Posts by Allan Dyer

Islands...

And how often do NYC drivers attempt to drive to Bermuda and the Caribbean? Last I heard, they are surrounded by water.

How backward can you get?

'Round here (Hong Kong), coverage in tube (MTR) tunnels and road tunnels has been available for years. SOP is to talk at a volume that renders telecommunications unnecessary. The other effect is to allow phone companies to increase their prices... there is a non-optional monthly "tunnel surcharge", about 20% of my bill, even for a phone that never leaves my office.

Mine's the one with the earplugs.

Beware of door handles...

So, if you can monitor someone's heartbeat, perhaps when they touch something, e.g. a door handle, you can take control of their implants.

On the other hand, wiring the door handle to a high voltage supply is probably a more effective, though less subtle means of attack. And you don't have to wait for your target to hold the handle for 16 heartbeats.

Mine's the one with the insulated gloves...

Outraged!

I'm outraged that M&S could use such an obviously insecure method of confirming identity. The caller could have asked any 7-year-old to answer the questions! They should have asked him to do an RSA signing operation (in his head) using his secret key!

<remove tongue from cheek>

As long as a package arrived, they didn't need the identity, or to confirm the identity. They only needed two questions:

"What's the tracking number on the label?"

"What's missing?"

"We're sending it now, have a nice day."

Ouch!

While a lush growth of cacti might be environmentally friendly, I thought common uses for lawns included games and sunbathing. Only a fakir could enjoy sunbathing on cacti - though it might explain why americans feel it necessary to wear body armour to play football.

Flame icon... well, it's sort-of spiky.

I watched the video but...

all I could see was a stupid fly buzzing round.

Where's a fly-swat icon when you need one?

Someday, somewhere, there'll be a "minor clerical error" when that autopilot is uploaded to a commercial airliner.

Hmm, no sick-bag icon, either.

Not a frequent traveller

"This would have nothing to do with the big fat joints eveyone who's burning incense is smoking then?

I've not once been anywhere where there's been incense that hasn't had someone smoking weed in. And that includes shops."

So you haven't been to Singapore (where the study was conducted), or any other territory (e.g. Hong Kong) where these are frequently used for Taoist, Buddhist and ancestor worshiping practices.

Generally, I close the window when there's a religious festival, and the local shrine gets busy.

Flame - obviously.

Have they offered him chocolate?

http://www.theregister.co.uk/2007/04/17/chocolate_password_survey/

Hey, I wanted to offer the perfect solution from a safe distance too!

@kain preacher

Alexander Graham Bell didn't become an USA citizen until several years after (1882) calling his assistant about an acid spill (1876). Therefore, the Scots are to blame.

No puffin icon?

@Jay Zelos

Yep. Good summary.

I think we're in the "Extinguish" phase, where the confusion caused by M$ wipes out a promising standard they didn't like.

Beating traffic jams

I used to find an ex-ambulance very useful for taking Scouts to camp... the cars getting out of the way didn't see the trailer full of camping gear 'till we were past.

What does the "U" stand for?

"They are convinced it was a UFO. It sounds far-fetched, but they know what they saw."

No, they don't know what they saw, that's why it's unidentified. Doh!

What colour was the Police 'copter...

@Alan Donaly

Unfortunately, this sort of information is quite well-known among the child porn scumbugs, so friends in law enforcement tell me. The scumbags pass around instructions on how to infect their PCs with backdoors, trojans, etc., so they have deniability if they are ever caught.

The forensics guys have to be good to tell the difference, which is what the line, "there was no sign that any user had viewed or attempted to access this content" alludes to.

The two obvious scenarios in this case are, i) someone with a grudge against the victim; and ii) a conspiracy of paedophiles aiming to get more cases like this, so they are less likely to be convicted if they are caught.

@ Andy Worth (and others)

"So she's saying she'd have taken a £90m+ bill seriously if her daughter hadn't been there then?"

No, her daughter is a multi-billionaire, who immediately paid it from loose change in her back pocket.

Business Trumps Nation Pride?

Imagine you're a business startup, choosing a domain name... which character set will be usable by all potential customers around the world? I guess far-sighted businesses will choose ASCII.

I'm typing this on a Chinese keyboard, Ctrl-Shift can switch me through multiple Chinese input methods and Latin quite quickly, but to use Cyrillic I'd have to install a new input method, and then learn how to use it.

Lowest Common Denominator wins.

Re: Just block APNIC on the firewall

What a good idea! Instead of fixing the problem, just take apart the internet.

Any SysAdmin who does that kind of blanket blocking should be prosecuted for a criminal denial of service attack, and gross stupidity. Think about it, there's not even any evidence that the attacks are *originating* in the APNIC, it could be the scumball in the cubical next to you supplementing his income breaking into poorly-protected home user PCs in APNIC to bounce the attacks. Or, from an economic perspective, look at China's GDP growth - think your multinational companies are going to want a piece of that? How will they communicate if idiots like you block them.

I'm physically in Hong Kong, China, but I'd like to think that this inter-thingy is making the world more connected...

@Gordon Fecyk additional statistics

How much spam is for invalid addresses?

Difficult to say, particularly if you want to separate obsolete addresses from "intentionally invalid" addresses (and what about address guessing: sales@, accounts@, info@...). After staff leave, there's a grace period when the messages are redirected to their manager or replacement, then, when there are no more useful messages, the address is made invalid, like any other invalid address. Also, I think the SPF check is happening before the recipient check, so messages from an invalid source AND with an invalid recipient won't be counted as having an invalid recipient.

So, FWIW, the statistic I can give:

Messages rejected for invalid recipient: 3.9% of total messages, during the last 7 days.

Less than I would have expected. Perhaps I've missed some other factor, or spammers are fairly efficient at targeting real addresses.

Who pays the power bill?

The TOMES "power down almost completely".. with "almost" being 13W. I make that about 11,396KWh over the 100 year archive life.

On the other hand, a paper book or CD-ROM powers down to zero Watts. Add a little to copy it to a new medium once every decade.

TOMES will contribute to global warming... a book in a library is a carbon sink.

Confused...

So this guy worked on a movie set, didn't get paid, and is boasting?

@Ian Ferguson

"did the original Zeppelins really mount bombing raids?"

Yes, my dad recalled seeing one over Portsmouth in WWI, nicely illuminated with searchlights. Being 2 or 3 at the time, he found the unusual nighttime excursion and the sight of the shiny cigar thing in the sky as the family fled in terror great fun.

@Chris Williams

"made some significant raids on maritime centres on the East Coast of England during the First World War."

and also the South Coast.

@ Jeroen Braamhaar @AC:: RE: I remember....

Almost all correct. The airport at Hong Kong is Chek Lap Kok, Lantau is the large island it sits next to. But the official name is (rather boringly) the Hong Kong International Airport.

Since the problems during the opening it has worked pretty well, which can't be said for the new cable car from near the airport up to the big Buddha on top of Lantau.

Extra "N"

"According to CNNIC (that second N is a mystery)"... OK Austin, can you tell me the two-letter country code for China?

And Hong Kong has already provided a Chinese Paris Hilton angle... the Edison Chen scandal:

http://articles.yuikee.com.hk/newsletter/2008/02/a.html

He was lucky

Check the medical literature for penile injures caused by vacuum cleaners... some men have discovered very painfully that the distance between the opening and the fan blades is quite short!

Japanese Cybercrime Law

Of course Japan has a cybercrime law, it was covered in a presentation at the AVAR Conference in 2004:

www.aavar.org/2004web/AVAR2004/Presentations/ps013.ppt

It does cover data damage, so why wasn't it applied here? I have three guesses:

1. None of the victims would admit loosing any data because it was all pirated.

2. The wording of the law doesn't cover intermediation by malware... the *victim* chose to run the program.

3. That Police unit doesn't know what it's doing.

More comments:

articles.yuikee.com.hk/newsletter/2008/01/h.html

@Morely Dotes

As an information security specialist based in Hong Kong, I recognise that many people around here communicate with .cn addresses on a regular basis, and "add to DENY Tables on sight" would not be an appropriate response. Also take a look at international trade statistics... a lot of other people, including, perhaps, your customers or employer, need to communicate with China.

Whether or not the Chinese military is hacking, I don't know, they don't tell me. However, broadband usage is growing in China, and millions of new users getting onto the internet means millions of poorly-secured machines to be turned into zombies. A lot of the non-Chinese spam I get comes from Chinese IP addresses. I guess that most of the malicious traffic from Chinese IP addresses is from botnets controlled from elsewhere. I would expect the Chinese military to bounce their attacks through non-Chinese addresses, to conceal the source.

@ andy rock

I've been using that trick for years too. Independent discovery: bloody obvious, looked at whiteboard, thought, "I'll need some solvent to get that off, what's the nearest thing with solvent in it?"