Re: CVE-2022-29972
CVE numbers aren't sequential, starting at 1. Big outfits like Microsoft are authorized to issue their own CVE numbers and have a range allocated to them.
187 publicly visible posts • joined 21 Jun 2010
"That's the first rookie error - second is not suing for defamation in the UK. That's where the big bucks are, and our lawyers will take anyone's money as they've been keen to demonstrate over the previous decades."
That used to be true; however the Defamation Act 2013 moved the balance more in favour of the defendant, making 'libel tourism' harder (amongst other things).
And in 2015 the US passed a law making UK libel judgements unenforceable.
Ethernet does not scale is largely IBM FUD, trying to persuade people that there were good reasons to prefer their more expensive 4Mb/s system to 10Mb/s Ethernet.
Words like 'deterministic' get tossed around, conveniently ignoring the fact that it is only achievable on a LAN with a BER of 0. As soon as you accept the possibility of random noise corrupting a bit, determinism goes out the window.
Some theoretical studies of ALOHA have the performance tending to 1/e, which at 37% is remarkably convenient for token-pushers. However, ALOHA isn't CSMA/CD.
It's true to some extent that in ridiculously worst-case scenarios e.g. 1000s of nodes on the same collision domain, all constantly sending minimum size packets Ethernet starts to break down.
(Digression: For Gigabit Ethernet 802.3 specified a somewhat complex half-duplex mode because the idea of publishing an Ethernet standard without it was too contentious). When (I think) precisely nobody developed a half-duplex 'repeater' later standards dropped it entirely)
So what I am going to do is what I usually do at this point, which is to refer you to the classic WRL paper - Measured Capacity of an Ethernet: Myths and Reality (Boggs et al). RIP David.
I was called to fix a printer that wasn't feeding paper. The user pointed at the paper tray, saying "it says it's out of paper but it isn't". I opened the printed, extracted the jammed paper from the fusing unit, and it sprang back into life.
"You might have worked that out for yourself, had you not changed the printer UI to Norwegian", I said, on my way out.
...or even the SMT problems we talked about with Skylake last month: https://www.theregister.co.uk/2017/06/25/intel_skylake_kaby_lake_hyperthreading/
Chips have bugs, film at 11. Might be worth seeing if AMD can patch this bug in microcode (assuming it is their fault). You'll be a long time waiting for a faultless chip of this complexity though.
systemd
'oh! DNS lib underscore bug bites everyone's favorite init tool, blanks Netflix
The idea is that you wait for your prey to come to you: so rather than send phishing mails to their place of work, you target weak spots where they may turn up. For example, web forums where they might hang out, manufacturer sites, etc.
Mine's a pint in my local with the compromised Wi-fi.
"and that is go and get the stuff for youself. Even go to other supermarkets. It isn't the end of the world."
It isn't the end of the world but it is annoying to be stuck in waiting for a delivery that doesn't arrive. And your delivery is probably out on the road somewhere, so you can't cancel it. Twitter is a useful tool, not because your groceries are terribly important in the great scheme of things but because it's a good way to get corporates' attention when they don'thave enough staff to answer the damn phone.
Going through the filing a bit: they have 40 000 students, and what Microsoft are saying is effectively "feel free to renew for another year". That works out at about $60 p.a. each, which is about what an Office 365 subscription costs. You would have thought they would have got a better discount but OTOH there are other unspecified items.
Closed on January 29, 2016 apparently.
Wikipedia: https://en.wikipedia.org/wiki/Veritas_Technologies
Carlyle Group: https://www.carlyle.com/media-room/news-release-archive/carlyle-group-closes-veritas-acquisition
Veritas: https://www.veritas.com/news-releases/2015-12-21-symantec-and-the-carlyle-group-plan-to-close
According to the parliament site: "A citizen of a commonwealth country who does not require leave to enter or remain in the UK, or has indefinite leave to remain in the UK".
So he might be eligible but more likely he is on a visa, which would have expired by now.
It is a requirement that your lifetime dose records are taken. Yes, theoretically you could do it by assigning a separate unique lifetime number that all employers and providers of dosimetry service agree on. In practice, the NI number is it: http://www.hse.gov.uk/pubns/irp2.pdf
Yes, mine too. Also innumerable henchmen who work in secret underground bases in a volcano will also doubtless have had their name and address disclosed.
"It always has been "innocent until proven guilty", and it has to stay that way, whatever you think of the offence or the people perpetrating it."
Sorry, but your argument is completely misguided. Innocent until proven guilty does not mean the burden of proof is on the prosecution on every point. Plenty of laws operate this way: for example, if the police stop you and ask to see your licence, you don't get to say "prove I don't have one". Likewise if you are speeding and claim it was because of an emergency, the police don't have to prove no emergency existed.
" I thought 'money laundering' was taking the proceeds of someone elses drug business..."
That is the conventional meaning: however, you are pretty much committing a money laundering offence when you are a) a criminal, and b) using a bank. Or on a bad day just b).
In this case when you are have mules to withdraw the cash it's not even a stretch to add that as a charge.
Lawyers for the US argued that whilst there isn't an exact equivalent under UK law, what he did amounted to fraud. The CPS probably couldn't make that stick but that isn't (legally speaking) reason enough not to extradite him.
Extradition ruling here:
https://www.judiciary.gov.uk/wp-content/uploads/2016/03/sarao_extradition_judgment.pdf
It's not such a dumb question. The answer is it really depends whether you what you have now is an ancient VAX from the 80s, or a pile of Itanium blade servers with a few TB of RAM. If the former, you could probably replace it with emulation on a Raspberry Pi, the latter not so much.
The money, such as it is, is with the people who have ported from VAX to Alpha to Itanium and would prefer to move to x64 next, and forget the whole sorry Itanium business. I wish VSI luck - insourcing a product from India, and rehiring the senior engineers that HP laid off to give it some love deserves it.