Posts by TrevorH

>> but explained that it was impossible in 2012 to provide access to users' conversations

In 2012. Doesn't say it's _still_ impossible.

1.8 is also affected but out of support so there is no upstream fix.

mariadb is affected too

Don't assume that mariadb is immune - it was a fork of mysql and at least some of the vulnerabilities discovered here are also present. Mariadb also helpfully reads $datadir/my.cnf so you can do something similar with it too.

Why did I read "the draft Communications Data Bill" as "the daft Communications Data Bill" ...

CentOS 7.2 "any day soon"

CentOS 7.2 has been out for more than a month.

The guys behind Arco Noae are longtime collaborators with the people who previously produced Ecomstation and wrote much of the code that shipped with ecs. I doubt if they'll price themselves out of the market so it's likely to be affordable when it comes out.

Clive unpacked his new HD projector from Ebay

Hmmmm

Magnetic lid and spinning rust... good combination.

Lenovo are not the only ones apparently

http://www.securityfocus.com/archive/1/536181/30/0/threaded mentions HP and if two of the major vendors are at it then I'd not be that surprised to find more of them at it too.

"therefore how much TLS a particular tool or project needs."

I'm pretty sure you meant TLC

Your price for the 512GB SM951 is about £100 too high, it's currently available from a well known UK etailer for a shade over £235 + delivery.

Or perhaps they've seen the failure figures for both companies drives and want to retain one company that makes stuff that works.

Bug introduced on June 11th

This is a fix for a bug that only entered the codebase on June 11th and was spotted on the 24th. I suspect almost no distros have backported or shipped such new openssl releases - oh, except Fedora which handily backported the buggy code :-( For those of us running CentOS/RHEL or probably any other LTS distro, the bug never even made it to the code...

device owner gives 4 out of 10

So I bought one of these and by the time you factor in VAT and customs fees it works out at pretty nearly £200. Not cheap. And for that you get a nice looking bit of hardware that attaches to a 20p plastic backplate that's screwed onto the wall with 4 screws. The screws are a decent length and won't come out in a hurry but the backplate looks like it'll just tear off round them. The bell then fits onto the backplate with 4 tiny little plastic lugs that a child could rip off. In addition their special 'security' screws are standard size 5 torx fittings so really would only deter a passing thief who couldn't be bothered to go home and get his torx set out. Oh, and every time you screw those torx screws in, they eat a bit more of the bottom two plastic lugs on the flimsy backplate.

As for the device itself: it can't handle being set up on one wireless network while being configured from a device on another! It just bombs out and leaves the device half setup. And to reset it and set it up again, you have to remove it from the wall so that you can press the setup button on the back. Same goes for recharging the battery, device has to be removed from the flakey looking backplate which looks like it'll only stand a few removal/install cycles before it gives up the ghost entirely. Then there's the device functionality itself...

The videos it takes are full of blocking and static, the audio in both directions is appalling and barely recognisable, motion detection eats 12% of the battery per day so the claimed one year battery lifetime is really a week unless you disable the motion detection. Which is probably a good thing anyway since it goes off about every 30 seconds even with the range setting set to 5 feet.

Then when someone does come to call and rings the bell, it takes a few seconds to come through to my phone but uses the standard android notification sound, there's no ability to choose a different one nor to set its volume individually. So it bongs quietly and half the time I don't hear it and the rest of the time, by the time I've swiped my phone screen to get the unlock screen and entered my pass code then pulled down the notification area from the top and selected the ring app and hit 'accept' 5 times because it doesn't detect when you click on it, the caller has given up and gone away.

The latest android app update has now added a big advert at the bottom of the screen for their cloud storage solution. This takes up about 20% of my phone screen and cannot be removed except by signing up for cloud storage. Thanks but no thanks. No bug fixes in this upgrade, just 20% less useful information.

Can you tell how impressed I am with this? Great idea ruined.

>> Roku has no skin in the game when it comes to content.

So exactly how much of Roku is owned by Sky these days?

Wouldn't it be cheaper and more or less as reliable just to flip a coin?

It's KW

It is of course 3KW and 7KW not 3W and 78W. I think even a tiny electric car might take a few days to charge at 3W...

Even the fix is flawed... CVE-2014-7169

"So even if Mt Gox has lost 6% of all its Bitcoins, it's still massively more solvent than any bank"

Err, no, it lost 6% of *all* Bitcoins. Not 6% of "its Bitcoins".

VPL or VLP

Surely a VPL is a Visible Pantie Line not a Very Phone Large. Perhaps you meant a VLP?

Sputnik 2 owner

I have one of the older Sputnik 2 models, though mine came from the Dell Outlet with Windows 8 on it. The hardware is identical to the developer edition that Dell ship however. I've got no complaints (well only one and that's that they used the cheapest touchpad that money can buy). It installed and runs CentOS 6.4 with no problems at all and everything on it works perfectly. Battery lasts a good 6 hours or more and I'd imagine that'd be the biggest improvement with the newer one.

And it's an ultrabook hence the cost of the thing. It's not a bottom-feeding 5lb laptop, it's a MacAir-alike. I give mine an 8 out of 10 so it's really nice to see Dell still improving the model.

2) fire Elop

Naming a product after a fictional glop made out of ground up human bodies sounds a little silly.

It's £399

Within 3 hours of the announcement I had SPAM in my inbox trying to sell me one for £399.

No mention of call quality

All the other online reviews that I've read say it's great as a computer and crap as a phone with most comparing call quality to a dalek. No mention of using this as a phone!

You can't trust version numbers

You report that the site is running RHEL with apache 2.2.3 and php 5.3.3 and say that both should be upgraded but RHEL does not use standard version numbering so 2.2.3 could already be the latest apache version on RHEL5 with all known security bugs fixed. Likewise for php 5.3.3, if they're running the RH supplied php53 packages then they could already be patched to date.

https://access.redhat.com/security/updates/backporting/

Never trust a version number.

Wait...

But the bits that are missing from Thunderbird are the same bits that have always been missing: no calendaring and scheduling facilities. And, yes, I do know about Lightning but that's a very poor relation to the sort of thing that's in (shudder) Outlook. To get widespread adoption of Thunderbird as a fully fledged replacement for anything that's useful in an office environment needs this sort of stuff to be included.

The entire open source calendaring landscape is mostly bare and what little there is doesn't work properly. Not just clients but servers too. It one area where there's nothing to touch the proprietary systems.

Release notes URL wrong

http://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/6/html/6.3_Release_Notes/index.html

http://www.acronis.com/pr/2010/11/24-13-53.html

Your pic of the Sony Z5 brings back memories - one of the nicest phones I ever had (and the first too). I regretted changing it for years and I still have a soft spot for it now. I think it's probably still the smallest phone I've ever seen.

identical connectors on the top edge

Errr, wouldn't that be because it's a PCIe card?

All that effort for so little reward

He went to all that risk for roughly 9k a year? You sure his name wasn't kermit?

Bada Bing

So... is the search engine on it by Microsoft thus giving us Bada Bing?

Sorry, someone had to do it...

Ugly ugly ugly

That has to be the ugliest laptop that I have ever seen.

Yes but where is RHEL6!

RHEL6: Only a year late and not even in beta yet!