Posts by Tom 38

Surely, as IT pros, our first tweet from beyond the grave should be something like:

"Finally got the routing right! w00t! You have no idea how tricky IP over Angel Radio is, makes IPv6 seem like childs play!"

or perhaps

"You thought BT was bad? Took me !!6 MONTHS!! to get ADSL in Hell! And it's run by Verizon :("

I find amusing that no one here is asking why systemd-resolved was introduced, or what problem was it intended to solve, read this post:

To paraphrase for anyone not wanting to read it: "DNS is probably too complex for you to manage, so we're adding an extra caching resolver to every machine, which simplifies certain desktop configurations".

If I'm going to be treated like a child, I expect milk and cookies at 3pm, and then a nap.

@Powernumpty

That's not even taking in to account the ridiculously slow speed of windows update downloads. I installed Windows 7 for a friend the other day, it took over 3 hours to format, install OS and install updates - a good hour of that was downloading 600MB of updates, and that's with gigabit fibre internet.

I suppose you don't get what you pay for...

Re: Why am I not surprised to see sudo there?

"Why can't you just give the permissions you need to the relevant user? "

And because "giving the permissions you need to the relevant user" is exactly what sudo does. How else would you suggest doing it?

I think you are arguing against yourself here - running with the least possible permissions is the opposite of what sudo does. Say you want to run a program to write a CD, and your user does not have access to the CD device. You could run the program with sudo, in which case it can access the DVD device, but also everything else.

Alternatively, you could create a group for CD access, change the group on the device and make it group writable, and add your user to the group. You can then run the program without sudo, and the only thing you can access is the CD device.

Re: Optional

Can you not have virtual monitors in windows yet? IE partitioning a single physical screen into multiple logical display screens.

Re: Hi Andrew

If you don't stick it to the man, you end up being the man. No-one wants to be the man, everyone else will just stick it to you. And then you will be stuck.

Re: Minority Partner Policies

5p carrier bag tax was the best thing to come out of Government in 2010-2015. We all knew we should be reusing bags, but it took a tiny tax to make us change our ways.

Re: Yes, well

Not to defend Amazon or that, but they dont sell below cost which is really the case here. Amazon can sell cheaper because they dont have store fronts and everything is in one giant warehouse

Amazon sell all of their hardware and some ebooks below cost. Mainly popular ebooks, so that you choose a Kindle over another e-reader.

I'm totally fine with taking Uber rides at the moment. Their VC backers are subsidizing my fare, excellent. When they stop doing that, I'll go back to taking the night bus.

Re: 35,000 per year! Sounds like a full on war...

In my experience, drink driving is ridiculously tolerated in the US, whilst it has been almost eradicated in the UK. In Georgia, for instance, your first DUI has a 90 day license suspension - compare to the UK, minimum 1 year ban.

Re: Atlassian a mixed bag

Every morning I go to check the status of my reviews in Fisheye, and forget that before reloading the page I need to view, I have to open the Fisheye homepage so that it logs me in.

Unsurprisingly, they have an SSO system for logging in to their different sites, but for some reason Fisheye doesn't track what resource you were trying to access and just dumps you on the frontpage.

I have to fix bugs like that on my system, but apparently they don't...

JIRA is good, but some of the other stuff is very meh. I guess it is a rush to ensure that they can tick all the checkboxes as a suite, and that the shittier offerings will improve over time.

Re: What's all this then?

Install Tor Browser

Follow links

Re: it's a crime to let somebody die if you could have prevented their demise.

Even without a specific suicide law prohibiting it, this would fall squarely under Reckless Endangerment/Culpable Negligence: "conduct that is wrong and reckless or wanton, likely to produce death or grievous bodily harm to another person"

Like what? If we're running an remotely accessible service on a VM, its because something remote needs to access it. Remote as in "another device on this network", not as in "any internet accessible device".

Eg, on our web worker VMs there is just one remotely accessible service, sshd. On our DB servers, sshd and mysqld/postgres. Externally, the only ways to interact with our web cluster is via HTTP, first via Akamai and ELB, then to a trivial interface server, which turns requests in to messages that are then received by the web workers, processed in to responses and returned to the interface server, which returns them to the web client.

A malicious user could (theoretically) attack ELB or our interface server, but if they can cause a programming error in *our* code, it is extremely difficult to turn that in to an exploitable error, as there is no return channel connected to the malicious user.

Re: IHTFP

Permanent marker on whiteboards: write over it with non permanent marker, rub both off with wiper.

Re: Not as bad as it appears

Irrelevant. The US never ratified the treaty. Trump is simply saying he never will.

So why did he pick, to the day, the first day that he could cancel it under the agreement?

He's too new, you need 100+ posts* to use HTML, and he's got 4.

* Numbers pulled from nowhere

Re: Much like my pension, which I'll likely never get.

The country as a whole needs to take pension funding more seriously, for starters they should NEVER be allowed to run in deficit.

It's not that simple though. The deficit of a pension fund is the difference between their assets and their potential exposure, but the potential exposure doesn't only depend on the number of subscribers, but also on the current annuity rates. During times of low growth, like now, interest rates are very low and consequently annuities cost significantly more than they would at other points in time. Put another way, the only thing keeping BT's fund in deficit is that interest rates are historically low.

So, do we need to fund our pension funds to be larger than their maximal potential exposure (like now)? Will everyone enrolled in that scheme retire during this low interest rate period, or will their annuities be bought when much cheaper?

Requiring all pension funds to never be in deficit would require that pension funds would have to be much much larger, in order to account for these low interest periods, whilst still providing the same benefits.

This inevitably means that pensions will cost more, but who should pay this? If it is the employee who is still working that is paying in extra to reduce the benefit, this is massively unfair. They are paying because the previous pool of employees, despite intentions, failed to put aside enough money to fund their desired pension benefits.

Re: Skinnytroopers

Skinny by 1990's standards would to be fair probably have been considered practically morbidly obese in ...

Blahblah. 110lbs is less than 50kg, or 7st 12lb, BMI* of 15 or "very severely underweight". I know you only ate coal and lived in a shoebox in the 70s, and kids today don't know how good they got it, but no storm trooper was 110lb.

* Oh god, I mentioned BMI. Any chance of avoiding the 70 replies saying how BMI is meaningless and just wrong for you and agree that a BMI of 15 is inconceivably low for a storm trooper. I'm sure your BMI of 30 is all muscle and that you are very tall, you don't need to explain.

Re: Great analysis - thanks

Because you are running custom software that's incredibly picky about OS versions[1] and patches? Because you don't have anyone that knows about WSUS or SCCM? Becuase your CxO doesn't give you any budget for anything other than getting their team the latest and greatest and certainly not for wasting time fiddling about with servers?

All of those are valid explanations why an individual techie working at an afflicted organization might not have applied the fix that would have prevented this.

None of them are valid explanations as to why an organization allows their technology to be so poorly maintained. None of them explain why CTOs across the country are not getting canned for failing to ensure business continuity.

I've no problem with people getting paid big money for CxO roles, but together with the money comes the responsibility; if you are the CTO of a hospital trust, and your policies on patching desktops led to surgeries getting cancelled, you should be cancelled.

Re: Guys - we've covered this before

Bet you also think the ladies don't fart or look at porn..

Don't get a OnePlus 3T!

Well, you can if you want, its just that they are currently discounting and selling off 3T stock in preparation for OnePlus 5 arriving soon, damn soon.

Having said that, you can almost buy two OnePlus 3Ts for the price of this Samsung, it's just pissing money away.

Re: Really?

Hover hoovers suck though

Re: Streams is showing real patient benefits.

"the company has no obligation whatsoever" - apart from the law, the contract they signed, etc etc..

So, this article is about them not following their contract. They were supposed to use the data to train and discard it. They are now running a service using that data.

Ignore whether it is a good or a bad thing; evidently they are not following their contract now so what happens in the future?

Re: infuriated those people who know a thing or six about encryption

If he had said "I accidentally found a kill switch but I will wait few weeks to provide details" we could accept this as part of responsible disclosure, and it would have given the rest of the world a week to plug the holes

So now we are expected to maintain responsible disclosure for malware now? What, in your mind, is the acceptable amount of time to wait before deciding that ivan@shadowbrokers just isn't going to respond and push out a fixed version of the malware before we disclose it?

Any semantic algorithmic flaw like this in malware should be discussed widely and openly, because either the code may be reused in other malware, or might be written from scratch with the same semantic flaw.

The only flaw that needs to be plugged is the one in Windows; MS released the patch in March, the vulnerability was disclosed in April, and now in May people who don't patch their systems are crying.