Re: FSF
Looks as though you didn't actually read the criteria.
Posts by Evan Essence
280 posts • joined 20 Dec 2010
The fork? Node.js: Code showdown re-opens Open Source wounds
Friday 13th May 2016 09:35 GMT 
FSF
I'd just like to put up a little reminder of this article:
UK govt: No, really, we're not banning cryptography
Brown kid with Arab name arrested for bringing home-made clock to school
Wednesday 16th September 2015 11:46 GMT 
Wired
Nice story from Wired (linked from the Guardian's report): How to Make Your Own Homemade Clock That Isn't a Bomb.
Samsung's spying smart TVs don't encrypt voice recordings sent over the internet – new claim
Still using Adobe Flash? Oh well, get updating: 15 hijack flaws patched
'Boutique' ISPs: Snub the Big 4 AND get great service
The firm that swallowed the Sun: Is Oracle happy as Larry with hardware and systems?
Hominid ancestors beat humans to the drinks cabinet, say boffins
Chromecast video on UK, Euro TVs hertz so badly it makes us judder – but Google 'won't fix'
MI6 oversight report on Lee Rigby murder: US web giants offer 'safe haven for terrorism'
Google's Chrome to pull plug on plugins next September
Patch Bash NOW: 'Shellshock' bug blasts OS X, Linux systems wide open
Thursday 25th September 2014 05:25 GMT
Not in 4.3.11, dating from April
My Ubuntu system uses bash version 4.3.11(1)-release (says "bash --version"). My executable dates from April 23 (says "ls -l `which bash`).
Yet the test in the article shows my bash (from April) isn't vulnerable to Shell Shock.
The advisory says bash through 4.3 is vulnerable. I'm not entirely clear what "through" means, but evidently some time after 4.3.0, there was a fix released such that 4.3.11 is not vulnerable.
The advisory makes it clear that the recent bug discovery was really made only recently, so I'm very puzzled as to why 4.3.11(1)-release isn't vulnerable.
Was the Shell Shock bug fixed accidentally, somehow, before April 23? Or did someone spot the exposure and quietly patch it over? Who made the fix? Someone at Bash Central, or Debian, or Canonical? Which versions, exactly, after 4.3.0 are not vulnerable?
Captain Kirk sets phaser to SLAUGHTER after trying new Facebook app
BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled
Monday 21st July 2014 11:04 GMT
Re: Perhaps the BBC might want to come clean about the full extent of the problems?
I think the amount of information given out during and after an outage is inversely proportional to the size of the organisation concerned. Expect nothing from the Beeb, even assuming they know, or will know, the reasons themselves, considering there are practically no in-house techies.
Listen: WORST EVER customer service call – Comcast is 'very embarrassed'
Wednesday 16th July 2014 02:27 GMT
Re: Amazing patience
The story says he only recorded the last eight minutes or so. There's nothing great about the quality – you can hear from the room echoes the phone was on speaker and the recording was made with a microphone. Giving the rep some rope? Hardly, when the rep repeatedly interrupted him.
UK Parliament rubber-stamps EMERGENCY data grab 'n' keep bill
Tuesday 15th July 2014 19:33 GMT
Re: Is their a list ?
There's a list now on the Open Rights Group blog.
I confess I hadn't heard of most of them, but there was no great surprise about the ones I had heard of. David Davis, of course, and – yet again – Caroline Lucas is a national hero.
The only surprise to me was Nadine Dorries, but I suppose she's nothing left to lose, really.
Super-snoop bid: UK government hits panic button on EU data retention ruling
NHS slammed for MAJOR data blunders as scale of patient info sell-off is revealed
Wednesday 18th June 2014 12:59 GMT
Re: Technical solution
I think they have a purely financial agenda
That's not true. From http://www.hscic.gov.uk/dles:
The HSCIC is publicly funded and we therefore operate on a cost recovery basis. We do not charge for data itself but do apply charges to cover the costs of processing and delivering our service.Check out the charges. They're not going to make a profit on this.
Wednesday 18th June 2014 06:41 GMT
Technical solution
That the HSCIC actively pursues a technical solution to allow access to data, without the need to release data out of the HSCIC to external organisations.
This. It should be right up at the top of the list of recommendations. Do this, and the other recommendations become less vital, or even irrelevant.
All "clearly identifiable", "anonymised" or "pseudonymised" data should be held strictly on HSCIC premises and equipment, and only processed at arm's length, with incoming queries and outgoing reports strictly vetted by the HSCIC.
All truly aggregate data can be openly published, in accordance with the government's welcome commitment to open data.
There's a prevailing tacit assumption held by many bureaucrats and politicians, which should be challenged, that the only way to handle data is to pass it around on USB sticks, or DVD discs, or something, and process it with Excel. It's this kind of ignorance that leads to unencrypted laptops full of sensitive data being left on trains.
Still using e-mail? Marketers say you're part of DARK SOCIAL
Scientists warn of FOUR-FOOT sea level rise from GLACIER melt
Privacy bods win court battle: UK HMRC must 'reconsider' silence over FinSpy spyware probe
Tuesday 13th May 2014 09:29 GMT
Re: Ha ha ha
Ha ha ha, indeed.
There's still time to sign the 38 Degrees petition before it's handed in to HMRC tomorrow. Over 250,000 signatures!
NHS patient data storm: Govt lords SLAP DOWN privacy protections
Friday 9th May 2014 07:34 GMT
Wired
Data's not being sold
The article you reference says:
Who can access the data?So it can be sold.Information from your Care.data record will be made available to organisations within the NHS (such as commissioning bodies) but also outside of the NHS, potentially (subject to approval) to pharmaceutical companies, health charities, universities, hospital trusts, think-tanks and other private companies.
Thursday 8th May 2014 17:00 GMT
Re: Please share my medical details, far and wide.
So for me, If I'm mangled in an accident, I want any hospital in the Country to be able pull up my records and see this. I also want my record out there being used in any studies that may help to find medications that bypass my condition.
care.data and the Summary Care Record (SCR) are two entirely separate projects.
Your first sentence quoted refers to the SCR; the second to care.data.
UK.gov data sell-off row: HMRC denies claims it'll flog YOUR private info
Wednesday 30th April 2014 12:59 GMT
Data Sharing is not Open Data
@open_paul
The similarly-named, but independent, Open Data Institute makes the point:
One of the disturbing trends that we’ve noticed over the past year is the government justifying data sharing as if it is part of satisfying wider open data policy.Data sharing is not open data.
Maybe you should have "reached out" to them. Or to the also similarly-named, also independent, Open Rights Group.
Wednesday 30th April 2014 09:59 GMT
Petition
I suppose it's just a coincidence they've made this announcement when there are currently over 170,000 signatures on the 38 Degrees petition calling on HMRC not to sell off our tax details. Hmm?
Up to 500 GP practices to test plans to share patient data
BBC hacks – tweet the crap out of the news, cries tech-dazzled Trust
Wednesday 30th April 2014 10:33 GMT
Re: How to make news popular?
Have you seen the BBC News page recently? I can't believe you have. Most of the space is "Features", "Magazine", "Most Popular", and other dumbed-down stuff. What's "Most Popular" right now? The Return of the Dimpled Pint Glass.
One good thing - they block people in the UK from looking at bbc.com, because that's even more dumbed down.
DeSENSORtised: Why the 'Internet of Things' will FAIL without IPv6
Thursday 24th April 2014 11:21 GMT
Re: Networking's answer to Windows Vista
If it's non-routable IPv6 addresses you want, you want unique local addresses.
Thursday 24th April 2014 10:44 GMT 
IPv6 Forum
What's up with the IPv6 Forum site? Many of the pictures are squashed down or squeezed in and the home page is tediously long. And was there supposed to be a link there to the UK IPv6 Council?
Think-tank to infosec: You're doing it wrong
WTF happened to Pac-Man?
OpenSSL bug hunt: Find NEXT Heartbleed, earn $$$ – if enough people donate cash
Thursday 17th April 2014 09:53 GMT
Re: Too good to be true...
Ouch indeed, if true, but the Campaign Description says (also quoted in the article):
100% of the proceeds will be offered to security researchers. Any leftover funds will be passed on to the OpenSSL Software Foundation. Bugcrowd will administer the bounty at it's [sic] own expense.
