the problem?

China wants big phones.

Thus, you only get a big phone. And you get a big phone. And you. Everybody just get a big phone.

Just like cars will all look like Tesla Model 3 in a few years, because Asians like big displays also in the car.

So, better start liking them or your life will get miserable...


Re: Where is the problem?

Waited for the "SE2", too. But finally got fed up with my 4S, so got an Xr.

This will be good for some time.

There might be an SE2 next year (as every year). But it won't be as small as the SE. Most apps look shit these days on small displays.

I've started to think that Apple does an SE2 every year but never releases it. It's only being done on the off-chance that sales tank dramatically and they need to pull the iPhone-equivalent of a rabbit out of their hat (made from bespoke materials).

Prototypes surface all the time, sometimes even case-designs. But the prototypes never make it to production. Hence the above conclusion.

The Xr has grown on me (ha). Sort of.

I miss the ease of handling the 4S had. It was much, much less prone to accidental dropping.

I think I could still use an SE or even a 4S (with more modern innards). Just would skip on a lot of apps and generally spend less time with it (which is bad for all the businesses who want to extract time, money and commitment from you via your phone).

So you see: those small screens aren't coming back. Ever.


Where is the problem?

Do People who bought a new Samsung last year already think about getting a new one?

Very, very few iPhone owners think of upgrading every year - or even every two years.

This is a phone for people several generations behind, maybe 7 or even 6S/SE users.

In the grand scheme of things, it’s not that much money, considering what people spend it for otherwise.

Would the world really be a better place if people could replaced their phones more often and generated even more e-waste?

Would it be a better place if Google or Huawei had the location data of 100% of the people 100% of the time, and all their browsing history etc?

Is a bit of privacy worth the price difference of an iPhone? I don’t know. For me it is.

I also don’t get all the criticism about the headphone jack (which few enough people use so that most manufacturers have killed it by now, and most new headphones are wireless anyway, unfortunately).

Other Apple products and services I’m not really that interested in - because I have little use for them.

My MacBook Woe: I got up close and personal with city's snatch'n'dash crooks (aka some bastard stole my laptop)


Re: That's horrible.

Any reputable journalist who writes about more than the 5'o clock bingo sessions at the retirement-home should not use any kind of public cloud.

There are dropbox-like solutions that you can self-host. Use those.

There's Zimbra, if running Exchange on premise is too difficult.

Gone in a flash: Oracle lays off hundreds as the biz formerly known as Pillar Data is shuttered


Re: FS1 road for disaster

The problem with ZFS is that it is not "distributed".

That said, I'm still not sure if Ceph's erasure coding is equally reliable as ZFS's end-to-end integrity protection.

The NSA's own bastard operator from Hell, aka Edward Snowden, puts out memoir next month



I remember when the Steve Jobs biography publication date was suddenly put forward, it didn’t take long before the news of his death shook the world. In the context here, it could be that Snowden got a headsup that his stay might come to end a bit early. Snowden always knew that everything and everybody has a price. The only question is, what Putin will get in return from The Donald.

Org's network connect to GitHub and Pastebin much? It's a Rocke road to cryptojacking country


Re: All That Collaboration and Then The Spoilers Come

Just host a gitlab instance on-prem.

Problem solved (unless you make that one publicly accessible, too, which given gitlab's history ripe with 0days, might not be the brightest idea)

IBM ships software portfolio into containers thanks to Red Hat providing the packaging


OpenShift Runs on AWS

The version managed by them at least The latest version doesn’t even run on their own Openstack distribution (yet). It‘s on the roadmap, but it was released for AWS first.

He's coming for your floppy: Linus Torvalds is killing off support for legacy disk drive tech


Moved some servers last week that still have floppies.

They'll be shutdown in 2020 at the latest though.

Sleeping Tesla driver wonders why his car ploughed into 11 traffic cones on a motorway


I've seen this reported by other Tesla-drivers. I've even seen it reported by drivers of new E-classes with similar assistance-systems.

Tesla doesn't even have LIDAR, only cameras. Elon is all about image-recognition.

City-obliterating asteroid screamed past Earth the other night – and boffins only clocked it just 26 hours beforehand


Dinosaurs lived for hundreds of millions of years, without observing space at all.

And the last one that finally got ‘them, well, we probably couldn’t have done anything about that one either.

Brit hosting provider tsoHost takes needleful of 'unauthorized code' to the servers, suffers week of outages


Nice touch of irony

By the ad for the „Serverless Computing“ conference ticket sale.

Still sniggering at that $999 monitor stand? Apple just got serious about the enterprise


Re: yeah, right...

As with most resistance, it's futile.

Apple kills iTunes, preps pricey Mac Pro, gives iPad its own OS – plus: That $999 monitor stand


Re: Mac houses wont care but...

Yes, everybody knows about the Play-Store unbundling.

But AFAIK, this does nothing for most actual Android vulnerabilities - of which Android has plenty.

Apple's iOS Updates and Upgrades kill those, too.

If your device contains all your mails, credit-card data, health-data, pictures, text and god knows what else - maybe some people will want to play it safe there?

I certainly do.


Re: How much? They gotta be kidding, right?

Can you actually work next to such a thing?

I know that HP et.al also charge serious money for their pro-workstations, they are among other things, optimized for less noise.

For raw processing power, I'd try to farm it off to a SMC server that isn't exactly under my desk.

But this is for workloads than can hardly be farmed-off to a remote server, like (color-correct) editing those 8k video-streams or music-sheets with lots of instruments.

Apparently, the color-correct display of HDR videos at such high resolution isn't really a thing available elsewhere. And certainly not for less money.

People who earn money with this kind of thing are apparently able to make a business-case for buying it. I certainly can't, but then I'm not in that trade.

People get worked-up on the price of the stand. But the reality is that every single one of those whiners wouldn't want to buy the display anyway at 4999 - with or without stand.

That's a bit like people complaining about the costs of oil-changes for Bugatti Veyrons (20k apparently), though they'll never be able to afford such a car anyway in the first place.

It's the curious case of the vanishing iPhone sales as Huawei grabs second place off Apple in smartmobe stakes


Re: The new phones are simply too expensive for what they offer

I bought a new Xr in January, subsidized by the contract that is paid by my employer.

But I used a 4S for almost six years and intend to use the Xr for at least five.

The 4S I got for free, shortly before the 5 came out. The previous telco company had much better bonuses for renewing your contract - and iPhones were much cheaper, admittedly.


Re: No Google? That's tempting.

Why anyone would pick Huawei over Google as "overlord" is beyond comprehension to me.

Hardware and software work best when they're developed alongside.

Unfortunately, due to scale-effects, this only makes sense for the largest of manufacturers, as both hardware and software only really make a good profit at scale.


Re: Marketing

The OS is one thing.

Would you buy a phone that can't do any of the Chat and Social Media Apps, no Netflix or just about any app that needs some sort of API key to work?

It doesn't matter in China, because they've blocked all of these anyway. But it matters in the rest of the world.


Re: Upping your game

What about this?


There's no court decision, AFAIK.

There's the case Alcatel-Lucent brought against them, but IIRC it was settled out of court.

The US has never really cared about any international board or committee that might have a different opinion on things as they themselves at some point, hence their absence on certain ones.

US dominance in everything IT-related (from DNS Root Servers to chips and software) has long since been regarded a problem even beyond China, Russia and North Korea. Some people seem to wake it to it just now, though.



Biting the hand that feeds IT © 1998–2020