* Posts by waldo kitty

217 posts • joined 1 Dec 2008

Page:

Wave goodbye: DigitalOcean decimates workforce as co-founder reveals lack of profitability, leadership turmoil

waldo kitty
Boffin

Re: Impressed with the service but........

One of my servers was under constant port scanning. I traced the IP back to one of Digital Oceans servers.

we've seen similar here so we instituted an active blocking program whereby any DO IPs that scan are immediately blocked... normal usage connections are allowed but monitored closely for bot activities and banned if found to be botting...

Updated your WordPress plugins lately? Here are 320,000 auth-bypassing reasons why you should

waldo kitty

Re: I love WordPress

failregex = ^<HOST> -.*"(PUT|GET|POST|HEAD|PATCH|DELETE).*\.php([^a-z0-9 ][^ ]*)? HTTP.*"

that looks like the beginnings of a snort or suricata IDS/IPS rule ;)

Remembering Y2K call-outs and the joy of the hourly contractor rate

waldo kitty
Holmes

Re: I was working as a care assistant

it might be hard to do anything useful with the tomatoes if there's no power

Chop up some of the furniture, bonfire out in the back, tomatoes poured into a big pot, and off you go..?

My initial thought was how to open the cans without an electric opener. Like all good scouts, I have a manual opener with me at all times but perhaps this little item was overlooked in the mosh?

Dough! Jobs microsite for UK's data watchdog set hundreds of cookies without visitors' consent

waldo kitty
Black Helicopters

What if...

what if each and every cookie a site wanted to set required individual approving? users would soon stop using those sites and guess what? the site would suffer and soon realize their mistake... or would they?

Mystery database left open turns out to be at heart of a huge Groupon ticket fraud ring

waldo kitty
Facepalm

Re: "people still use this voucher biz – who knew?"

this reminds me of those laughable TV ads for discount sites... the ones where the the people are saying things like "i made $900" and similar... this goes for those credit cards ads that do the same thing touting their "cash back" offers... the folks falling for these come-ons didn't "make" anything... they simply saved it... maybe...

waldo kitty
Boffin

Re: Fake accounts? You sure?

I would love to have a simple way of populating Chrome's password store with fake logins (real login in password manager), as I suspect that some webpage malware has been able to access the password store - given the old passwords that I'm threatened with.

why use malware to access and decrypt some local password storage when one only need to use an "invisible" iframe and embed a ftp link which causes the browser to use the user's configured name and password? that's an old method, though, and it doesn't really work any more with modern browsers... it wasn't quite that easy, either, but it is the gist of the method that i'm conveying without going into too much detail...

remember, there are some very sneak bastards out there in the ethers...

The NetCAT is out of the bag: Intel chipset exploited to sniff SSH passwords as they're typed over the network

waldo kitty
Mushroom

non-trivial to exploit...

yeah, non-trivial to exploit but if you're in this deep, you're in the gold vault anyway... it is just a matter of picking out what you want from all the other gold things that may not be so valuable...

Parliament IT bods' fail sees server's naked OS exposed to world+dog

waldo kitty
Mushroom

Re: Right click - Share C drive as read only...

Been a good few years since I touched IIS but isn't it actually quite fiddly to configure it that poorly? By default it's way more secure?

these days, maybe but back in yesteryear, it was not so stable or secure... it is still as fiddly as hell, though...

IT pro screwed out of unused vacation pay, bonus by HPE after judge rules: The law is a mess but it's still the law

waldo kitty
Boffin

he really needs to appeal this decision... if he can afford it, that is...

waldo kitty
Facepalm

Re: Reciprocity for new hires?

> under the law, White could only get hold of the relevant policies if he turned up, in person, to the company's official human resources headquarters – which is on the other side of America in California, roughly 2,500 miles away.

So if you can only get hold of your contract by physically going to CA,

read that again, please... i've bolded the key words...

hint: "relevant policies" are not "the contract" ;)

Who left a database of emails, credit cards, plain-text passwords, and more open to the web this week? Tech Data, come on down!

waldo kitty
Holmes

almost gotta wonder if they've done or are doing any forensics to find out if anyone outside has accessed the system(s) and if they've pulled data off... another question is how long was the system(s) open in this manner... when and why...

I'll just clear down the database before break. What's the worst that could happen? It's a trial

waldo kitty
Alien

don't you just look at the hostname at the top of the ssh window and use that, which will be the target machine you're typing the command on?

does it still do that when you're daisy-chained ssh'd into a machine through an/several other(s)?

Japan on track to start testing Alfa-X, fastest train in the world with top speed of 400kph

waldo kitty
Holmes

Re: Well....

And we are told that we are "advanced" economies.

Economy is one thing... Infrastructure and technology are two other and different things...

Strong-willed field support op holds it together during painful customer call

waldo kitty
Boffin

Re: At Gene Cash...

Scratch monkeys ?

this reply is highly underrated... i'd like to +1 it numerous more times! ;)

Woman calls cops on shadowy baddie barricaded in bathroom... to discover: Roomba gone rogue

waldo kitty
Holmes

Re: All your bathrooms are belong to us!

"I would also love to know how it locked the door."

our interior doors have push button locks... actually, the whole knob pushes in... it is very easy to accidentally lock a door by pushing it all the way open with nothing behind it to prevent it from hitting the wall and pushing the knob in...

unlocking these is pretty easy from outside the locked room... there's a hole in the other knob and you simply poke an ice pick or clothes hanger through the hole to push the other knob out of the lock position...

this is the same type hole that you have to put a flat piece into, find the lock slot, and turn to unlock on doors with twisting lock buttons... it is just easier to unlock these push-to-lock knobs since you only have to push straight in instead of locating the slot and turning...

when toddlers were running around opening and closing all the doors, it was easy for them to get locked into a room...

Crash, bang, wallop: What a power-down. But what hit the kill switch?

waldo kitty
Paris Hilton

"Two words: Molly Guard"

It has gotta make one wonder what Molly did to get a switch cover named after her.

Bad news for WannaCry slayer Marcus Hutchins: Judge rules being young, hungover, and in a strange land doesn't obviate evidence

waldo kitty
Facepalm

Re: No Good Deed Goes Unpunished

"Stopping a computer virus you helped unleash isn't exactly a good deed."

ummm... apparently you are not familiar with the case... marcus didn't help unleash WannaCry... he stopped it...

Are you sure your disc drive has stopped rotating, or are you just ignoring the messages?

waldo kitty
Paris Hilton

Re: I can believe it!

"Let me ask the stupid question... if you aren't allowed near the printer, or don't know where it is, how do you collect the output?"

Have you ever seen one of the mail room folks coming around with their little cart delivering the mail? They deliver more than just the postal mail. This is also why there are banner and closing pages on print jobs. The banner page states who the print job belongs to and where they are located. The closing page indicates the end of that job. Someone, maybe the mail room personnel, collects the print jobs from the printers and delivers them to the originator of the job when they bring the rest of the "mail".

TLDR; You don't collect the job from the printer. It is delivered to you.

Begone, Demon Internet: Vodafone to shutter old-school pioneer ISP

waldo kitty
Boffin

Re: Modem ISP

That depends on what you call an 'ISP'... There are still BBSes around with POTS dial-up offerings. Depending on their setup, you might get email on the BBS or they may offer PPP...

Still a sysop, 30+ years...

VMware 'pressured' hotel to shut down tech event close to VMworld, IGEL sues resort giant

waldo kitty
Holmes

Though lots of complaints about CDW who designed the platform for us . . .

CDW? as in Computer Discount Warehouse?

Code of conduct claims new Texas Instruments CEO after just six weeks

waldo kitty
Facepalm

Just now finding out?

Wait... Crutcher has been there for 22 years and they're just now finding out that his personal behavior doesn't conform to the company's code of conduct? Who else is sleeping at the wheel over there?

Sysadmin shut down server, it went ‘Clunk!’ but the app kept running

waldo kitty
Facepalm

Re: Halted machine on other side of the planet

I typed shutdown -h on a system to bring up the help. Except it didn't bring up the help :-)

yeah, that should have been "--help" instead of that old DOSism "-h" :lol:

'Uncarrier' T-Mobile US to un-carry $40m for bumpkin blower bunkum

waldo kitty
Boffin

Ringing has never been synced

The ringing has never been synchronized. Much too much trouble. Why would anyone ever get the idea they were synced is beyond me.

Google asked to take down 2.4 MEEELLION URLs under EU law

waldo kitty
Facepalm

this is just funny!

"After re-reviewing the original document he submitted as proof of his innocence in the benefits case, we discovered that it was a forgery," the biz said.

Elon Musk's Tesla burns $675.3m in largest ever quarterly loss

waldo kitty
Boffin

"In all honestly, he was aiming for AT LEAST Mars. They burned the upper stage to depletion regardless of target."

go here and have a play... the green orbit is the Roadster... take the simulation with a grain of salt as it is done with the currently available numbers which will change over time...

sorry for the long url...

http://orbitsimulator.com/gravitySimulatorCloud/yr/gsim2018.html?sv,1,2018-017A,2458157.50,-111460718436.256134,96755918467.335342,-75465634.877971,-22692.886039,-25294.933534,-722.153515,0,0,00FF00,90,65,,16000,0,12,1,0,

here it is shortened...

https://tinyurl.com/yabgew5v

ASA tells Poundland and its teabagging elf: Enough with the smutty social ninja sh*t

waldo kitty
Angel

I'm trying to figure out how Twinings determined it was their tea bag. It looks like a Lipton bag to me but it could be any number of tea bags.

Intel's super-secret Management Engine firmware now glimpsed, fingered via USB

waldo kitty
Boffin

Re: Claim: all IPv6 addresses are *PUBLIC*

NAT in the IPv4 world was a "good enough" solution to that problem. Not because it expanded the address space, but instead because it (incidentally) hid users end devices from external things being able to reach them. That seems to be what Bombastic Bob is talking about.

this! i wish i could give you more thumbs-ups but...

The cheek of it! Beach bar owner shoots nude bather in the booty

waldo kitty
Facepalm

Re: Low jeans

It has been around a longer than that and supposedly originated in prisons and jails as a way for those wearing such to advertise their availability to others...

waldo kitty
Trollface

Re: Could have been worse

I fail to understand why people pick on Norfolk...especially as Suffolk is so nearby.

There is the same problem in Virginia, USA :lol:

Creepy backdoor found in NetSarang server management software

waldo kitty
Boffin

What is a DLL? Sounds like a really secure way to build an OS.

well, you have a choice...

1. use a shared file of routines and functions to keep programs smaller by compiling dynamic.

2. make every program larger by including what could be shared code into all of them and compile everything static.

WannaCry-slayer Marcus Hutchins 'built Kronos banking trojan' – FBI

waldo kitty
Holmes

In America you apparently only have to glance at the person committing a crime to be generously provided with the same kind of jail sentence.

if you know what they are doing and you don't report it, you can be considered an accessory...

I don't recall what the fucked up legislation is called, but it's apparently there to fill all the privately owned bank accounts prisons.

the term you are looking for is "accessory after the fact" and it requires that you know that "the act" was illegal and you didn't report it...

there is also "accessory before the fact" which means that you knew about the act to be committed and you didn't report it... this one may also carry additional conspiracy charges if you participated...

waldo kitty
Holmes

Re: "I've read the indictment"

"it seems they may have thought that the accounts malwarertech (probably the bad guy) and malwarertechblog (the good guy) were the same, somehow."

ummm... they are... MalwareTech is a GoodGuy<tm> and MalwareTechBlog is his twitter account for his blog... same guy, two different twitter accounts... depending on what you want in your feed, you follow one or the other or both...

waldo kitty
Holmes

Re: Also Wannacry?

"Given how clueless US agencies are [...]"

ummm... remember, all this so-called evidence is given to a/the Grand Jury... they are the ones that say "yay or nay" on these things... these folks are common every day john and jane does who likely don't have the first clue about these things to start with... just talk with some random on the street and see what kind of answers you get for the most common computer, internet and security related topics... clueless? yeah, to say the least... the GJ is definitely not a jury of peers... if this case goes to trial, it is highly doubtful that the court will even be able to find any true peers, peers that fully know and understand the aspects of so-called hacking and computer/internet security...

WannaCry kill-switch hero Marcus Hutchins collared by FBI on way home from DEF CON

waldo kitty
Holmes

So, who really stole MalwareTech's wallet in Vegas?

he slept in the lobby because his phone was dead and his wallet had been stolen... while he slept, someone was kind enough to charge his phone for him... he took the phone with a 5% charge and called Uber to take him back to where he was staying... gotta wonder, now, who really stole his wallet... he'd been in Vegas for over a week driving high end rental cars, visiting shooting ranges, and doing other touristy things... if the FBI knew who he was, they could have nabbed him at any time before he was heading home... the whole thing reeks of shite...

waldo kitty
Facepalm

Brits and their damned extra "u" (was: Re: Stay CLEAR of the USA)

"Is that a revolution to change the spelling of "colour" back to being correct?"

i don't know about you but over here we pronounce the word as "col or" or "col er"... not "col our" or "col hour" ;)

i won't mention the "colour" spelling being flagged as misspelled B)

Raspberry Pi sours thanks to mining malware

waldo kitty
Boffin

Re: Captain Bodge-tastic speaking

I've no idea how they are found so quickly.

They were likely MIRAI or a variant of it. They're running rampant all over the 'net looking for IoT devices to conscript into their botnet. They specifically target the telnet and ssh ports along with a few others.

2009 IBM: Teleworking will save the WORLD! 2017 IBM: Get back to the office or else

waldo kitty
Boffin

Re: You answered your own question

have one for the Dr. Who reference :)

Zuck quits anti-social Hawaiian land title lawsuit

waldo kitty
Boffin

Re: Of couse, the "sacred Hawaiian land" claims are bogus

And, by say, any civilised standards, you are a 100% certified asshole.

please don't insult real assholes by lumping wannabes in with them.

Chevy Bolt electric car came alive, reversed into my workbench, says stunned bloke

waldo kitty
Facepalm

Re: Odd belief

Now, the fact that the rather sane habit of not using the handbrake

i haven't seen a Bolt but who said it was a "handbrake"?? the term used is "parking brake"...

my last four vehicles have all had parking brakes that are operated by foot... push down with your foot to set and push down with your foot to release... others of my vehicles have had parking brakes that you push with your foot to set and then pull or twist a handle to release them...in fact, AFAICR, the only vehicle that i have owned that had a so-called "handbrake" is the 1979 Toyota Celica that is sitting out under the shelter awaiting rebuilding...

Drone company fails to take off, tells pre-orderers: You can have your $34m back

waldo kitty
Paris Hilton

seems to me they had the implementation... the article states "Lily Robotics said it was winding the company down because it simply hadn't managed to secure the necessary financing to manufacture its first units"... certainly sounds like it was manufacturing, not implementation, where the failure came in...

Pirates, pirates, whatchu gonna do? Advertisers cop a visit from PIPCU

waldo kitty
Facepalm

Re: Get them to stop advertising with spammers

haven't you learned yet that those are confirmation links? they're not opt-out links... clicking them confirms your email as active and ready to be sold to others...

What do you call a firm that leaves customer financials unencrypted on a hard drive? RSA

waldo kitty
Boffin

Re: C level

And in this case 'c' would stand for.....?

CEO, CTO, CFO, etc...

Uh-oh. LG to use AI to push home appliances to 'another dimension'

waldo kitty
Facepalm

also ask them have they figured out how to properly handle animal poo on the floors and carpets where they are cleaning... for one thing, they shouldn't spread it all over the area...

Barcodes stamped on breast implants and medical equipment

waldo kitty
Facepalm

Re: Three points

i gotta ask...

if the staff can't find their proverbial with their two hands, how they going to find a body part?

their proverbial isn't a body part? ;)

Kingpin in $1m global bank malware ring gets five years in chokey

waldo kitty
Facepalm

Re: Use a compromised proxy you dickhead

please don't insult the real dickheads of the world... this one is just barely a wannabe...

Ham-fisted: Chap's radio app killed remotely after posting bad review

waldo kitty
Angel

Re: no way to get away with it anyway

nope... i didn't forget... they watch some of the same feeds that i watch ;)

waldo kitty
Pirate

no way to get away with it anyway

i watched this unfolding in real time and then archived at the Internet Archive... the IA especially made sure to archive the forum topic so that it wouldn't disappear like was attempted when the topic was deleted and the blacklist stuff was also cleared... that was last week... how did it take the Reg so long to glomb onto the situation?

Oi! Linux users! Want some really insecure closed-source software?

waldo kitty
Linux

Gotta wonder...

What's this "flashplugin-installer" package that gets regular updates and downloads the new flash binaries from adobe for installation?? someone's missing something somewhere...

sudo aptitude install flashplugin-installer

OR (if the download site is overloaded and the initial update fails)

sudo aptitude reinstall flashplugin-installer

Not OK Google: Tree-loving family turns down Page and pals' $7m

waldo kitty
Facepalm

Re: Condemn?

the land isn't idle... there are renters living in the house, for one thing...

Hardware Labs sees off Nvidia trademark sueball-smasher in court

waldo kitty
Black Helicopters

Re: GTX and GTS

Possibly. But that logic didn't stop Sky sueing Microsoft over Skype in a trademark dispute.

did Sky sue Skype before m$ bought them out?

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020