* Posts by lostinspace

23 posts • joined 21 Jan 2011

Atlassian comes clean on what data-deleting script behind outage actually did


Re: I've said it before...

There is an export function. There is also a REST API endpoint for it. We've scripted this to back our Jira instance up nightly. This is more in case we make a massive cockup like bulk deleting all tickets rather than expecting to be doing atlassians job for them though

Raspberry Pi OS update beefs up security


SSH can be enabled by mounting a newly imaged sdcard and editing a config file on the boot partition..it's documented on their website. Hopefully something similar for specifying the user?

Xero, Slack suffer outages just as Let's Encrypt root cert expiry downs other websites, services


I've never understood why certificates need expiry dates.

Given they can be revoked, why do you need to guess when issued how long it will need to exist for?

If the argument for expiring them is that hash and signing algorithms improve, them simply revoke the cert when it is considered sufficiently weakend by advances in cryotography.

So many outages have been caused by certificates expiring.

NSO Group 'will no longer be responding to inquiries' about misuse of its software


I'm lost, how is this NSO software/service any different to "normal" criminal malware or hacking? Why aren't these people being arrested and prosecuted?

Samsung commits to 5 years of Android updates... for its enterprise smartphone users at least


My laptop gets updates direct from Microsoft, and it doesn't matter what the manufacturer does. Why can't Android phones be the same and get updates direct from Google? Why do I have to wait for the manufacturer to distribute updates?

Starlink's latent China crisis could spark a whole new world of warcraft


Do existing satellite phones/internet not work already in China? What is new about Starlink except speed and latency? I imagine most people the Chinese government are worried about won't be trying to play games online or stream Netflix...

Netflix reveals massive migration to new mix of microservices, asynchronous workflows and serverless functions


The actual media streaming is their own platform - they have boxes that cache content and peer direct to ISP - it's the control and backplane that runs on AWS.

Happy birthday, Python, you're 30 years old this week: Easy to learn, and the right tool at the right time


Re: Why do some people not like python's indentation=code block container

What if I did ctrl-A and delete to remove all the lines? How would you fix that etc....?

I'm not sure being able to accidently unindent everything is an argument against it...

In Rust we trust: Shoring up Apache, ISRG ditches C, turns to wunderkind lang for new TLS crypto module


Re: Real problem mentioned first

What's more depressing is that the old farts can't see that languages have improved in the last 30years, and that maybe the thing they learnt 30 years ago and haven't learnt anything new since, isn't the best way to do things anymore.

The Google Home Mini: Great, right up until you want to smash it in fury


Re: So, plays tunes you own, alarm clocks stuff you set and listens to everything you say 24/7

It does - voice is only sent once the trigger phrase has been detected

Hate Facebook? Hate it enough to spend $9k fleeing it? Web 'country club' built for the rich


From their website: " The entire service is inaccessible from the public Internet"


Eight hour cleansing to get all the 'faggots' and 'bitches' OUT of Github


If you actually search github for "faggot" you get precisely 7 hits back, one of which is referring to bundles of sticks. The others are hardly big projects, they're all dead. This idea

seems a bit of an over reaction to me!

10m years ago there was less CO2 - but the Earth was warmer


Oh for God's sake ENOUGH ALREADY. I'm not even an eco warrior and I'm finding all this anti-environmental propaganda is getting really fucking annoying. Get a new drum or go and bang this drum somewhere else. At least most stories have a vague IT related angle but the deluge of unrelated anti-environmental stories has got dull.

Solving traffic jams with maths


Can't believe no one else has posted this - http://xkcd.com/277/ !!

Larry Page has painful day on stand in Oracle Java case


I really don't understand why MySQL is so popular. A a friend refers to it accurately as MyFirstDatabase. With InnoDB it just about scrapes into being a proper database, but for years with MyIASM tables it was orders of magnitiude away from competing with Oracle, certainly for high end transactional storage.

ICANN battled dot-word TLD registration leak bug for WEEKS


Suddenly the reason for new TLDs becomes $180,000 clearer. And what does ICANN plan to do with all this new found money?

GiffGaff boots freetards off mobile network


oh for fucks sake how hard can it be. Just put the amount of data on the contract and be done with it! You gert x tetxts, y min and z data a month, and then you can use that data how you like. All this smoke and mirrors so ISPs can offer "unlimited" data is a farce.

GCHQ code-breaking challenge cracked by Google search


It's hardly "CODE-BREAKING CHALLENGE CRACKED BY GOOGLE SEARCH". This whole thing is just marketing for GCHQ. There's no prize for solving it, or finding that page. Storm and teacup.

Google Native Client: The web of the future - or the past?


I'm confused, wasn't this invented years ago by Sun and called "Java"? Or have I missed something?

Anonymous hack showed password re-use becoming endemic


the title

This is what pisses me off, why do we need all these seperate passwords for 00s of sites?? OpenID for all the low value stuff and then a small number of secure passwords for the things that matter, along with 2factor auth, like texting a code to your phone or something.

Sure, with yahoo, google (and facebook?) providing them 35billion people now have OpenID accounts, but find me ONE site where I can use it? Even the tech sites (like El Reg) don't support it...

I'm suprised the figure is so low, I'd have thought password resuse for similar "low value" sites would be near 100%...

100s to be contacted in re-opened NotW hacking case


The title is required, and must contain letters and/or digits.

I blame the phone companies. Voicemail should be secure automatically. There should not _be_ any default PIN number. I think it is totally understandable that people didn't realise there was a PIN number set to defaults that needs changing. I just took out a new phone contract and nothing was mentioned about this at all. A random PIN can easily be sent in a text message to the phone when voicemail is first accessed.

I access my voicemail using my mobile which lets me straight in. If I lost my mobile then sure, voicemail is vunerable but I wouldn't expect anyone to be able to access it without my mobile.

The phone companies seem to have got away lightly with this, but they deserve a massive bollocking for enabling this to happen in the first place. It's their fault, not the mobile users.

Mac App Store: Developer godsend or Evil Empire?


Bring on the app stores!

@michael C ="What BS is this? There is no wall. US LAW prevents apple from closing the PC down, even if they wanted to, which they do not. the phone is only closed because the FCC gives carriers the right to do it, and because you do not own the phone, and because the OS is essentially inseparable from the device. PC and the OS on it ARE seperable."

Is this the same as the way that the apple lost the case against the iphone devteam? i.e. there is no obligation on Apple to open the iPhone to 3rd party app stores (or enable sideloading to use an Android term), but people are entitled to jailbreak the device IF THEY CAN? i.e. a Mac out the box would be locked to the Apple App Store, but tech savy people could jailbreak it? Because the vast majority of people are never going to jailbreak their phone/PC.

@Stephen Booth - It's not the device manufacturer that matters, it's the OS supplier. Obviously for Apple this is the same company, but not MS. Sure, you _can_ use other App stores, but how many people are going to (a) know that, (b) bother? if one comes with the OS. Look at Android, you can install alternative app stores to Googles, but how many people do?

Personally I think app stores are great, especially for small devs/apps. Before App stores, if you wrote a cool but simple app that people would pay 50p for (but no more), how were you going to sell it for 50p? No one is going to type their credit card into an unknown website for an app that costs 50p. Now you can sell it. And make a profit.

And I think the whole PC software model needs turning on it's head. WTF is with this still requiring admin rights to install software? And shared libraries? Yeah great when disk space was expensive but not now. Every app should come with everything it needs to run (that doesn't come with the OS), be installable into User space, and sit in a sandbox so it has very restricted access to the host OS, even when installing.

The current way of installing Apps hasn't changed since PCs were invented.

Website with 10 million users warns of password theft


indicating the sad fact that some folks

"indicating the sad fact that some folks can't be bothered to use a unique password for different sites."

Hardly, I'm probably registered on 20+ different websites for various reasons. I'll give a medal to anyone that can remember 20 different strong passwords and which one is for each site. I use different passwords for internet banking and anything that really matters. The rest all use the same. Sure, you can save the passwords in your browser but that has it's own security issues, and then you can only login from that PC.

The solution is for websites to use something like OpenID, but I've not come across a single website that uses that yet.


Biting the hand that feeds IT © 1998–2022