They should be required to pay every one of these people back.
Posts by Oninoshiko
1965 publicly visible posts • joined 6 Oct 2008
Page:
VPN Secure parent company CEO explains why he had to axe thousands of 'lifetime' deals
Microsoft updates the Windows 11 Start Menu
Downward DOGE: Elon Musk keeps revising cost-trimming goals in a familiar pattern
Judge says Meta must defend claim it stripped copyright info from Llama's training fodder
FYI: An appeals court may kill a GNU GPL software license
Court docs allege Meta trained its AI models on contentious trove of maybe-pirated content
Who had Pat Gelsinger retires from Intel on their bingo card?
Apple hit with £3 billion claim of ripping off 40 million UK iCloud users
New Jersey man admits shipping sanctions-busting tech to Russia
Bitwarden switches password manager and SDK to GPL3 after FOSS-iness drama
Japan's wooden cube-shaped satellite rockets to space
Amazon's nuclear datacenter dreams stall as watchdog rejects power deal
Arm to Qualcomm: See you in court? Oh yes, please
Tesla's big reveal: Steering-wheel-free Robotaxi will charge wirelessly
China calls for realtime censorship of satellite broadband
That doomsday critical Linux bug: It's CUPS. May lead to remote hijacking of devices
Friday 27th September 2024 14:34 GMT 
Does noone know how CVSS works?
CVSS ratings have nothing to do with how many instances of it are out there. They are a rating of how easy it is to exploit and what exploiting gets you:
In this case:
It can be exploited remotely
Without difficulty
With no user interaction
To run arbitrary code
As root
That's easily in the 9 - 10 out of 10 range.
As to how widely it is reachable on the open Internet (which again, is beyond the scope of the rating), he got around 400k Linux machines to happily run his benign payload. If I want to build a bot-net, that's not a bad one.
As to not waiting to disclose, he disclosed because someone had leaked it. Once it's out there for bad-actors, full disclosure is the only responsible thing to do.
Intel frees its Foundry biz – and that's just one of many major shake-ups today
Wednesday 18th September 2024 14:40 GMT 
Question
If you're, for example, AMD, would you trust the separation that's supposedly now here between Intel foundry and Intel design? I wouldn't.
This is useless unless it's a full, Global Foundries-esque spinoff, but Gelsinger wants to MAKE chips... I don't think he has it in him to really do what's required.
Pokémon GO was an intelligence tool, claims Belarus military official
Thursday 12th September 2024 21:19 GMT 
Wait what?
Every military on the planet has issued statements about Pokemon GO, including all branches of the US military.
I'm not sure how the theory it's a CIA tool has been debunked. I mean, there's at least enough ties that if I where head of a non-US national intelligence agency I would be not permitting it.
John Hanke, founder and CEO of Niantic was the previous founder of Keyhole, Inc, which was invested in by In-Q-Tel a venture capital firm started by the CIA.
Gilman Louie, board member of Niantic, is on the President's Intelligence Advisory Board, U.S. Department of State’s Foreign Affairs Policy Board, and has been awarded National Geospatial-Intelligence Agency medallion, the CIA Agency Seal Medallion (twice), CIA Director's Award, the Director of National Intelligence Medallion, amongst others.
Does that mean it's a CIA tool? I'll leave that to the reader to decide, but that's some pretty heavy connections with US intelligence.. and of course, the CIA has never lied.
Of course the Internet Archive’s digital lending broke the law, appeals court says
Saturday 7th September 2024 16:34 GMT
Not completely true
During COVID internet archive stopped enforcing the 1:1 rule. Publishers were afraid to bring a case and get a ruling that 1:1 was legal, but once IA did 1:many, even briefly, the case practically writes itself.
IA should have known this was inevitable, but they misjudged what they could get away with.
Admins wonder if the cloud was such a good idea after all
Wednesday 4th September 2024 18:29 GMT
Re: Cloud is a financial model not a technology
This is correct, if you need less then a full server then running on a cloud-providor can result in savings. Once you hit a certain point however, moving your baseline load to privately owned servers is beneficial, only using cloud-providor for peaking-load.
This also has the side effect of helping you stay more vendor neutral, allowing you to put that load on whoever's the cheapest at the time. This has been the case since before "cloud" became a buzzword for "someone else's servers."
Rust for Linux maintainer steps down in frustration with 'nontechnical nonsense'
Wednesday 4th September 2024 16:31 GMT
Re: Microkernel
Actually, with a sufficiently well designed IPC system, you don't even need hand-coded assembly. Just take a look at what some of the L4 kernels accomplish.
Now, you have to be willing to unshackle yourself from the overheads of the Linux API / ABI. Of course, you can always run the Linux kernel as a usermode process, but trying to build a microkernel that is fully Linux compatible is a fool's errand. I mean, almost all of what Linux provides would have to be provided by user-mode daemons anyway.
AMD reverses course: Ryzen 3000 CPUs will get SinkClose patch after all
Google is a monopoly. The fix isn't obvious
Thursday 15th August 2024 16:02 GMT
"That still leaves one company with a monopoly on Google Search and one company with a monopoly on those paid search ads."
I think it's slightly worse then that, let's say you do break search and ads, how does search make money at that point? Right now search is given away to drive the advertising behemoth, and the same can be said for much of Big G.
I can see splitting off Android, Fi, maybe YouTube (I think they are independently profitable on their own ads now), but the rest? I don't see how it works.
Intel, already adrift, now Armless too
Palo Alto Networks execs apologize for 'hostesses' dressed as lamps at Black Hat booth
404 Boss not found — Bye bye ICANN CEO Chehade
Saturday 23rd May 2015 06:21 GMT
Re: Up vote
Generally when something can't be found in DNS, the reply is NXDOMAIN.
Unfortunately many ISP have started hijacking this useful response (along with the useful 404).
£280k Kickstarter camera trigger campaign crashes and burns
Thursday 21st May 2015 19:24 GMT
Re: Risk?
KSes do not guarantee the project will accomplish it's goals, only that the backers will get their rewards. This becomes an issue when the reward is a copy of the product (the goal). The original intent was cases like the Reading Rainbow kickstarter, where almost all the rewards where things like tee-shirts and mugs, the funding goals where to get a reading-show produced and in the hands of children.
Robocalling Americans? That'll cost you $1.7m
Feds: Bloke 'HACKED PLANE controls' – from his PASSENGER seat
Lightbulbs of the future will come with wireless extenders and speakers
Don't look now: Fujitsu ships new mobe with EYEBALL-scanning security
Infosec bods demo GPU keylogger. Don't tell the NS... oh, wait
Swedish Supreme Court keeps AssangeTM in Little Ecuador
Massive police 'heavy equipment' robot drags out suspect who hid inside television
Extreme community policing: West Virginia crook pepper-sprays HIMSELF mid-robbery
Smart grid security WORSE than we thought
Oculus Rift VR bucket will be seen on noggins near you in 2016
Zuck'ed up: Facebook opens up free internet in India – but bans HTTPS
Bruce Schneier's Data and Goliath – solution or part of the problem?
Monday 4th May 2015 18:57 GMT
"Both justifications prevent Google and Facebook from exploring new, imaginative and mutually useful (to customer and provider) ways of doing business. Ways that don’t require data collection and hoarding."
I'm not sure this is a solid argument to Google that they shouldn't horde. While I can imagine many businesses that don't require hording, it's only VARY few that the hording actually precludes.
So, as the meme driven kids today say: "Why not both?"
(note: I'm not really suggesting that I want google to track everyone. Just that this argument is not something that they are going to find compelling)
Amazon boss Bezos' Blue Origins declares test flight 'flawless' ... if you overlook one snafu
What is Apple's idiot tax on Watch these days? 'About $265 or 80%'
ICANN's bill for clawing global DNS from Uncle Sam: $7m and counting
Who thinks Microsoft Edge sucks? Erm, Microsoft
Friday 1st May 2015 15:31 GMT
Re: Hatters Will Hate!
Pretty sure the part that sucks is them buying a bunch of "edgesucks.com" type domains (considering that's what the story was talking about). elReg doesn't just report on MS doing that, there have been numerous articles in the past about companies doing that.
But you want someone to identify something that sucks about it, fine: when you go to type in the address bar, you can't tell how it's going to respond. You can single, double, or triple click it never highlights. Sometimes backspace deletes the entire text, sometimes it it backspaces a single character, and it never gives any indicator as to what it's going to do.
Feel better?
Biting the hand that feeds IT
