* Posts by Slipoch

36 posts • joined 8 May 2010

If you didn't store valuable data, ransomware would become impotent

Slipoch

Re: Definitions?

The difference is legal,

Data Loss - the data is gone but no-one unpermitted has it.

Data theft - the data is in the hands of a 3rd party that is not permitted to have it normally.

This argument is essentially an argument based on limiting the liability of a company and very little to do with protecting data. If someone gets that far into your systems, they would be able to put monitors and keyloggers on your website and steal the data direct from the customers anyway using a MITM attack between the site and the payment processor.

AI's most convincing conversations are not what they seem

Slipoch

Re: The real issue

You (as a lot of others) are conflating a religious/ideological comment or belief that Pascal remarked on, with a proof of concept argument. In this case it is irrelevant.

It's the same as as saying because Darwin believed in evolution he couldn't believe in God or vice versa. Plainly untrue as Darwin believed both. (notice I do not say Catholic as that is a gatekept community with a belief system within it).

These are two different fields (to over simplify it is treating how as the same as why) and it is a strawman argument to conflate both.

Breadth vs depth is the core argument here, all of the responses in the examples given as 'proof' have strong relations and the bot digs down into those, sometimes the responses seem more tangential but not to any significant degree being more a grouping system rather than using something like an allegory and none of them exist outside standardised source sets for training ML. Some of the responses do not make sense when you look at a syntactical structure, it goes through the linkages of associated properties and sometimes those are conflicting with themselves.

Debugging source is even harder when you can't stop laughing at it

Slipoch

First few mistakes

Major mistakes:

1. using VB as a production ready language

2. using Access for anything (remember the old 65k records then fall over issue?)

This reminds me of VB code that had >5000 lines (this is one function) and > 40 paramaters because the object that containerised them only existed in the local namespace, then putting them all into the object, then using them all in another function call because it was external.

Apple's Mac Studio exposed: A spare storage slot and built-in RAM

Slipoch

I'm sorry but exposed PSU capacitors in the chassis are a real worry, as is the fact that swapping another validated working mac studio hard drive also caused fails which leads me to believe there is going to be more t2-style shenanigans, the second port also wouldn't work with the original hdd. The ssd also doesn't have the controller most ssds have (it's on the board instead). So what exactly is repairable here?

Just two die for: Apple reveals M1 Ultra chip in Mac Studio

Slipoch

Re: Threadripper? Deadripper more like.

Here' a bucket of salt, given that mid-range AMD cpus are still flogging the M1 on handbrake tests (HB using native M1 code) for multi-core, I suspect that there's a lot of 'optimisation chips' that give false positive results for benchmarking.

I would be more interested if they allowed >1 monitor to connect (where the monitors use DP).

Skills shortage puts SAP projects on hold

Slipoch

Re: $AP Con$ultant

Got to be the only SAP employee I have ever heard of to 'know his stuff', most of them don't even understand a basic foreign key assignation so you don't end up with orphaned records. You know, first year CSci stuff.

SAP has an issue where they hire sales droids, but call them engineers and consultants pay them a shedload to sell the product to managers above the level of the use of the product and give them paid holidays etc. We recently had a SAP expert recommend setting up a public form that sent the data direct to the client's sap setup, when asked whether they would be validating the data the answer was 'we don't do that'.

Time for people to patch backup plugin for WordPress

Slipoch

Re: The backend version of Flash

Yup, also for usability, flash was a mess of different ideas as is wordpress, not to mention the auto-updates were caught installing the infected package updates from NPM.

The usability for the end-client is also shite.

Slipoch

Re: The backend version of Flash

Joomla is actually one of the most hacked CMSs. Wordpress accounts for ~60% of the CMS market, but was 90% of all the compromised sites, Joomla accounted for <1% of the CMS market and yet was hitting around 2-4% (depending on year) of hacked sites.

I used to support industry sites using Joomla, it's not a professional platform, it's more like a website focussed version of wordpress with a better BE.

I would avoid Joomla.

RISE with SAP? Never heard of it, say 30% of UK users

Slipoch

SAP = useless and non-relational relational dbs

So the Vic government spent >10 mil, and over 10 years trying to get a basic SAP system setup for taking educational enrollments in one state of Australia. SAP proudly had this system on it's page as a 'success' story.

Over the ten years it didn't manage to take a single enrollment.

In other news I have direct access to a SAP db at the moment. There are tables with no primary key and no combined key setup, SAP seems to think that having the FE software control the relations is better than having a normalised db.

Incidentally SAP was involved in the deleting of all the records of children at risk in QLD, the leaking of location data on people escaping domestic violence (this got back to some of the perpetrators and resulted in at least 1 death of a child).

Apple warns sideloading iOS apps will ruin everything

Slipoch

Re: There is a simple fix for it

why not keep the sideloaded apps separate like a properly sandboxed environment? Compile your own may actually open the way for more malicious behaviour (most malicious behaviour seems to be on the legit stores anyway), if we look at the recent repeated breaches of NPM and other library systems we can see some pretty large security threats there.

I don't see how it stops the spread between devices, of malware breaks out it may auto-sideload onto other devices, much as some of the recent ios malware did.

Without decent incentives, the OS community will noit flourish as well as on droid/linux/PC, particularly if you gimp how users can use products.

This is why if you need industry specific apps succh as the ag industry, scientific, manufacturing, etc. You generally do not find good apps for them on iOS or MacOS.

Slipoch

Re: Whose security are we talking about

App store revenue:

$1.2bn from fortnite alone in a single year.

$64bn overall in 2020

This is NOT counting the fees developers have to pay per year.

So we're looking at around 7% of total current company value on the stockmarket. (excluding any knock on effects). For the turnover to be this high in only one of the three consumer business areas is unusual.

Add in the other things the EU are eroding such as the program you have to be part of (that also forces a percentage payment) of devices that use lightning connectors. (instead forcing them to use the superior usb-c connection method they signed up to).

ASUS patches ROG Armoury Crate app after researcher spots all-too-common flaw

Slipoch

Not the only problems

They are using nahimic drivers which are essentially malware.

The system also overrides your settings when new drivers are released and re-activates the drivers.

'Not great, but usable': GNOME desktop boots on Asahi Linux for Apple M1

Slipoch

Re: Great work so far

Dunno if it is the best arm hardware given that the fastest supercomputer out there is using completely different arm processors. Also in indie benchmarks for video processing using non-accelerated video it was far slower, same with unaccelerated computations (some like compilation have specific acceleration)

Also it will be interesting to see if the linux guys can use the accelerator chips in the M1 for video decoding/encoding etc.

Another possible issue is that there have internal debates at Apple on locking out alternative os's from the m1 and restricting the boot to stop them.

Microsoft has gone to great lengths to push its tech, but survey suggests many devs slipped through the .NET

Slipoch

Given that WPF actually works in more situations than UWP, is it any surprise?

.net was rubbish until 4.5, when it finally became useful and didn't have too many broken functions (ports <= .NET 3.5 were irretrievably broken)

.NET core is pretty good and being able to package the specific .NET core version with your project is excellent.

That said, if Borland had managed to hold onto their programmers and keep going with builder, well it would be a different story, embercadero's verison is a buggy nightmare to install with so many issues, just getting it to run is a PITA.

Streaming mad: EC charges Apple with abuse of dominance, distorting competition in Spotify case

Slipoch

Yes, however the issue is they are forced to pay for these services even if all they want to use is a payment system.

Automatic updates? sorry that's not a separate area, also as a small provider Apple wanted to up the cost to us based on how many updates we did.

Review process - You mean the one that missed all the ripped-off apps? or the virii infected ones? or just when they supplied that code to the Russian and Chinese governments?

Placement in store catalog - yep that's how a store works, they put product on shelves and sell it at a marked up price. In this case the seller isn't allowed to sell it to any competitor for a lower price. (anti-competitive)

Promotional activites - yup like any brick and mortar store, although if it is without your payment/permission then it cannot be used as a way to justify a higher cut or charging you more.

Also FYI Retail stores typically make ~5-15% on games (depending, sometimes they do bulk deals like epic does to get a lower overall price), consoles are lower margin. Why do you think most gaming stores started selling plushies etc. even prior to steam et. al.?

In fact in the store I worked for the vast majority of funding actually came through being paid to advertise a launch or the front window display.

Slipoch

Apple responded to El Reg!!!!!??????

do {

subjectLine += "!!??";

} while(true)

Apple's macOS Gatekeeper asleep on the job: Exploited flaw put users 'at grave risk' of malware infection

Slipoch

Re: Why would they?

The difference between these arguments is that MS considers an in OS change a major version change, whereas Apple considers a new OS a major version change.

So if windows 10 is kept up to date you are looking at a far longer period of support, especially considering 7 still had security updates even after 8 came out, and kept getting them for 11 years after release.If you are on some of the more specialised branches (embedded scientific devices etc.) you are still getting support patches today.

But can it run Avid? The Reg hands shiny new M1 MacBook to video production pro, who beats it with Blender, Handbrake, and ... Hypercard?

Slipoch

Re: Incredible

A few comments - The M1 has a dedicated x86 interpretation chip, so the performance should be pretty much there except for higher-end applications which are utilising the more powerful assembler instruction sets for x86/64 chips.

> without the user needding to choose x64...

? where would you normally choose x64?

>m1 processor forcing change

Maybe on intel ceo, NVIDIA was already trying to acquire ARM prior to the M1 announcement, let alone release. Same with Qualcomm. Unsure what you mean by the Samsung A11 comment, Samsung do not make CPUs.

It will be interesting to see where it all goes from here regardless.

Slipoch

it's not software x86/64 emulation

" at no stage did I notice any emulation overhead"

Because there is a dedicated x86 64bit emulation chip (there is also a dedicated h265,prores etc.)

Rosetta 2 is not software emulation, it is a hardware based translation, hence the short lifespan as I guess they don't want to include the chip in future versions.

1 downside I see nobody mentioning is the SOC limitation of being limited to the one hard drive (serial lock as well as the damn thing being soldered in). Now in most systems this would not be an immediate issue, but when Big Sur is using 1.5TB of HDD temp space per day just for web browsing, and the fact the hdd is a smaller ssd without a long warranty, this means the longevity of the device is severely reduced. (<= 2 years).

Also your reference to modern family is the exception rather than the rule in professional environments for video editing. From the people I know at dreamworks, ILM etc. no-one uses macs for movie editing. And from some of my mates in tv, very few places use them there due to the hardware limitations (8 bit colour output forced by the OS).

We'd rather go down in Down Under, says Google: Search biz threatens to quit Australia if forced to pay for news

Slipoch

Lets not forget the first search engines were create din Australia and until they were sold they kicked google's arse.

Lenovo reveals smart specs that let you eyeball five virtual displays, with strings attached

Slipoch

For seedstock cattle data, this might be the minimum number of screens.

Reading El Reg while working from home? Here's a pleasant thought: Kaspersky says 1 in 10 of you are naked right now

Slipoch

Irony

Quite ironic coming from a company that uses a freely available whitelist for its heuristics, instead of using actual heuristics and ognores a user defined exceptions for said test.

Maybe get your own basic functionality fixed, actually start detecting some intrusions, then mm aybe someone will listen to you.

Salesforce to buy Slack for $28bn in cash, shares – and vows to make it the new face of Customer 360

Slipoch

The saga begins in a witchery way

*sits down with a thump*

[random underling]

"Are you ok?"

[IT professional]

"I felt a disturbance....it was like a million it professionals all cried out in disgust and horror"

[random underling]

"But isn't SAP the evil one?"

[IT Professional]

"Salesforce is merely the lesser of two great evils, and I do not believe in choosing any evil, even the lesser evil. Better to not choose."

Last chance to grab a Pixel 3A off Google's UK store with 4A successor around the corner

Slipoch

Re: Apple product support

I only stopped receiving updates on the s6 after 6 years. I didn't buy it new either.

Full stack, C++, and backend developers in demand in this week's job openings

Slipoch

Re: Backend in JS!?

Joomla is a great example of why popularity doesn't matter in this debate, it accounts for about 0.5% of CM website, but is 1-2% of the hacked ones. Showing really poor design and security.

The last couple of JS library issues were both included in standard Wordpress installs and you could attack them using buffer overflow attacks to then execute script command, unsure if the other reply to this response would have stopped that as it would be executing inside the library server-side.

My big point was that a LOT of JS frameworks and CMS's include insecure libraries to do trivial things that are obsolete, such as the padleft library for wordpress which compromised 350+ million websites.

Particularly since padleft can be done natively in js and has been available for some time.

Record-breaking Aussie boffins send 44.2 terabits a second screaming down 75km of fiber from single chip

Slipoch

Re: For what?

If you were lucky enough to get the original FTTP/FTTH you can do around 4Gbps on current plans, capable of so much more currently, tack this on at either end and you have such fast speeds you end up in enterprise areas much easier and cut out the middle-men.

Besides Australia makes a ton of money each year off our patents with Wifi, this'll be something else the govenrment can fire the inventors of then use the profits to help rugby.

The iMac at 22: How the computer 'too odd to succeed' changed everything ... for Apple, at least

Slipoch

Sorry guys, the iMac was riipping off the SGI boxes before it like the o2 and indigo's coloured and shaped chassis.

Hell they even took Macs to the gfx and vfx conferences prior to launching these. No-one took much notice of them because they couldn't do anything compared to the other machines.

There's something fishy going down in the computer lab

Slipoch

Ahh the joys of substitution

I once did something similar but at a much lower level in the pre-word days.

I reprogrammed the keyboard mapping on boot, so that some letters were whole verbs and others nouns and then joining words like and and the and a.

So someone would type in 'the' and would get something like 'yabbie pumps anonymous', someone would type a sentence and look up to see 'what you enjoy are yabbie pumps after dark with goat hampsters'

They never caught me.

Excuse me, sir. You can't store your things there. Those 7 gigabytes are reserved for Windows 10

Slipoch

What about when the temp files bork windows?

I imagine MS is going to secure this so users Cannot delete temp files. This will cause major issues when temp files cause Windows corruptions

Samsung needs to eat itself, not copy Apple's X-rated margins

Slipoch

Thats just a tupelov too far...

Turnbull's Transformers lash government IT mavens over spend

Slipoch

oh dear lord

"Centrelink run an IBM Model 204 database management system first used commercially in 1972."

Please not PIC, please not PIC, please not PIC.

Sad thing is when I collected my unemployment money back in the day I had to point out to them the pointer errors and instruct staff how to use their own program. Yet I couldn't get a job there even with more frontline customer service experience than they had.

Slipoch

The update to the welfare payments system is not actually updating it, but using SAP as a wrapper around the old windows wrapper which wraps the old DOS system.

QANTAS cuts AU$4,000 from price of Mac Pro

Slipoch

Reatil NSW & ACT law

I have worked for 16 years as frontline customer contact point. Over those years I have had numerous dealings with fair trading and advertising law.

Other states may differ, but I am certain that in NSW and in ACT if you advertise the price and it is incorrect the first item bought per person MUST be at the advertised price (possibly legally all of them may have to be at the ad price), you must inform the customer the pricing is incorrect at the initial sale as well.

If payment has been accepted (even if refunded later) then the contractual obligations apply for the supply of goods for the price, the merchant may choose not to sell something to a customer BEFORE taking the money and must notify the customer that they are choosing to refuse sale.

Quantas could also get done for false advertising and possibly bait & switch advertising (for changing it after the fact). Another aspect is that if a retailler sells at a massively below market price item, they must have enough supply for the estimated demand (otherwise it falls under bait & switch rules) or notify consumers of available quantity and limit per customer.

Aussies stumped reading the phone bill

Slipoch
FAIL

KFC stats

Ah another poll only done in sydney, never before have i seen such breadth of ignorance as in Sydney.

Broadband leads to drug abuse, say US boffins

Slipoch

US incompetence

Ignoring the blatant disregard for reality that this article has (correllation != causation et al)

If online phamacuticals were on the increase maybe....just maybe that's because they cost so much in the US.

Some of the Asthma medication I buy in Aus for $5 costs over $100 in US, and with no government health care or subsidies at all can you blame them?

In some states, the US actually falls behind the third world in medical care, kinda sad.

To the some of the above who decided to make it a comment about illicit drugs: Marijuana has an adverse reaction in about %30 of people, I personally know someone who is now permanently sectioned with delusional schizophrenia off it, and that was his first hit (home grown, given to him by his father who smoked), typically it is the other active ingredient/chemical in weed that causes these (CBA or something like that)

If you also look at crime rates where heroin, cocaine and marijuana are tolerated they are far higher than prior to the tolerance. please note that these countries (Denmark in particular) do not count many (sometimes any) crimes as being drug-related. Thus the numbers of drug-related crimes seem to drop.

Oh and I believe Britain actually started banning drugs way before the US, I could be wrong however.

F*ck you, thunders disgruntled fanboi Apple user

Slipoch
Joke

Joke

There's a Linux penguin, a fanboi, and a Windows luser in a plane, and the pilot says, we're carrying too much weight, one of you has got to go, and the fanboi says, well, I can't jump because...

The world wants me to innovate more and resell the same crap re-badged over and over again, cause that's what innovation is, hey what's xerox doing?

Windows luser gets all frenetic and says "But I'm the standard! I should be deciding who will jump! and how high! and then they should pay me royalties for it!"

The Linux penguin looks at both of them and jumps from the plane in a fit of suicidal despair, lest he become as detached from reality as his two companions.

The plane crashes because it's still overloaded.

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2022