Posts by Alistair

never mind yer data centers.

When I move out to the middle of gods country I want one of these in my basement.

Take *that* to the bigthree here in the (not quite so) snowy north.

Happiness

I'm just a happy little maple leaf.

I find it interesting that we're that far up the list, unless when the poll was done, we were all gloriously happy that we had an election in view and could fix one big fat issue we had been living with for too long.

Wait, forbidden from doing so in the future???

Uhhhhhh didn't they GET here as it was forbidden in the FIRST frocking place?

(and they brung their knees in tight)

This canuck

Is chuckling at all you 'murricans south of the border and your 'vast swaths of unpopulated space'.

I'm on 2G/month unlimited voice and SMS, canada wide (tested it last summer, it is indeed canada wide) $70/month - with a grandfathered unlimited calls to US for $5, sadly no longer available.

Data speed throughout the GTA out as far as Barrie north, St Catherines west and Port Hope east are consistent and for the most part quite acceptable for browsing and VPN (as long as I'm sticking to CLI or API calls from my windows VM) - citrix and RDP suck over that vpn connection but I'm rarely in need of those when I'm on vpn to work.

Last summer, drove out to Alberta and we hit only 3 small 'dead' spots passing through Sask. and Man. Mind you, we did stick mostly to the principal highways in that stretch. In the backwoods around algonquin I've fallen back, but still generally get voice -- data - not so much, or in some cases I suspect GPRS (wince).

Overall, decent enough, would like more data for my money - but it gets ridiculous quickly.

Keep in mind, we're slightly larger in overall square footage, with 1/10th the population of the US.

His female companion

Mentioned that she enjoyed the ridges on the condoms, but was allergic to the latex.

He seems an accommodating sort.

Arm processors. Servers. RH.

Have to wonder if AMD is hanging out in that project.

And dammit I do want.

.... ever stood behind a full EXAdb rack at full torque?

TFTP "authentication" scheme.

The only one i can think of is mac assignments. With a couple of older tablet/ereader type critters it allowed me to do firmware updates over the wifi.

Pointed at the interwebz?

*blinkblink*

f@&& no.

wow.

Good to see others have sheet metal tools about.

My granpappy's toolbox has em in it. (offset shears, 60 and 80 degree pairs) <stowed in mom's basement at the moment> and it dates back to the 1890's, since it was *his* da's. And it has a pair of leather shears with the same feature.

(I periodically raid that toolbox, if only for the wood planes. Best damn planer I've ever used, and ... its *made* out of wood, what type I do not know)

I deal with the sharing economy alla time.

I keep getting shared to other departments. To clean up their messes.

@ Trevor

You have my best wishes and a hug if you want. There is only time.

And after some time a new purr to get to know.

"management rarely sees the link between offshoring and losing business."

"The stock market never sees the link between throwing out experience and the stock value crashing"

I suppose I should find out if my spouse is using this site

------

possible adjustment for suspicious buggers is in order?

Hang on a minute, I can rewrite that article for you:

Oh my #$% god, there are SOOOooooo many broken, unsecured, terribly configured, badly managed, broken <insert relevant object here> on the internets!!!!

Look, we scanned < insert minute portion of the available IP space number > of IP's and found <insert massive statistically irrelevant number> of vulnerabilities!!!

<buzzword soup opinion piece>

<Corporate consultancy commentary>

Sorry, it took one name to mark that advertorial.

<grumpy as hell since I've got two dropdead timelines a week out and two funerals to go to today, as well as being down a quart of coffee>

One last missing point on distribution

Several folks have raised the Nvidia/AMD proprietary drivers! point.

Distribution is the other element of the pivot here - many distributions park the nvidia and amd video drivers < and often quite a few other odd creatures > in a separate distribution path, apart from the kernel itself. As pointed out above, not using certain APIs in the kernel and not using certain symbols exported from the kernel avoids the 'derivative works' contamination, and the 'kernel taint' switch avoids the secondary path of inheritance. I'm pretty sure the adobe licensed code(s) end up in the same territory as CDDL code, its fine to make it available, just don't put it in with our GPL stuff.

Gentoo and BSD both avoid the distributing from a repository 'binary code' issue, which is a third element of the GPLv2. <ports/emerge>

I gather the impression that Canonical intends to put ZFS into the primary distribution path <and at a guess into their installer>, which is where they will fall afoul of the combination of GPLv2 and CDDL bashing heads.

Better yet,

Have they checked the unit conversions on the project.

<sorry, Beagle>

Why are people getting this so completely wrong?

1) apple has not been asked to 'unlock' the phone.

2) apple has not been asked to 'break' their encryption of the phone

The court issued writ asks that apple create a boot time update of the software for the phone that is signed appropriately with apple's key, which will remove the functions in the OS that a) limit the number of attempts at the 'password' and b) remove the OS function that destroys the data on the phone when that limit is reached and c) adds a device path that will allow for mechanical input of the password to unlock the phone.

This specific writ is phrased such that the update should be specific to the individual phone. Essentially Apple has been asked to create an insecure version of the OS for a specific phone.

The use of the All Writs Act is peculiar in a legal sense and it is this factor that makes the overall request the basis of a legal precedent. This precedent will apply not only to Apple, and the version of the phone in question but to all systems where an update could be applied to modify an internally secured process, on any software driven device.

THAT is why we should all be screaming. Never mind that should someone leave a copy sitting around somewhere that it leaks out to the rest of the world it could be used as a template for pretty much anyone to do the same thing on any number of phones out there.

<Yes, it will be signed with Apple's own key -- however if it ends up on the loose, there are those that will spend ages working on getting that bit unlocked, and eventually someone will figure that out.>

Finally, if Apple successfully challenges the writ and wins their position in a court, this case will help make Comey's case for 'back doors in encryption have to exist for the government'

What needs to be recalled is that the FBI have the metadata on the phones communications over the provider's network - this is always collected, it is kept for a reasonable period - so they *know* that communications have taken place and what or who was on either end of that communication, what they do not have is the specific content of that communication. They have the backups up to a period of time before the events in question. They have not stated that they have any metadata indicating what they are after on the phone itself which for ME is the keystone against executing this writ.

on dismissal process

1) disable AD account, (no permitted logins) <evict active sessions>

2) disable (Lock password, expire account) all unix accounts <kill active sessions>

3) change permissions on .ssh/authorized_keys to 744 < handy trick that most security folks DO NOT have in their processes> where the file exists.

Go back through the loop and modify the username details to include appropriate tagging that indicates the account is owned by someone no longer with the company.

and if your VPN isn't attached to AD or a unix account somewhere, *remove* the token generator from the system, and then lock the serial number out.

Oddly I've seen stupid s&&t like this done. Not once, but twice. Both times in our case was HR leaking details to the wrong bodies prior to the action. Both times, offsite tape backups to the rescue.

This just goes to show that Cloud is as light and fluffy as the name.

As for the commentary about the fibbies and the iPhone.

METADATA!!!! they have the cloud backups and they have the metadata. This is a legal move to set a legal precedent, and if Appple wins, it becomes even worse.

@TJ1

Perhaps with the detailed location map provided the Reg folks are hoping for a BOFH intervention.

Please. PLEASE.

Editors. You need editors.

Hero pic is incorrect.

Wrong bear.

I've been doing this too long.

Looking at a korn shell script written 11 years ago that chugs through several *thousand* job logs a day looking for a specific combination of oracle errors. I'm horrified at the horrible ...........

God DAMMIT. I wrote this crap.

I have to giggle

"Snoop control Unit"

Arm should have a rebranding session.

"Now called the Edward Snowden"