* Posts by sqlrob

58 posts • joined 14 Dec 2009


Compromise reached as Linux kernel community protests about treating compiler warnings as errors


Re: "An unused variable"

You can get unused return warnings by adding an annotation to the function.

GitHub's Copilot may steer you into dangerous waters about 40% of the time – study


But is it better or worse than copying random code off of Stack Overflow?

Apple says its CSAM scan code can be verified by researchers. Corellium starts throwing out dollar bills


Look, Squirrel!

The client can be 100% secure and do everything it says on the box. Unless this also includes auditing how hashes get in the system AND keeping that audit 100% up to date, it's really kind of pointless and doesn't prove much.

Bug? No, Telegram exposing its users' precise location is a feature working as 'expected'


"In the case of Telegram's requirement, it might be sufficient simply to report which users are within a seven-mile radius, for example, rather than exposing their exact distance away."

I fail to see how that actually solves the problem, unless there's a lot of randomness added or it uses a constant arbitrary point for distance (say, everyone in a postal code is at the center of that postal code). Otherwise it just means it takes more than 3 readings, big whoop.


Re: Well, yeah.

There's a whole lot of difference between narrowing someone down to say, a square mile or two and knowing the exact spot they live.

Devs strung up about .NET 5.0 string changes that may break working code are told: It's not a bug, it's a feature


7-bit or 8-bit?

You've got rose colored glasses on if you don't remember that fun with mail and file transfers of text.

Google Chrome calculates your autoplay settings so you don't have to - others disagree


Do all those work on mobile firefox?

Here's why your Samsung Blu-ray player bricked itself: It downloaded an XML config file that broke the firmware


FTFA: "Samsung, we're told, replaced the file on its servers on June 27, 2020"


Re: Samsung quality software

Because that takes money, time, and skill. They're going to use the cheapest devs and QA they can.

IBM job ad calls for 12 years’ experience with Kubernetes – which is six years old


Re: Job ad requirements

When interviewing, I've actually considered the tech qualification tests as a negative. Passing a test doesn't mean understanding, and there were enough bad practices and/or outright mistakes enshrined in these tests to be an issue.

Microsoft to pull support for PHP: Version 8? Exterminate, more like...


Re: Internet Information Services (IIS) slump ...

It's not just used in IIS. Many moons ago I worked in a place that used phabricator. Interface to that is through php scripts run on the command line. I don't know if it still works that way or not.

Apple-Google COVID-19 virus contact-tracing API to bar location-tracking access


Re: What about outdated phones?

Early 2018 and don't have 6? It was EOL a year before that.

Prank warning: You do know your smart speaker's paired with Spotify over the internet, don't you?


Re: Until some vendor takes security seriously...

That soon? (and no, I'm not being sarcastic)

Baby, I swear it's déjà vu: TalkTalk customers unable to opt out of ISP's ad-jacking DNS – just like six years ago


It's their network though. Would the act even apply?


I'm surprised that actually works. I wonder if they'll "fix" it.

They can just intercept port 53 and return what they want.

Alleged Vault 7 leaker trial finale: Want to know the CIA's password for its top-secret hacking tools? 123ABCdef


Re: That's Amazing!

Re #2: That's the kinda thing an idiot would have on his luggage!

You might want to brush up on your movie knowledge. Google those quotes.


That's Amazing!

I've got the same combination on my luggage.

All that Samsung users found on UK website after weird Find my Mobile push notification was... other people's details


I got the notification, and my details on the site are my own.

FYI, the url should be https://account.samsung.com , it doesn't have the s on the end of account

Early adopters delighted as Microsoft pulls plug on Mobile Backend as a Service. Haha, only joking – they're fuming



I'm just starting out as a business and this actually may even sink me

If potential long term issues with your cloud provider aren't in your business plan as a risk, you might want to think about doing something else.


Re: Yea - give me that random stuff

Except when done properly, continuous integration also runs the tests and won't deploy on test failure. Even better systems won't allow the commit without those tests or fail the push on failed tests.

Putting those things in the past is bad devs or bad management blaming the methodology when it's really on them. See also: Agile.

Oracle tells Supremes: Fair use? Pah! There's nothing fair about 'Google's copying'


Re: A plague on both of them

Pre-existing API? Like, say, SQL existed before the Oracle Db?

NBD: A popular HTTP-fetching npm code library used by 48,000 other modules retires, no more updates coming


Re: Seems Optimistic

The problem is it's not just *your* resource management.

You use a library dependent on request. You need to wait for it to propagate through. Rinse, repeat through many layers.

Bada Bing, bada bork: Windows 10 is not happy, and Microsoft's search engine has something to do with it


Integrating Bing, yeah, that's a management decision.

Making it so network blocks local? That's crappy devs.

It's Hipp to be square: What happened when SQLite creator met GitHub


Rebase considered dangerous

Yes, rebase is dangerous and should only be done on unpushed commits. You can set up a repo to reject anything that rebases.

The setting is available on github and bitbucket in addition to native git, so if you lose history because of a force push, it's on the admin.

Why are fervid Googlers making ad-blocker-breaking changes to Chrome? Because they created a monster – and are fighting to secure it


Re: The title is no longer required.

The 75% that includes The Register. Any reason you're still commenting here?


Re: Or, simply...

That's nowhere near a complete solution. There's plenty of ads or other annoyances that come from the same domain as the site.

On the eve of Patch Tuesday, Microsoft confirms Windows 10 can automatically remove borked updates


Re: flight mode

Is that true on a modern SSD? I didn't think the write limits were anywhere near what they were before.

And how does this differ from the swapfile?

Freelance devs: Oh, you wanted the app to be secure? The job spec didn't mention that



A call to bcrypt is just as easy to write as a call to SHA-256. Why even bother with a shortcut like that?

Atari accuses El Reg of professional trolling and making stuff up. Welp, here's the interview tape for you to decide...


Re: Specs look unrealistic

<blockquote>Now, how can you use an AMD APU in that price range </blockquote>

PS4 - $299

XBox One- $199

Both AMD. Now, they're bigger companies, so expecting $250 from Atari is probably a pipe dream. I'm suspicious about it, but it doesn't seem entirely out of the realm of possibility.

John McAfee plans 2020 presidential tilt


Yeah, it is.

He's incompetent and evil. Try competent and evil instead.

Computers4Christians miraculously appears on Ubuntu wiki


Quit with the jokes already. Puns make me cross.

The axeman strikes again: Microsoft has real commitment issues


How many of those cancelled Google services were where you bought something?


If it took until now to realize this, you're kind of slow.

Remember PlaysForSure and Gaming for Windows Live?

Microsoft won't patch SMB flaw that only an idiot would expose


"won't be patched, because Redmond says it only needs a suitable block on connections coming from the Internet."

Because we all know, boxes on the internal network are never compromised and there's never insider threats.

Disney mulls Mickey Mouse magic material to thwart pirates' 3D scans


Re: Workaround

No making it more difficult will not reduce piracy.

It just takes one when a digital file is produced. There's no way this will make it so hard that it's financially unreasonable to do. The workarounds already shown here are more than sufficient.

Microsoft quietly emits patch to undo its earlier patch that broke Windows 10 networking


Re: TV Advert - Windows 10 - Tablets - You Need 'Em

Really? You don't get that with a Mac?

Have you missed the articles about patches breaking ethernet and iPhones/iPads getting knocked off WiFi?


Re: supporting my elderly father with his windows 10 machine

Really? You don't know anyone outside of works that uses https regularly? Wow.

Lenovo: If you value your server, block Microsoft's November security update


Re: Go ahead

So you're admitting to having remote execution and privilege escalation flaws in your file server? Even if they're not accessible from the internet, insiders are the greatest threat.

Good move.

Exchange down for Android and iOS users


" Third parties had to license the XML-based EAS while REST is free."

Isn't the licensor Microsoft? Couldn't they just say "hey, it's free now"? Feels like there's something else going on.

Microsoft tweaks TCP stack in Windows Server and Windows 10


Re: Quirky McQuirkface..... Hopefully not.

And I remember what happened when they tried to tweak the network stack in NT 4 SP4. It was really fun trying to get SP4a to machines.

Why Oracle will win its Java copyright case – and why you'll be glad when it does


Re: APIs vs Copyright

Yeah, APIs are nice and trademarked and anyone using them should get hit with major trademark suits.

Man, IBM will make a fortune off Oracle for SQL.

Mobile advertising DDoS JavaScript drip serves site with 4.5bn hits


HOSTS? Really? You think that's going to work against someone that controls a DNS Server? Any provider that controls a DNS server can have effectively limitless domains. You can't fix that with a hosts file.

Curiosity Rover's OS has backdoor bug


Re: Edge conditions.

Edge conditions need to be in unit tests. So yeah, the initial phase of that testing is on the same person. Incompleteness of those tests should be caught in code review.

If it makes it past those two steps, then it's on the testers. But depending solely on QA is itself a bad practice.

Microsoft will explain only 'significant' Windows 10 updates


Re: Windows 10

Several times a day? I revoked that right the instant the first one and icon showed up in my taskbar.

Microsoft's Windows 10 Torrent-U-Like updates GULP DOWN your precious bandwidth


Re: Wuh!!?




Re: I did think that

That's really going to depend on the network. My bandwidth is asymmetric, at a ratio of about 30:1. It's much better for me to download again rather than upload.

ETA: That's for my internet. Doing that locally? Great idea. Sending over the internet? Bad.

Install OS X El Capitan update – or your apps may do an Ellen Pao


They like toasting bitness subsystems don't they? I remember when they broke the 64-bit one. At least this time it was in a beta rather than release software.

Don't they have a regression test before kicking something out the door?

Foreign firms must obey EU laws no matter where they're based, says EU. Hear that, Google?


Re: Tit for Tat, EU. We can do that too!

"I'm not too sure what the US government has done to make the world better since 1776, and judging by their standards on education etc it looks like they haven't helped their own citizen's either."

Says the person posting on the internet.

Brute force box lets researchers, Cops, pop iDevice locks


Re: PIN over USB?

But that would be a lot slower.

Mattel urged to scrap Wi-Fi mic Barbie after Register investigation


Question is how secure is the protocol. It may still be possible to hack and be pretty flexible.



Biting the hand that feeds IT © 1998–2022