* Posts by heyrick

4055 posts • joined 20 Dec 2009

Why, yes, you can register an XSS attack as a UK company name. How do we know that? Someone actually did it

heyrick Silver badge

We have taken immediate steps to mitigate this risk.

Not really. You've taken steps to ensure it's not your fault. The risk is still there, in those external sites that don't sanitise inputs from {$WORLD}.

SiFive inches closer to offering a true RISC-V PC: Latest five-core dev board includes PCIe, SSD interfaces

heyrick Silver badge
Happy

Re: It's not a PC

Well, France is now on lockdown and other countries may follow. All we need is a bored geek with deep pockets and way too much free time.

heyrick Silver badge

"So the actual logic processing that is done in an x86 CPU in response to user-issued instructions is done on a RISC core."

Am I the only one wondering what it would be like if they released a core that stripped off all the x86 stuff and was just the RISC internals to use directly?

Researchers made an OpenAI GPT-3 medical chatbot as an experiment. It told a mock patient to kill themselves

heyrick Silver badge

the erratic and unpredictable nature of the software's responses make it inappropriate for interacting with patients in the real world

In that respect, I'd say it's a pretty good emulation of some doctors I've had the misfortune of knowing. Having it reek of booze would be the icing on the cake.

A more bigger problem, and why this project will never succeed, is that the article implies that there's no memory. How can one expect any sort of continuity of care without remembering? Indeed, what worked/didn't work in the past, known allergies/intolerances, etc etc.

It's why people like to see their doctor and not go to one of those clinics where you get the next doctor on the pile.

Flash haters, rejoice! Microsoft releases tool to let you nuke Adobe's security horror before support ends

heyrick Silver badge

Flash is still a thing?

I must have exorcised that about a decade ago.

Facebook tells academics to stop monitoring its political ads for any rule-breaking.... on privacy grounds

heyrick Silver badge
FAIL

Shoot the messenger

(see title)

Linus Torvalds hails 'historic' Linux 5.10 for ditching defunct addressing artefact

heyrick Silver badge
Happy

Re: This is why we can't have good times.

"The Youth of The Past"™.

The telly at work played Depeche Mode's "Just can't get enough", to which I was absent mindedly humming along to. The announcer said it was a song released in 1981.

Then the bastard added, thirty nine years ago.

F... I swear my hair instantly went grey...uh...greyer...

heyrick Silver badge

Re: bye bye 2038

If it's the same wibbles as Japanese, then 年, 月, and 日 are year, month, and day respectively.

Actually, 月 means moon and 日 means sun, which mostly corresponds to the time periods involved.

By the way, I use and write an almost ISO date format (I use slashes instead of dashes). Way back when I had to deal with British stuff and American stuff and it got really confusing. So I decided screw this, it's (four digit) year month day and no ambiguity. I even write dates like that on papers at work, which some people think is weird but nobody complains about because again it's just bloody obvious. Plus it sorts nicely if expressed as a character string...

A cautionary tale of virtual floppies and all too real credentials

heyrick Silver badge

Just a shame it took the near takedown of the bank's branch to learn them.

If you don't come within a hiccup of filling your pants, you won't learn.

It's the terror that drives the point home.

Lee Kun-hee, who transformed Samsung into a global electronics titan, dies at 78

heyrick Silver badge

Re: Not really on-topic, but...

"there are some quite good Korean police/corruption/thriller style things"

Yeah, I've watched a few. As far as I can work out, it's pretty much expected that everybody is corrupt.

How the tables have turned: Bloke says he trained facial recognition algorithm to identify police officers

heyrick Silver badge

These vehicles contain no steering wheel or pedals for human drivers.

Well, that ought to make it interesting for test driving the things.

Or maybe if it should hit somebody, the passengers are supposed to ignore it and let the car decide to carry on?

Who's culpable in such a situation?

Congrats, Meg Whitman, another multi-billion-dollar write-off for the CV: Her web vid upstart Quibi implodes

heyrick Silver badge
Happy

One downvote... Meg, is that you?

heyrick Silver badge

What can potentially go wrong right?

FTFY.

Today's tech giants won't be as naive as I was in DoJ dealings, says former Microsoft chief Bill Gates

heyrick Silver badge

But times have changed, he said.

They certainly have. Today's tech giants have the money and power to buy the government they want.

Expect to see a light telling off so that justice can be seen to be done, but otherwise business as usual...

Samsung to introduce automatic call blocking on Android 11-capable flagships

heyrick Silver badge

Orange dialler already has this covered

The operator provided calling thingy on my S9 already does this using crowdsourced data, so I can automatically block numbers reported as malicious, the entirety of certain countries, and all calls that withhold their number.

I currently let them go to voicemail (as doctors and banks are notorious for blocking their numbers) but I could disable that too, if desired.

Kick Google all you like, Mozilla tells US government, so long as we keep getting our Google-bucks

heyrick Silver badge
Megaphone

Re: Location:

"is this value for money?"

Yeah, guys, how about you invest a tiny fraction of that cash in not fucking up the browser time and time again?

I don't want Firefox to be like Chrome. If I wanted to use Chrome, I'd use Chrome. I don't, so I'm using Firefox. So stop fucking breaking it.

When you tell Chrome to wipe private data about you, it spares two websites from the purge: Google.com, YouTube

heyrick Silver badge

Re: *cough*Bollocks!*cough*

"reticulated splines

Calibrated, I hope...

heyrick Silver badge

Re: "We asked Google for an explanation."

"This guy would then be summoned, dressed-down in front of the customer and told that they were dismissed."

Reprimanded in front of the customer? Wow, how utterly unprofessional (even if it was a ruse).

Will there be no end to govt attempts to break encryption? Hand over your data or the kiddies get it, threaten Five Eyes spies

heyrick Silver badge
Stop

Dear Security bods

Online "trust", and the concept of encryption, only works if one can feel reasonably certain that the communications between the server and the user is secure, encrypted, and untampered with.

If you want access, this implies that there is an intentional weak link that permits you to see what, cryptographically, you should not be able to see. And if you can see, then not only can others see, but there's the possibility that you or others can modify.

It's at about this point that trust evaporates.

Because, believe me, if it is known that there is a backdoor, then people far smarter than you in countries that you would consider hostile will be pulling apart your entire algorithm bit by bit. And when that weakness is known, the entire security theatre is useless.

Don't take my word for it, Google for "webrip" and "bdrip". All the encryption and protection thrown out by the movie studios has not done a whole lot to stop piracy. Build in a weakness, it will be found.

When you're On Call, only you can hear the silence of the clicks

heyrick Silver badge

I have a bit of php on my site that informs me that today is the 230th of March 2020.

As to the payment screwup, what sort of system permits that sort of money to be shifted around without extremely obvious feedback at each step? Saying it's a UI problem is akin to saying it is fundamentally broken.

Cloudflare floats cloud grand unification theory based on zero-trust access and security

heyrick Silver badge

Zero trust is about right. Yet more steps in the link between here and there, yet more opportunities to surreptitiously sniff what users are up to.

It really is your last chance to see anything at Cineworld for quite some time, and this big-screen bork speaks volumes

heyrick Silver badge

Re: cinemas are shit precisely because you shouldn't [talk during films]

To follow up on AC - if you're talking during the film, you're not going to be paying as much attention as if you shut up for the hour and a half (or two for a blockbuster) that the film runs for.

Anybody who talks during first viewing is signalling either that their opinions are not worth paying attention to, or that the film itself is not worth paying attention to.

Far far better to watch, appreciate, and then discuss it afterwards. When you know the reveal, or twist ending, or whatever, and can factor that into your thoughts about the film. After all, who knew Eli was blind, or that the dude was a ghost?

heyrick Silver badge

Re: Cinemas in their current form are an artefact of the limited availability of reels of film

And that bloody child who has the most noisy crinkle-wrap around the rubbish they're stuffing into their faces, and eating with the mouth open. And that tweenie who is on the phone giving a running commentary of everything that passes through her mind (most of it nothing to do with the film) to her BFF.

And that old guy who sounds like he has the plague, and every ninety seconds on schedule, a-hurrrrrr! followed what can only be imagined as attempting to sniff back a gallon of snot before it splatters the floor.

It's all of your reasons, and these, why I don't go anywhere near cinemas any more. With streaming, okay the screen is smaller but I can watch what I want, when, including pausing and rewinding and skipping past boring bits like the eighty distributor idents at the start. The food is just as I like it, plenty of tea if I feel like it, and no goddamn children with hopeless parents unable to discipline them (or at least get them to shut the .... up).

Nominet refuses to consider complaint about its own behaviour, claims CEO didn’t mean what he said on camera

heyrick Silver badge
Pint

Re: Years ago, a Nominet letter got attention; Today all you think is "What are they hawking now?"

Wish I could upvote this more than once.

In lieu of multiple ups, have a cold one.

heyrick Silver badge

a more constructive and positive experience for both Nominet members and staff

Easy solution.

Resign.

You, Haworth, Wood, and Wenban-Smith are the problem.

Heads up: From 2022, all new top-end Arm Cortex-A CPU cores for phones, slabtops will be 64-bit-only, snub 32-bit

heyrick Silver badge
Coat

Re: Old Arm

ARM hasn't been "real ARM" since they got rid of

LDMVSIA R13!, {R0-R12, PC}^

In other words, a complete conditional state restore (including mode and flags) in a single instruction. There was an elegance in the original design, to which three decades of cruft has accumulated.

Mine's the one with the RISC OS 2 source code in the pocket...

What a Hancock-up: Excel spreadsheet blunder blamed after England under-reports 16,000 COVID-19 cases

heyrick Silver badge
Mushroom

Re: Hmm. 65 000 000 people. 1 000 000 col limit*

"This is not a car crash, this is a multiple pile-up."

To bugger up tracing people during a pandemic, this isn't a car crash. This is a plane crash into a train crash into a multiple car pile-up with a tanker of petrol on its side and currently on fire and...... (see icon)

What is it about McDonald's, cultural black holes, and not being able to make tech work?

heyrick Silver badge

I had some fun ordering from a local McDo (here in France) with the thing switched to Japanese.

At the end it gave me a ticket. That was mostly blank.

I expected to see ?????? but I didn't expect nothing at all.

heyrick Silver badge
Happy

Re: They do have a clown as their mascot after all

It's 2020. So, YES.

Ring glitch results in global ding dong ditch: Doorbell bling flings out random pings but they're not the real thing

heyrick Silver badge

Re: No expiry timer?

I came to write the exact same thing. A "ring" as much as thirty seconds late is as useful as a bicycle is to a fish. And piling them up to ring in a row some time later? That's an obvious design flaw.

Google adopts ‘value-neutral’ language to make selfies less about ‘beauty’

heyrick Silver badge

Snowflakes?

I swear, not a one of them would have survived the average school playground of the eighties.

[it pretty much makes one bomb proof against the stupidity of others; go on, insult me if you disagree, I can assure you I've heard worse...]

Russia and China's 'digital authoritarianism' means we need to better arm our cyber troops, warns top UK general

heyrick Silver badge
FAIL

First step, please replace this guy. I mean, who in 2020 that has the slightest clue what they're talking about uses the word "cyber"?

YouTube axes crowdsourced captioning: Use our buggy speech-to-subtitle code or pay an approved third party

heyrick Silver badge
Flame

It's not as if YouTube cares much about subtitles

I try to subtitle some of my videos (but it's a tedious process) because southern English accent and slang words means the automatic transcription is sometimes comically bad.. I create srt files in Biftaku Subtitle Editor and upload them to YouTube.

But, wait, via the Studio or YouTube app? No, the app is only useful for setting the description and thumbnail. Google should be utterly shamed by how lousy the YouTube Studio app is.

No, I have to fire up the browser, sign in, go to the studio.youtube.com, get my list of videos, call up the stuff to edit it. Fiddle around because of Chrome's shitty resize-everything-for-some-reason breaking the layout and pushing stuff on-screen. Go to the other pageful of settings, find the bit about captioning. Long-tap to open it in a new tab (if you don't, it'll get claimed by the YouTube app that can't handle the URL). Then, finally, poke around to get to the bit where a dialogue box asks me to pick a file.

What a bloody palaver.

heyrick Silver badge

That D&D woman...

If I understand it, a content creator can upload their own subtitles. So what's to stop her getting her friend to do the subs, to send to her to upload?

The perils of building a career on YouTube: Guitar teacher's channel nearly deleted after music publisher complains

heyrick Silver badge

At least they had a potentially valid complaint this time.

It's when a big corp (or their automated representative) fires off successful infringement claims against original compositions that you realise how horribly the system is broken, and how hard it tries to appease The Man by screwing over those with little in the way of power to do anything about it.

Proposed US fix for Boeing 737 Max software woes does not address Ethiopian crash scenario, UK pilot union warns

heyrick Silver badge

Re: Time to kill Boeing

"Boeing seem to be quite good at making aircraft that kill people"

Now all they need are kamikaze pilots to fly the things. Job done.

heyrick Silver badge
heyrick Silver badge

Re: Making bricks fly

"to passengers will speak out against this abomination."

If I ever fly again, the booking request will be simple. Not a Boeing.

heyrick Silver badge

Why not have some sort of ratchet mechanism where you crank a handle up and down to force that bugger to move? Expecting the pilot (or in this case both of them) to do the impossible in the middle of what may well be an emergency situation is taking the piss.

heyrick Silver badge

Re: What might be harder to ignore...

Maybe not so much polarised as being dealt with by the half of the legislature that is attempting to maintain some semblance of a functional government.

Microsoft leaks 6.5TB in Bing search data via unsecured Elastic server. *Insert 'Wow... that much?' joke here*

heyrick Silver badge

not precise enough to get an address

If you live urban, no.

If you like on the outskirts of a town, perhaps.

If you live rural, definitely.

500m around me is... fields. Maize, the odd wild boar, the trees that the sociopathic neighbour farmer hasn't yet cut down, and some kittens.

But however you look at it, a GPS coordinate with a half kilometre accuracy will identify one property. And from that, an address. Which can lead to a name. Me.

Happy Hacking Professional Hybrid mechanical keyboard: Weird, powerful, comfortable ... and did we mention weird?

heyrick Silver badge

"my keyboard layout isn't AZERTY eh?"

I live in France. First thing I do when I buy a new keyboard is send off for a set of replacement keyboard labels.

My muscle memory works with both QWERTY and AZERTY. But I've never encountered such a programmer unfriendly layout in my life. That "@" is a three finger salute is ridiculous. That an entire key appears to be ` is ridiculous.

heyrick Silver badge

"where it always should have been"

My mother's gripe, ever since desktops had computers, is the habit of sticking a modifier that does many weird and wonderful things where the Caps Lock should have been.

I didn't grow up with typewriters, so it wasn't really a problem for me, but I did note when using a typewriter that the editing facilities sucked.

Ancient telly borked broadband for entire Welsh village

heyrick Silver badge

Re: Similar thing happened near me

From the linked article: The cause was a custom, man-made device inside a resident’s home

I'd have been inclined to word it as, perhaps, "a custom device built by an electronics enthusiast" or something... Or does Cleveland suffer from devices built by, oh I dunno, extra-terrestrial waterfowl?

heyrick Silver badge

an AM radio can detect SHINE-emitting kit

Like all those smart meters spewing their periodic data up the line to the gizmo that collects the information and sends it to the provider via the mobile network...

We don't need maintenance this often, surely? Pull it. Oh dear, the system's down

heyrick Silver badge

Re: The people who wrote it said that it would take them weeks to fix, at a cost of ~£5k

"even bloody Microsoft send out fixes each month. Free."

Uh, aren't people expected to pay a monthly subscription these days?

heyrick Silver badge

Re: Financial software - Money extraction

"I could switch on whatever I liked"

Video recorders were a bit like that in the end. I opened mine up to clean the heads (with isopropyl) and noticed a set of links, some made, some not.

I removed them all and installed a bank of DIP switches. Then I fiddled.

And ended up with a video recorder that could do NICAM stereo and long play.

It seems it was cheaper to make identical units and choose features by links, than to make actually different models.

heyrick Silver badge

Re: An ex employer did that too.

"because of said idiotic wanker waving"

You are reporting this as if it is something somehow unusual. When you have more than one level of management involved, it all goes to shit and it's usually your fault (even though THEY are the flamin' "management").

It's pretty much why I no longer do IT for pay, and looking around at what happens at work (both in and out of IT), it seems as if the entire point of management is to line up and disagree with what the other one said.

F'em all. Give me my red stapler....

Did this airliner land in the North Sea? No. So what happened? El Reg probes flight tracker site oddity

heyrick Silver badge
Coat

Re: Authenticity v. Accuracy

Anvil, because I want to make an impact.

Video encoders using Huawei chips have backdoors and bad bugs – and Chinese giant says it's not to blame

heyrick Silver badge

Re: Monumental Stupidity Always Costs and Pays an Exorbitant Price

Whoa, dude, that actually read (mostly) coherently.

Have we touched a nerve, or are you losing your touch?

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020