* Posts by Mookster

132 publicly visible posts • joined 4 Oct 2009

Page:

New solvent might end winter charging blues for EV owners

Mookster
Joke

don't go to France...turd

don't go to France...turd

https://translate.google.com/?sl=fr&tl=en&text=%C3%A9tron&op=translate

Your password hygiene remains atrocious, says NordPass

Mookster

Re: a long, random string that's harder to guess than 123456 – or even UNKNOWN

Shurely, hakkaaPäälle1618

Prepare to be shocked: Employees hate this One Weird Clause

Mookster

Re: Mental

> I had to sign away my rights under the working time directive of the EU

except that you can't actually sign away rights like these. The law still applies, regardless.

GPU makers increasingly disengage from crypto miners

Mookster
Trollface

Re: "more troublesome than real money without any real advantage"

"if that could be done without said government being able to trace it."

because it's not us if every transaction is written on a non-repudiable one time ledger, like a blockchain

Web trust dies in darkness: Hidden Certificate Authorities undermine public crypto infrastructure

Mookster
Trollface

Re: "certificate can be revoked if there's a security problem"

Your browser does revocation checks? ha ha ha

Mookster
Unhappy

Re: Network Spy Appliances

now a feature of many firewalls...

Mookster
FAIL

Re: Was web trust ever really alive in the first place?

Na. The POS terminal is able to tell the card that it's a nice POS.

SAP patent not inventive enough to get legal protection, judge rules

Mookster
Headmaster

Re: A Pox on Both your houses!

It takes 5 years to get the bloody things granted...

Mookster
Meh

Re: Building block patents

It's easy to work around patents with long, long claims. Although patents can also be used for marketing purposes...

Mookster
FAIL

Re: "There is no inventive concept that provides something more than the abstract idea itself"

I have seen many a patent rejected for "lack of inventive step".

IT god exposed as false idol by quirks of Java – until he laid his hands on the server

Mookster
Boffin

Re: For the non-programmers amongst us...

I would enable incremental garbage collection - better than waiting for Java to run out of memory. The other thing is to make sure that the memory you allocate to Java matches the physical memory available.

BOFH: You'll find there's a company asset tag right here, underneath the monstrously heavy arcade machine

Mookster
Facepalm

I'm a bit worried that no-one suggested using their GPU to heat the workspace, and getting bitcoins as a bonus.

You walk in with a plan. You leave with GPS-tracking Nordic hiking poles. The same old story, eh?

Mookster
Megaphone

Lidl, Lidl, let's go to Lidl, with food on the outside and shit in the middle..

Ink tanks park themselves all over the lawns of Western Europe as orders flood in

Mookster

Re: Ink Tampon full

mine is still going, a year after...

Mookster
Boffin

Ink Tampon full

After running my ink tank epson fro 5 years, it decided that the ink tampon was full. Luckily there was a hack to reset the firmeware counter and a bucket of water for the tampon (s)

Twitter hackers busted 2FA to access accounts and then reset user passwords

Mookster

Barely 2FA

Note that it's 4 years since NIST stopped recommending SMS as a 2nd factor in authentication.

https://www.schneier.com/blog/archives/2016/08/nist_is_no_long.html

Mookster
Facepalm

Re: SIM Swapping

SIM Swapping has been a "thing" for 15 years or more... (mobile money in Africa)

As Brit cyber-spies drop 'whitelist' and 'blacklist', tech boss says: If you’re thinking about getting in touch saying this is political correctness gone mad, don’t bother

Mookster

Gandalf is confused

very confused.

Amazon settles for $11m with workers in unpaid bag-search wait lawsuit

Mookster
IT Angle

Re: Who would work there?

Anyone who works in a supermarket.... there was always a clause that they *could* search your bags. Every now and again, they did it to remind that they could.

If you're wondering how Brit cops' live suspect-hunting facial-recog is going, it's cruising at 88% false positives

Mookster
Headmaster

It's not as if this is an exact science. Each comparison generates a score. It depends on the configured thresholds how high a score is needed to give a "hit"

Are you who you say you are, sir? You are? That's all fine then

Mookster
Thumb Up

Card machine not working -> Free Breakfast

Once happened to me at a bakery in Oslo. Everyone in the queue got their purchases for free

Ohio state's top legal eagle just made it harder for the FBI, ICE, cops to snoop around its DMV DB for people's faces

Mookster
Big Brother

There are searches, and then there are searches. 1:N search of a face against the DMV would require the DMV to be using an ABIS system, which only has one purpose. The article tries to imply this, but....

Not very Suprema: Biometric access biz bares 27 million records and plaintext admin creds

Mookster

Re: Storing fingerprints in clear-text?

Normally you would store the minutia, which can't be reversed to a fingerprint image.

Mookster
Headmaster

You don't hash fingerprints, you store minutia.... which you can't reverse back to fingerprints

BT staffers fear new mums could be hit disproportionately by car allowance change

Mookster

Does this mean that they get to keep the company car during maternity leave? At least here, in Finland, they take the car away...

Security storm brewing for Oracle Java-powered smart cards: More than a dirty dozen flaws found, fixes... er, any fixes?

Mookster
Facepalm

and when was the last time you had permissions to install your favourite applet on your SIM or bank card?

All good, leave it with you...? Chap is roped into tech support role for clueless customer

Mookster
Childcatcher

Re: "This will only take a second..."

bought them a new PC as a present, before the old one got too smelly

How many Reg columnists does it take to turn off a lightbulb?

Mookster
Paris Hilton

discovered that a grouping of 2-3 mars or marathon bars looks like explosive on the machine

Paris: likes a mars bar party

US Supremes urged by pretty much everyone in software dev to probe Oracle's 'disastrous' Java API copyright win

Mookster
Boffin

All your Javadoc is ours?

It isn't a trivial task to define and document APIs, which includes the interface and all the data objects that pass through it.

..Java has 4000 classes:

https://docs.oracle.com/javase/8/docs/api/

the ruling says that it's not OK to "borrow" all of them.

I agree that Sun, when promoting Java, acted all hippy, open-source, but there is still a copyright statement at the top of each source file.

Crypto crash leads to inventory pile-up at Nvidia, sales slaughtered

Mookster

I'm going to guess the gross margin on a $1000 video card is A LOT larger for Nvidia

Retail is Retail. 1/3 to make the thing + 1/3 + 1/3 to retailer

Sure, you can keep Grandpa Windows 7 snug in the old code home – for a price

Mookster

Re: Updating to Windows 10

Keys are nowadays, in the bios

Mookster
Headmaster

Re: Prevaricating?

oh no. It means "putting off" (at least where I come from)

Mookster
Paris Hilton

Half an hour won't satisfy Paris, let-alone M$

Half an hour won't satisfy Paris, let-alone M$

Oof, are you sure? Facing $9bn damages, Google asks Supreme Court to hear Java spat

Mookster
Paris Hilton

Re: Far reaching repercussions...

because you can, of course, knock up an API in a couple of minutes. I'm sure that all Java.se APIs were created in less than a day...

Paris, likes being knocked up.

Fake broadband ISP support scammers accidentally cough up IP address to Deadpool in card phish gone wrong

Mookster
Facepalm

You forgot the DDoS

1) Obtain Scammers IP address

2) Knock them/their-ISP/their-country off the interweb

3) Make it clear that the scammer's are to blame

Privacy, security fears about ID cards? UK.gov's digital bod has one simple solution: 'Get over it'

Mookster
FAIL

FFS

Living in a country with ID cards life is so much easier.

- Open Bank: use ID card

- Hire a car: use ID card

- any Council Service: use ID card

No faffing around, trying to prove your identity with Gas bills ever again...

(besides, the security services already know what you are)

Mobile networks are killing Wi-Fi for speed around the world

Mookster
Angel

What is this "Metered Data Plan" of which you speak? Here in the Nordics, only mobile data _speed_ is limited, you can take as much as you like

Where to implant my employee microchip? I have the ideal location

Mookster

Re: Enter at rear

Man-traps

Mookster

Re: Security is always fun

but it's against PCI-DSS to have the access mechanism identify the building..

Boom! Just like that the eSIM market emerges – and jolly useful it is too

Mookster

Re: @AC

Apple went to standardisation. eSIM is accepted to be "the same" as a real SIM

Mookster

The whole point of eSIM is that it prevents attackers from extracting the IMSI code (which is all you need to clone)

Mookster
Big Brother

All SIMs are reprogramable - you just need the right GlobalPlatform keys...

Pain spotting: Russia's Aeroflot Docker server lands internal source code, config files on public internet

Mookster
Headmaster

if it's been done properly then there's no risk in exposing the source code..

if it's been done properly then there's no risk in exposing the source code..

'Incommunicado' Assange anoints new WikiLeaks editor in chief

Mookster
Paris Hilton

Paris accuses him of "changing lanes without signalling". He ends up in another Ecuadorian "prison"

Mookster
Facepalm

Next time he goes on the balcony, get a couple of big chaps to "send him off". Then he's back in the UK, after he lands on the pavement.

AWS sends noise to Signal: You can't use our servers to beat censors

Mookster
Facepalm

There's a bug/typo in AWS description of the problem. Second connect should be http not https...

1) make TLS connection to souk.com

2) make http request, through TLS tunnel, to: other.site.on.aws.com (OK, pedants may still call this https)

23,000 HTTPS certs will be axed in next 24 hours after private keys leak

Mookster
Facepalm

Re: Private keys are private

"With any PKI system if you need to move or copy the private key from the box it was created on, then you are likely doing something stupid."

(there, I fixed it for you)

In any PKI system it shouldn't be possible to move or copy the private key from the box it was created in. If you can, then you are likely doing something stupid.

So use an HSM.

Farewell, Android Pay. We hardly tapped you

Mookster
Facepalm

Re: What could possibly...?

you know that you can get virtual credit cards that are only valid for one transaction...

Mookster

Don't kid yourself, banks charge when you deposit cash.

Mookster

Re: What could possibly...?

Mmmm you have to scan the MRZ to read a passport. The, for the UK one, you can read everything (there's no fingerprints). For others, with fingerprints, you need your own keys to get access.

Page: