* Posts by foxyshadis

454 posts • joined 17 Oct 2006


India drops the bar on e-commerce seller's listings: You want to sell it? Tell us where it came from from then


Re: We need those rules too.

Sounds like it was a third-party seller, not Amazon Prime. Amazon washes their hands of the matter if you buy something outside their warehouses.

Motorola Moto G 5G Plus: It won't blow your mind, but at £300 we're struggling to find much to grumble about


Likely to be supported

FWIW, despite everyone doing their best to convince me that Moto drops their phone support the day they release, they've kept up with both security updates within 1-2 months and major OS updates within a year for me. (Just got Android 10 on my G7.) Samsung isn't even close to that.

Nokia 5310: Retro feature phone shamelessly panders to nostalgia, but is charming enough to be forgiven


Re: cool

RAM isn't listed for the original phone; that 30MB is internal storage, and no one knows how much RAM. New one has 16MB storage, 8MB RAM. GSMArena's specs have weird gaps like that, where people have to shove multiple things into one field.

Companies toiling away the most on LibreOffice code complain ecosystem is 'beyond utterly broken'


It's not even on by default yet.


I'm probably one of the tiny handful of people on a site like El Reg that actually likes the new Ribbon interface. I'm glad they finally implemented it, and I feel it's improved my productivity, despite two decades of using OOo/LO.

Also, if you have ever needed charts in Calc, those are MASSIVELY better now than at fork. Like, a whole world of betterness. Charts went from being broken and useless to being better than Excel's.

The end really is nigh – for 32-bit Windows 10 on new PCs


Re: "Buyers reliant on 32-bit apps don't need to worry"

Those are 16-bit ActiveX controls then, lots of VB6 apps were 16-bit or mixed 16/32-bit, as insane as that might sound. Then again, VB6 is from 1998, after all, and many businesses still ran Win 3.1 then.

The silliest thing Microsoft did from Win8 on was to get rid of XP Mode, it made a lot of Win7 transition headaches much easier.

Wi-Fi of more than a billion PCs, phones, gadgets can be snooped on. But you're using HTTPS, SSH, VPNs... right?


Re: "MitM attacks on unencrypted network traffic do happen"

Someone could park outside your house and spew dissociation packets. This vulnerability has nothing to do with public/private wifi, it's your device's failure case that's the problem.

Like other tech giants, Netflix gets govt takedown demands – and impressively, none of them involve Adam Sandler



"Americans and Brits will be happy to know that none of the requests came from their governments, so Netflix the MPAA and TV networks walling their content into their own streaming services have had full control over what you do and don't see in those countries."

Artful prankster creates Google Maps traffic jams by walking a cartful of old phones around Berlin


Re: Performance? Art?

Unless every single car in the city is now self-driving and navigating entirely off of Google Maps, and all heading in the same direction, this didn't "fuck up the city." It caused a few people using GM to pick alternate routes, probably mostly rideshare drivers, and confused the hell out of a few people who stayed on the road anyway.

And, you know, it's white hat hacking that points out a potential problem in a system in a relatively benign way.

If only 3 in 100,000 cyber-crimes are prosecuted, why not train cops to bring these crooks to justice once and for all, suggests think-tank veep


Thank you for the TED talk on how things should be, but back in the real world, how do you propose any of this actually happens? Where will all of the cyber-savvy officers come from? What budget will pay for the equipment, software, training, and salary for each department's new task force? Who will make hostile nations cooperate with our investigations? Without an action plan, a goal will never be more than a goal and a feel-good TED talk.

Low code? Low usage, more like: Add G Suite's App Maker to the Google graveyard, it's switching off next year


At this point, no one in their right mind would adopt a second-tier Google app because Google will shortly abandon and eventually ax it, and Google will abandon and eventually ax every second-tier app it makes because no one in their right mind would adopt it. They created this bed, and they're going to lie in it until they stop treating big projects like someone's hobby project on GitHub.

You publish 20,000 clean patches, but one goes wrong and you're a PC-crippler forever


Malwarebytes is not the only antimalware on the planet; there are other consistently top-rated ones, though I've since come to trust MB again. Someone who burns you has to earn that trust back.


Yeah, I got an emergency panicked call and had to uninstall MalwareBytes from someone on Saturday morning. Apparently by the time I was done, the update was pushed, but there was no way to actually update, because it was chewing up over 12 GB on a 4 GB laptop, continuously allocating more, and it took ten minutes to be able to kill the damn process via task manager, after first wasting time trying to stop the service cleanly. It's going to be a bit before I trust MalwareBytes again, I'm not going to reinstall it just because they say the one-off goof is fixed.

Microsoft's Windows 10 Workstation adds killer feature: No Candy Crush


Re: Why candy crush in pro?

It's obvious: Customers demanded it. Not just a few, but an overwhelming number of corporate(!) and high end home customers demanded that Microsoft's Pro OS include everything the home version does. Most higher-specced OEM systems only come with Pro, no Home option available, so anyone just buying a system for themselves would also expect at least everything in Home. And some people just want the top edition of everything despite just wanting to browse the web and play games.

They set easy ways for IT departments to lock things down, but it turns out executives like to play games too.


Re: Consumer refers to who's paying

"That's only true if you had a Windows 7/8 version to upgrade from, and you upgraded in the allotted time. Otherwise, you pay for it upfront, then pay for it again through telemetry."

Just yesterday I was still able to upgrade and activate a few systems to Windows 10 that had never been reserved (domain policy preventing any hint of upgrade), by starting a fresh install and plugging in the product key. Did a couple OEM and one retail, same result. Even if you'd rather upgrade than start fresh, you can still find multiple ways (the "accessibility technologies" link is the most popular).

It's patently obvious that Microsoft actually wants everyone on 10, come hell or high water, and all those deadlines are just there to get some holdouts nervous enough to do it.

If you've ever wondered whether the FCC boss is a Big Cable stooge – well, wonder no more


Re: Pardon?

Might just backfire, if the earnestness to please his corporate masters brings more damnation and regulation on them than if he'd just left well enough alone. Even if he was just doing exactly what they told him, they can still leave him to twist in the wind like a good scapegoat.

I doubt he even got more than vague verbal promises of future employment from anyone. He doesn't seem like the sharpest tool in the shed.

Audio tweaked just 0.1% to fool speech recognition engines


El Reg is showing a pattern here

While this is a major step up from the last two "machine learning fail" studies The Register has breathlessly reported on -- at least this time it's not just testing some crap created from scratch by the researchers themselves -- they chose DeepSpeech, of all the speech-to-text algorithms, widely considered so bad that this might be the first study to actually bother testing it. It's no surprise that it fails so badly. Even if they have to confine themselves to open source (which makes no sense in this case, since they neither analyze the algorithms nor modify the code), CMU Sphinx and Kaldi are the gold standards.

No one cares how DeepSpeech fails, it's widely regarded as a failure. Waste of time testing that. Wait until it has another year or two to mature before it's worth testing.

Two-day Bitbucket borkage has devs tearing their hair out


Re: Who is the Vendor?

You've never heard of Dell EMC, NetApp, Nexenta, IBM, HPE, Pure Storage, etc? Even when you own and operate all of your own gear, you still have a vendor that you occasionally make a panicked call to.

It gets worse: Microsoft’s Spectre-fixer wrecks some AMD PCs


Re: Redmond office hours only

They don't; this is people pre-patching either out of an abundance of caution, or to be guinea pigs. (The life of a sysadmin.) If this patch goes live on Tuesday, though, Microsoft is in for a whole world of hurt at this rate.


The problems are happening on Athlon 64s -- those CPUs that forced Intel to abandon Itanic in the 2000s -- not the ancient 32-bit ones that you could overclock with a pencil.

Seagate's lightbulb moment: Make read-write heads operate independently


Re: Silly suggestion

Two volumes is what I mean by two (logical) drives, it's exactly the same scenario: It pushes the logic all the way up to the application or OS, which still won't be any good at handling it without specialized knowledge of the drive it's interacting with -- when was the last time you saw an OS or application that was any good at scattering files across multiple volumes evenly? Most of them will just store all the most-accessed stuff on one and hardly anything on the other, reducing access times instead of raising them.

Whereas they could just stripe every couple of megabytes and create a reasonable default, and if they really wanted to go hog-wild, keep statistics to try to even out access patterns over time by moving files around disks.


Silly suggestion

Why on earth would you need to expose it as two drives? SATA/SAS already queue up tons of requests and the drive is already allowed to service them in non-linear order, as long as it's within the timeout. That's one of the pivotal parts of AHCI that makes it a huge improvement over ATA (Legacy) mode. If you have a parallel workload that wouldn't benefit from the improved random workload, then you can gain no benefit out of the dual heads at all anyway.

Displaying it as two hardware drives just sounds like a good way to confuse the hell out of most operating systems. Just internally split it into zones of some megabytes each, that'll nicely split up data. I suppose include an initialization command so that the OS can see both if it REALLY wants to micromanage it.

Your palms are sweaty, knees weak, arms are heavy – you forgot about Europe's GDPR already



I've had one wag tell me it stood for German Democratic People's Republic, a la the DPRK. Sadly, he couldn't find a way to shoehorn Socialist in there, but I'm sure it wasn't for lack of trying.

Merry Xmas, fellow code nerds: Avast open-sources decompiler


If you're at the point where you need a decompiler, it's because you have no access to the source and you never will, so all talk about how much better having the original source would be are absolutely meaningless.

Bitcoin price soars amid technical troubles for exchanges


Re: Not surprising

Someone traded 14,400 bitcoin for... something. No one knows why, for what, for how much, or with whom. There's no way to know what they got in return, but the transactions were immediately "mixed" (laundered) so that might explain a few things. Someone was willing to pay the ludicrously high BTC transaction fees thousands of times to make that money untraceable.

Oregon will let engineer refer to himself as an 'engineer'


Re: Oregon is a nanny state

"What about after hours service?"

Starting around 2010 most stations I visited after midnight just straight up turned their pumps off. They'd accept credit cards, but pump a grand total of five cents of fuel before cutting off. In one town I coasted into on fumes (Gilroy, California), EVERY station in town did that in 2012, and I had to pray I'd make it to the nearest truck stop. Maybe it's a fraud-prevention thing? I don't know.

So apparently it's not human attendants making service suck, it's the owners.

NiceHash diced up by hackers, thousands of Bitcoin pilfered


Re: Entire contents of bitcoin wallet pilfered?

Everything in it gets transferred to some other anonymous wallet. There is no undo button.

Tesla buys robot maker. Hang on, isn't that your sci-fi bogeyman, Elon?


If you can't beat 'em, buy 'em.

SSL spy boxes on your network getting you down? But wait, here's an IETF draft to fix that


The history of networking in a nutshell:

"it's worth noting that security considerations to this approach have yet to be considered: the relevant section is listed as simply "To do.""

Parity calamity! Wallet code bug destroys $280m in Ethereum


Re: One coin worth $293

The devops guy didn't steal them. He accidentally nuked the code to decrypt them, which apparently can't be restored, so now they're just random bits in the wind.

It's as if some web server had exposed an initWallet() function that destroyed and recreated one, and an initWallets() that destroyed and recreated all of them. And they were both 100% public. The facepalm is strong with this company; the fact that he was involved with Etherium's founding is a strong knock against Etherium itself at this point.

Can you get from 'dog' to 'car' with one pixel? Japanese AI boffins can


So they created a badly-trained machine learning algorithm, limited it to 32x32, and then created an easy attack against it? This is the kind of spam publishing that floods the lower-tier journals. I'm not even remotely interested until it's at least tested against one of the dozens of existing commercial machine learning algorithms.

It might have been relevant in the 90's, when algorithms actually did downsample to such an extreme just to work at all in the processing power available, but this has literally zero implication on anything today, it's pure wankery by academics way out of touch with the state of the industry.

Dell forgot to renew PC data recovery domain, so a squatter bought it


Re: They do have a clue

If IT says "no" to supporting a piece of software that the business bundles, you have much bigger problems. I can't believe Michael Dell wouldn't just summarily fire anyone who would flat out refuse to support a legit business need.

Some manager in the chain probably got a bonus from giving the support contract to a third-party and saving Dell from having to hire or buy anything, though.

NetBSD, OpenBSD improve kernel security, randomly


It's pretty trivial to live relocate as long as certain conditions are accounted for, as hinted in the article: Turn entry points into mere trampolines to the real code. When you're ready to cycle the code location, copy the code to the new location, rewrite the trampoline, and tear down the old code when you're sure no one is executing it anymore. Code's changed and no caller knows the difference, just like a stable API/ABI.

Dev writes Ethereum code for insecure SHA-1 crypto hash function


Why does it even matter?

Only these nutty Etherium wonks would raise hell over the fact that someone put another tool in the toolbox, even if it's only rarely going to be used. There are lots of uses of SHA-1 (and MD5, and CRC32) that aren't even related to security at all, so the push to phase it out in favor of something stronger is a lot less compelling. Do they cry that every other major programming language's standard library also has an implementation?

Microsoft concedes to Mozilla: Redmond will point web API docs at Moz Dev Network


Re: Without examples, good English doesn't tell you much

MDN's big strength compared to crap like W3S is that it includes a number of in-depth examples, documentation on inheritance order and how modifiers affect it, and other information that can help both novices and pros track down problems and solve tricky things more efficiently. It's not just the fact that they write English clearly, they also write code clearly. (And yes, they do integrate good stuff from Stack Exchange.)

Unlike MSDN, they aren't written primarily by first-year junior interns and only reviewed by senior developers when they want to, and unlike W3S, they don't just give a barely surface-level overview of with a trivial 3-line example of usage.

FCC Commissioner blasts new TV standard as a 'household tax'


Re: Is anything ever obsolete?

> The issue is not the age of the existing digital standard, it's the time taken since the last time that people were forced to upgrade their sets or settop boxes on pain of them no longer working.

Like I said, what's the point? By the time the standard is hashed out, ratified, implemented, and finally cut over, you're looking at a minimum of another decade, maybe even two. But thanks for ignoring that.


Re: Is anything ever obsolete?

That's mainly because the standard was way ahead of video technology of the day; it wasn't until the late 80's that televisions could even show off the full fidelity of the standards. Admittedly, for its time, both NTSC and PAL were good technology that used an enormous amount of bandwidth to make up for their simplicity. Raw NTSC is about 50-100MB/s, depending on how accurate you want color to be, meaning that you could store a whole 1.5-3 minutes of raw video on a DVD-9. It took a LONG time to outgrow that, but once HD showed up, that was that.

On the other hand, there's now lots of investment in continually improving the state of the art, and where ATSC could meet the needs of HD easily, it's again not going to work for 4K or HDR/deep color. This changeover is as much consumer-driven as industry-driven.

It's not like ATSC 1 barely came into being and now it's time to toss it, it's over 20 years old as well (though the H.264 extension is only 10 years old). By the time the new standard is ratified and anyone starts broadcasting with it, we're probably looking at another decade at least. There's only so much future-proofing you can put into digital technology with fancy algorithms, since it still has to be cheap enough to purchase early on.

Magic hash maths: Dedupe does not have to mean high compute. Wait, what?


Their trade secret route to reducing short-lived file overhead

Making every hash default to all zero, and actually hashing dirty blocks for real during periods of lower disk contention or after a set time expires? Seems straightforward enough. (Obviously also communicating with the OS, though interesting possibilities if you could get the OS to send a Trim when a file is deleted.) That would suck for blocks that randomly do hash out to zero, but they just get put in the "sorry, you don't get dedup" bucket. Even a 32-bit key pretty much obviates any need to care about that, losing one billionth of a percent of theoretical efficiency overall.

ZFS was an amazing feat of engineering, but "overengineered" doesn't even begin to scratch the surface. All of its competitors have struggled to achieve 90% of its efficiency while reducing the huge disk and memory footprint it requires, and it looks like X-IO might have really cracked open the nut.

Sadly, this just means NetApp, EMC, or Oracle is going to buy them out and silo their tech forever.

Dumb bug of the week: Outlook staples your encrypted emails to, er, plaintext copies when sending messages


Re: I've recently seen a current version of Outlook...

Microsoft went all-in with better quicksearch over threading, topics, manual organization and tags, etc, after Google completely blew away the idea of manually organizing mail for most of the population. It turns out that only about 1% actually care that much, the rest just want some way to access it. Granted Office 2007 sucked balls in almost every way, but most of the Outlooks since 2010 have been relatively solid if you don't need it to act like a 90's Usenet reader.

It is obvious that investment has stalled for a long time, though; the answer to most Outlook feature requests has been "Use Sharepoint!" for a decade now. Great, now I have two problems.



Microsoft claimed the exploitation of this bug was "unlikely" in the wild.

Mostly because S/MIME is an essentially dead protocol, that only a handful of people have ever bothered with....

Violent moon mishap will tear Uranus a new ring or two


Re: Well, i hope it happens ...

Did the geologist also talk about Atlantis? Because that scenario sounds about as likely to happen as Godzilla climbing out of the waters to destroy the island. In case you hadn't noticed, the other Hawaiian islands that were formed by the same moving fissure are all still there, slowly eroding away. Please look up the "Hawaiian–Emperor seamount chain" for a more realistic idea of what happens to the island chain as the fissure moves.

Well, debugger me. Microsoft's BSOD fixer is getting a makeover


If windbg wasn't supposed to be used by beginners, then !analyze -v wouldn't exist. Think about that for a second, your argument is essentially that all conveniences should be stripped away and everyone, pros and neophytes alike, should be made to suffer more, because suffering through it is what makes you a pro.

Far better to get beginners used to working with windbg and ease them into the more complex parts of debugging so that some of them can become pros. Anyone who would use windbg in the first place is already someone who wants to be a pro anyway, it's not exactly a mass-market application.


Re: Know your market

So what, just turn the ribbon off if you hate it. Meh, I'm actually willing to see what it looks like in action instead of condemning the mere idea of change, otherwise I'd be using cdb instead of windbg.

Google routing blunder sent Japan's Internet dark on Friday



You managed to completely miss the point with both replies. No one was asking for some kind of historical perspective on the protocol, no one cares, it sounds like you're trying to excuse away problems by claiming that there's nothing we can do because it was designed years ago.

The whole point of the posts you're replying to is asking WHEN are they going to be fixed, so that a rogue actor can't maliciously bring down the internet easily, even if for a short time. (And ranting that no one seems to care enough about a gaping hole to do anything.)

Hell desk to user: 'I know you're wrong. I wrote the software. And the protocol it runs on'


Not just the late 90's; I did that in 2013 or so with relatively recent HP gear. Brought a desktop into the datacenter to act as a network capture device, plugged it in, and POW. No auto input switching. Fortunately, it wasn't hard to scrounge a power supply, but you certainly learn your lesson after that.

Confessions of an ebook eater


Re: The best way to acquire a programming skill

I mean that works if you have lucid API documentation. If it doesn't, you're basically spending weeks spelunking the source code and/or throwing calls against the way to see what works. And hopefully writing the API docs yourself, since no one else bothered to.

The future of Python: Concurrency devoured, Node.js next on menu


Re: Async not always easy

Aside from shelling out, Python also has fully-working dll/so support, with the ctypes library or one of its pretty wrappers, saving even more overhead versus spinning up an executable and parsing its stdout. Practically all of the important libraries have cpu-intensive operations in compiled .pyd (which is just a dll/so), and quite a few wrappers exist to call out to standard libs.


Re: Python 3 split over?

Programmers who consider Unicode an "unnecessary incompatibility" are the reason why so much software is fundamentally broken anytime it encounters anything that isn't Latin-1. I don't know about you, because you probably never had to touch foreign words or names at all, but Code Pages were a damned nightmare to anyone who actually wanted to do things right.

It really isn't that difficult to figure out bytes vs strings. You guys have had 10 years to wrap your heads around it, and all you have to do is do the right thing. It's not like Python 2.7 is going anywhere, literally all you have to do is convert your shell files from calling python to python2 to make them work, but you're too incompetent to even do that!

This is literally no different from the worthless sysadmins that still complain about Perl 6 and Linux 3, because it violates their comfortable safe space, and they just want to get paid to never have to learn anything ever again.


Re: I'll wait...

Good luck with that; PHP seems to be the only language interested in major versions anymore, and its major versions would be minor versions to any other language. Python is probably going to be asymptotically on 3 forever.

Vaping ads flout EU rules, even if to promote healthier lifestyles


Re: opponents are using guerrilla tactics

I'm not surprised at all that the recipients of billions of pounds a year in taxes to distribute as they see fit are fighting tooth and nail to keep the taxes coming in.



Biting the hand that feeds IT © 1998–2020