Posts by alain williams

£15bn in advertising revenue was lost

I think that the correct wording must have been lost in translation from German, surely it should have been ''£15bn was saved by companies in useless advertising costs''

Totally barmy

This was talked about a couple of times in El-Reg in 2014, one here. The Ministry of Justice is sending 65,000 jobs to India. This is simply stupid:

a) Data protection. A lot of very sensitive information going overseas - what could possibly go wrong ?

b) Loss of skills in the UK, helping another country get skills.

c) Look at the numbers: save "£100m over the next few years" - that means 10 years. So, £10m a year.

The cost - 65,000 jobs[**].

£10m/65k = £154.

So, MoJ is saving £154/year for every job lost to the UK economy. It might save MoJ, but UK Plc loses big time.

An analogy would be: a plumber getting in another plumber to fix his bathroom tap as the other plumber has a B&Q discount card & so can buy the washer more cheaply - the job still ends up costing the householder plumber more.

[**] That is jobs paid for by MoJ - there will be other jobs lost in: infrastructure suppliers, office cleaners, ...

BBQ ?

Am I the only one who sees two components on the left hand side labelled 'BBQ' ?

I think that this is the result of too much Fosters at barbies over the Easter weekend!

Impact explained ?

It is the need that I want explained... and please don't bring out the tired rubbish about: paedophiles, terrorists, drug barons and master criminals - we have heard that all before and it does not hold water; yes: they may catch a few low hanging fruit (the simpletons); but the big boys are not going to stop using good encryption just because it becomes illegal - that is even assuming that we are really at real risk from these people or that open-to-government encryption will let them be stopped.

So: why does she want it? She is either stupid or has some other, hidden, purpose.

Another country will soon be ...

on my no-visit list.

More spyware ?

Given that MS Windows 10 'phone home a lot and MS can upload any file that it wants from your machine; can we also expect that MS SQL server will behave likewise and give MS/NSA access to any records that it wants from your database ?

Scary!

I found myself wondering if I would see a glimpse of Darth Vader in that video

Must notify ... except ...

for the data feed to GCHQ/... ordered with a secrecy clause. Hmmm airport data, they would want that data (and probably already get it), great for knowing what phones are moving in/out of the country.

Why not sell it to you ?

Reminds me of the early days of mobile phones where you could only get one on a contract.

Their monthly fee feels like lock in; probably expensive; maybe OK for those who buy iPhones, but not me.

The design: to me looks like the child of a VW beetle and a Citroën 2CV

prime meridian

I notice that the Mars prime meridian is based on Airy-0, a crater named after a British Astronomer Royal, the choice made by someone from Stanford University.

Do the French have a different prime meridian for Mars ?

https://en.wikipedia.org/wiki/Airy-0

Please save me from terrorists!

This terrifies me, I worry about it, I am afraid of the spooks in the NSA & GCHQ.

Who will save me from terrorists ?

The USA has won ...

They have succeeded in making Assange the story and not what he revealed through Wikileaks.

We seem to have forgotten that this was started when evidence of USA government wrongdoings was published; so standard procedure was activated: discredit the messenger, something that they have done many times before - Bradley Manning for one.

Doing security properly costs ....

but is often cheaper than screwing up and having to pay the cost of the f**k up.

The problem comes when a bean counter wants to know if a few £k can be shaved off some budget or a marketing manager wants something delivered a couple of weeks earlier - so security is not done properly. After all: you can have a system that appears to work well even if the security is paper thin.

By the time the short cuts come to light: those guilty of forcing the change are forgotten, but just in case the universal 'hacker' bogey man is invoked/blamed.

This is not just a Talk Talk problem. I recently saw some email from https://references.clearviewtr.co.uk/ to someone wanting to rent a house. Login details all in clear text, one email: URL, username, password - this is somewhere where a lot of financial data is entered (bank a/c details, home + work address, ...) just what you would want if you wanted to spoof someone. Management at clearview should be shot.

You get what you pay for ...

is what Microsoft says when trying to tell people that Linux is pants. That doesn't seem to have worked here does it ?

So: will Microsoft do the honourable thing and pay consumers for their excess data charges ?

While at it: also pay for people who's broadband limits were blown by them shoving MS Windows 10 at them without asking.

The code is not enough

You also need the ability to replace the compiled code that comes on your device with code that you have inspected and compiled. The point is that how can you be sure that the code running in the device corresponds to the source code that you have been given ? - Especially if the likes of NSA/GCHQ are around with laws that can compel vendors to silently subvert their own products.

The ability to extract the installed code and check that you can build something bit wise identical would also be good.

OK: it will not be for everyone (recompiling) but being able to reinstall firmware should not be too hard.

Also: knowing that someone has verified the manufacturer's binaries will reassure the many for who reinstalling is too hard/much-effort.

If this were to ever happen, then NSA/GCHQ will set up organisations to do the recompiling/checking but lie about the results and so give a false sense of security; so it is not as easy as you might imagine.

Will terrorists, etc, quake in their boots ?

Oh, no - we can't plot to blow up the UK any more since we cannot use outlawed technology!

Of course they won't -- who does Theresa May think that she is kidding ?

Why the ungenerous salary ?

There is every likelihood that they won't collect ...

What is the difference ...

between what Russia is doing and what Theresa May wants to be able to do (or legalise what GCHQ is already doing) ?

Encrypt file systems ?

For a run of the mill office server, encrypting the important file systems should not really slow it down too much. A quick search finds: Ubuntu extra overhead of 5%, others should not be vastly different. Thus acceptable on a modern server that has more CPUs/cores that you know what to do with.

If you are smart: do not encrypt the file systems needed to get it up & running, then on a reboot you can ssh in and get the encrypted file systems mounted.

''GPL campaigning ... at odds with corporate sponsors''

In other words the corporates expect to be able to take GPL products for free, make a few changes or incorporate it as part of their own software and sell it on.

Parasites.

If you get something for free don't insist that others have to pay for your tweaked version.

Two different discussions

He was arguing about how European governments poke into data. We all agree that that is bad; however the NSA is just as bad.

He ignored limits on corporate use of private data. Here Europe is streets ahead of the USA. In the USA personal data is fair game, a commodity with which to make money. In Europe companies are (in theory at least) restricted as to what they can do with it.

When doing a compare and contrast: do not ignore the bits that do not bolster your point of view.

Arrrgh!

I went to https://cloudup.com/ with my standard browser set up and all that I saw was 5 links to JavaScript that the NoScript plugin had blocked. Come on guys, at least show a basic page without me having to enable JavaScript - if you do not then I will probably just go elsewhere rather than try to work out what I should enable, indeed what I want to enable.

We will see her again

She stepped into the Dr's timeline which means that she is in his future as well as his past.

Anyway: she has died before and come back.

So does that mean that ...

if a USA company is cracked by the NSA that they will legally be able to try to crack the NSA ?

''deranged sys admins''

Derogatory & belittling attacks on your enemy is silly, the result is that you tend to dismiss them as fools and so not take them seriously. You may not agree with what they are doing (as I do not) but we must understand that they have intelligent people and are thus able confound the best that we can use against them. To assume any less is to leave us wide open.

We must also assume that their top commanders get better advice on secret communications than those lower down.

Time to face up to it ...

it seems that lying by corporations is now normal. Even being caught out is hardly a problem, the lie will soon be forgotten as they dream up the next set of fibs.

Government won't do anything: politicians lie just as much.