Posts by Chris Gray 1

Optional

Hmm. My Dell 2000 from 2013 seems to be too old to be vulnerable. F2 brings up something quite different from what the info on the Dell site says. Oh well, due to paranoia, I never have networking on while it is booting. At least, the cable isn't plugged in, and I very rarely use it with Wifi (it's a foot from the router), so that's turned off at the Ubuntu Mate level. It still has Windows 8.1 on it, which I haven't deliberately booted for a couple of years, and which I never let onto the internet. Paranoid? Me? Dang Windows rewrites the boot order stuff on every boot, whereas Linux only does it on an install, so I have to be quick with the F-key that changes boot order...

Geeks too!

Well, the home might not contain a lot of stuff that is of normal value to burglars, but instead contain a bunch of geek gadgets. A friend of mine likes this type of thing (can't remember if he actually bought electronic locks or not), and has bought lots of tools and gizmos. I don't think his place has much in the way of normal expensive stuff like fancy stereos, jewelry, keys to fancy cars, etc. Actually I don't think it has *ANY* of that sort of thing....

And yes, I do realize he is in a small minority of buyers for this sort of thing.

Poor Code!

Note the "if <condition> = true". Sigh.

Good on 'em

I for one will continue to support Mozilla and Firefox in this.

The web, as Google sees it, is intended to be unsafe (from the user's point of view) and to provide Google with the maximum access to user information and the user's hardware. That's how they make most of their money, after all.

description, please

I know El Reg had at least one article about openRAN before, but this is an entire article about it that provides no definition of what it is. Not even what the acronymic name is short for.

It took me a couple minutes on Wikipedia to learn that "RAN" is Radio Access Network.

And then:

OpenRAN — enabling open ecosystem of GPP-based RAN solutions, chaired by Andrew Dunkin (Vodafone) and Adnan Boustany (Intel).

GPP: well, 3GPP is 3rd Generation Partnership Program - relating to LTE.......

IDE's

What they should now spend a bunch of effort on is putting their detection technology into as many IDE's as possible. That way, the possible problems are reported to developers, who can then implement a *proper* fix. Heck, I expect you can put it into compilers. Add it to "javac", "gcc", "lcc", etc. as a warning.

Warning: in some situations, loop will never exit.

Not a chance

Ok, that makes it not a chance that I will use Chrome anywhere - desktop or mobile. Especially mobile. The data limit on my mobile plan is very small (300 MB) - I don't want *any* video playing, ever, unless I'm on WiFi. And, I don't have WiFi on unless I'm safely at home and can connect to my home router.

I make an exception for El Reg's blocky bouncing vulture - that's been cached for ages.

in the news

Combining recent articles....

I wanna know what happens if you drop Tsar Bomba in the middle of a big hurricane. We demand proper research!

Would love It

I have one of the original Kindle "Keyboards". Its one of the ones where Amazon provided old low-bandwidth internet access for free. (That might still be active - haven't tried for a while - I just use WiFi to get books.) The device still works as well now as it did when it was new - I've seen no fragility, all the buttons still work fine, battery charge lasts weeks, etc. I use it mostly indoors, but it was fine in direct tropic sun.

I would love a good colour E-Ink device - it would make the book cover images much nicer! Many of the newer E-Ink devices include one or more LED lights that you can turn on to illuminate the screen, so you can read in darkness.

96???

Why do all the numbers up top end in 96? Seems unlikely to be a coincidence.

To my eye, they flip back and forth between that and "%". Seems a poor font choice.

Careful

Well, that's what you get when you do sudden manoevering turns with the main body. Take it easy, or you'll break something, and then *they* will catch up quicker.

tethers?

How long are those ElectroDynamic Tethers? Does the presence of those make it significantly *more* likely that collisions will occur?

Ipify.org via curl

Ah, that's the root cause. I run my toy domain over a dynamic IP address from my provider. There are scripts that determine my actual IP address by querying "ipify.org" using Linux program "curl" (fetches from a single URL). That broke because of a certifcate problem. The logged error told me how to disable the security in "curl", but since my IP address is pretty stable, I chose to sit and wait for a bit. After a couple of days I semi-automatically got an updated certificate bundle from Ubuntu and lo, the problem fixed itself.

Even though I run a couple of services here, I am constitutionally unable to be a proper sysadmin, so its mostly a lot of fingers crossed that nothing breaks! Why am I unable? Poor memory - sysadmin requires a good memory of obscure commands, and of how all sorts of stuff actually works. And yes, I do have a router acting as a firewall, thanks.

It's cheap and easy!

I was fed tea (mostly milk of course) as a young 'un, and have stuck with it. I find coffee too bitter, though I imagine I could get used to it. Tea gives me the caffeine boost that I'm now used to. All you need is a kettle (which will last for years) and a teapot (which will last for decades). Far simpler than some coffee rigs. And, I believe it is a lot cheaper than coffee.

The one downside for me is stained teeth (not nearly as bad as smokers, and I imagine coffee does it too). And perhaps a few more bathroom breaks...

Exercise?

Hmm. Guidance I've seen indicates that one should continue to get exercise, and going out for walks is a good thing, and to be allowed (just like going for groceries). By common sense you don't hug and kiss any friends you happen to meet. Sounds like the rules in Hong Kong are definitely different, if you are not allowed out of your space for any reason. What happens if you are an antisocial computer geek, and don't have anyone to go get groceries for you? If your income is gone (or you were relying on retirement funds which are now worth a whole lot less than they were), you may not be able to afford to pay to have all of your food delivered to your door.

With great power...

(By chance, just watched Into the Spiderverse last night...)

The "Unix model" includes lots of very powerful tools, such as being able to use a shell from within programs. In cases like this, the tool is *too* powerful. Using a full programmable shell for process invocations not much more complex than using vfork()/exec() is overkill, and dangerous, as others have mentioned.

It shouldn't be hard to write a *much* simpler mini-shell, which is intended for such situations. It would take time to wean programmers off of using "bash", etc. but if you give it a few "modes" for the kinds of shell-like things it will do, it shouldn't be hard to handle most cases, and would be far safer. Yes, its slightly more total code to be maintained, but worth it.

Also want more security info

Amused to see a LISP-like syntax for the WebAssembly "source". Well, it is pretty much the simplest form of "source" anyone has come up with. Better than a Forth-like syntax!

I see it supports pointer creation, casting and dereferencing. The created X86 code includes no checking of values. I want to know much much much more about what is going on. Otherwise this is the equivalent of letting J Random Hacker run any C code he wants on my machine without me having any choice. Sure, I do that with the OS and all the other native stuff that's part of the distribution I run, but that isn't coming from a random web page, which, if I don't block JavaScript, can force run stuff in my browser. BBAADD!!

{AOL}

(Me too!)

Wade, add a decent camera (13+ Megapixels) on the back, and I'll take one - you hit my list almost dead on. (Currently on Galaxy S4, still going strong on 3rd battery.)

{AOL}

(Me too! :-) )

I'm on Firefox with NoScript here, similar to many. Since I'm not web-dependent it works fine for me.

Over the holidays I was using my sister's Windows 10 computer with Chrome, and it was shocking. Since she doesn't have users set up, I was seeing ads targeted at her, and they made sense in that context. But sheesh!!!

Minor use here

I've had Brave installed (Linux) for a while, but don't use it much. I use it every now and then to work with a web-mail portal at my ISP that I need to use for an association I'm involved with. Under Firefox/NoScript it just doesn't work.

My main problem is that I've never been able to find out exactly what it does in terms of scripts, etc. It also needs fully updating annoyingly often.

I do agree with the general concept of micropayments, and so am happy to participate in the experiment.

expensive!

Several years ago I bought my Samsung Gear 2 Neo for CDN $250. Smartwatch, does notifications, texts, emails from my phone. Counts steps and will do pulse-rate. Lasts 3 days on a charge. A bit bulky. Talks Bluetooth to the phone, but has no other radios. Why can't someone produce an updated, slimmed-down version of this?

choice?

I've never been involved with Meetup or WeWork...

but, maybe they should offer meet organizers the choice of how to pay for the service. Let the organizer choose how much the repliers pay to join the meet. There should be a minimum cost to the organizer before the meet can be registered. And, once the Meetup income from any cost of repliers exceeds some amount set by Meetup, Meetup no longer charges the organizer. Or, make it graduated - the organizer pays up front, and repliers pay, as chosen by the organizer, first paying down what the organizer paid, then the rest going to Meetup. Everyone should be happy with something like that. Assuming, of course, that it is implemented and described properly.

I've got one too

And I also don't care about $10. I just hope the phone runs forever. For at least the last couple of years, I haven't seen another phone that I would want to have.

I'm quite happy with a 1920x1080 screen - longer than the standard 1080p seems silly. It has good cameras. It has a replaceable battery. It has a headphone jack. It has a microSD card slot inside. And it has no notch. Heck, it even has an IR emitter for messing with TV's, etc.

Updates?

"Check Point claimed the vulns affected billions of devices. While possibly true from a theoretical point of view back in March when discovered, the majority of those will have incorporated the patches, either through routine updates or updates pushed (legitimately) from mobile networks."

Do the numbers show that "the majority" of phones *get* updates?? Lots are out of the support range of the manufacturer or carrier.

simple solution!

Simple solution - use a tool like "NoScript" in your browser to block Javascript, and never allow any scripts from Facebook to run.

In terms of other aspects of browser operability, your mileage may vary.

Easy work-around for many

Saw this a couple days ago on Slashdot. A work-around shown there is to go into about:config and change xpinstall.signatures.required to "false". Apparantly that doesn't work for folks with artificially restricted versions of Firefox (Windows/Mac? - I forget). It worked fine for me on Linux. When a fixed version comes through from Ubuntu, I'll flip it back (not that I'm likely to install any extensions other than "NoScript"!)

Skaith North-hound?

OssianScotland, you fiend, you've put in my head the image of Stark trying to carry a North-hound from Skaith on an escalator....

(Sorry can't find online images, etc. They were giant dogs that one rode on. Author Leigh Brackett.)

Hope they win!

I hope the residents win the lawsuit(s).

Not sure what I would do if the condo board here put in an internet accessible smart lock system. Try to sell and move out, I guess.

Why can't they just put in a system that uses key fobs? The owner gets very similar info about comings and goings, but without the insecurity of the "smart" locks and the requirement for a smartphone. It might cost more - I dunno.