Posts by b0llchit

When sounds do bother...

Here lies Alistair Dabbs - Never to be heard of again.

Cheers! (not you, you're dead, the other alive you)

Why can't we have more sci-fi in the real world? Living in the future has two options: 1) we live in harmony, or 2) we are all in agony and soon die a horrible death.

As the HHGTTG already stated, either option is good. Especially when option 2 is acute, we'll soon be free of said agony because of the soon no longer being alive part. Now, take that beer and wait for either.

Secure channels inside secure channels

Public infrastructure is never going to be secure. There are too many interests to intercept. Therefore never trust the default "encryption" and use an encrypted tunnel you control. You would not use a telnet session inside an ipsec tunnel. You'd still use ssh. Also, you send pgp email, even though the general smtp links are tls links nowadays.

The examples are all a secure channel inside a supposedly secure channel. The security starts when you are in control.

A sarcastic view may be that Apple has not received a 30% cut of those using the IndexedDB feature. No pay means no game on iPlayStuff.

The problem is that my sarcastic and often pessimistic views (or sometimes paranoid views) are underestimating reality. That is the scary part.

<tong in cheek> <cross fingers> <sacrifice $diety preferred animal>

Trusting trust

Reflections on Trusting Trust should be mandatory reading for all "criminals"?

Not only software is a problem, but the hardware too. If you want some strong guarantees about the system you are using, then you must make both hardware and software yourself. At the same time, you then cross your fingers that you have not introduced any bugs.

Maybe, using an old typewriter, paper and the post-office is becoming more secure than your computing platforms. I guess you should use some kind of code. But then, OTP has a very long history and is very secure. Oh, yes, the RTT is lower, but that is compensated with the better security.

But in the end, it will be the users who make simple or stupid mistakes that cause them to be caught. That cannot be fixed with any type of technology. Or, can you already get an integrated brain replacement?

Small steps

The article points out the very truth of all systems, IT and non-IT. Innovative at small scale is a maintenance problem if done wrong. Innovative at large scale is a maintenance problem if done wrong. Often, only when the innovation becomes general mainstream, then you have established procedures that keep things running and cost down.

The real kicker of problematic is people at a company dictating a specific system and or sub-system. How often I've seen the management level interfering with development and innovation by forcing the use of marginally correct or incompatible pieces. That is the nightmare of maintenance doubled down (and the techies get the blamed for all the problems).

The lesson all should learn is small steps are extremely important in making big systems. Planning not only the functionality of a system but the longevity and maintenance are all integral to the system and take time to make/build and describe/document. And lets not forget planing to handle failures and problems while running.

A dick move?

Mother knows best

My mother used to say in the shop "Do you have something with one button? Just one on/off switch?"

Many, many moons ago I did not understand the sentiment and was almost embarrassed. Now, I am proud of her asking and sticking to the simple truth.

And now, today, does this technology of buttons, devices and impossible combinations actually make us happy? I guess that a simple working on/off switch would be a significant improvement.

...

You can check-out any time you like.

But you can never leave!

Consequences?

There are no consequences for the government(s) and institutions when they violate our privacy. The laws are just words om paper. Every time we hear about violations of the privacy laws by the government(s) or its institutions we only rarely see a pawn sacrifice. But there are no real consequences for the government(s) and its institutions. That is the real problem. They are immune and can simply continue one or the other way.

Actually, they learned something: That illegal path of action was revealed by a wistle. Lets use a different method next time so we do not get caught this way again. This cat and mouse play will continue forever unless and until real consequences will be put in place.

Different types don't match well

Techies are generally looking at the substance of things. They will look at context and details, broad, wide, narrow, specialized, generalized and then some. It is about content, not about the same thing with a new name, again.

Those who generally read/evaluate a CV are looking at the form of it. They cannot grasp any technical content and do not appreciate the depth and width of knowledge required for someone to be a good techie. Thus, they look at buzzwords and think they can determine the quality of a person by looking at how you format the letters and do not care what is written.

It is a petty that the non-technical type is more prevalent than the technical type. We, the techies, are a suffering minority.

Old game

Simply reminds me of Hotel California:

"... We are programmed to receive. You can check out any time you like. But you can never leave!"

My guess is that you should avoid to play in the first place or else you will get burned in one or the other way.

Only one bad actor?

Clearview AI told The Reg it "has never had any contracts with any EU customer and is not currently available to EU customers."

Translation: We, Clearview, don't give a fuck about your complaints. You have no contracts with us and you were stupid enough to put something visible on the internet. Now, go away and sob somewhere else.

Ok, but that just covers Clearview. Lets talk about Google and Facebook and Amazon and Microsoft and Apple and all those others, shall we? Every single one of them gives us the same stinky-finger when we want them to leave any of our data alone. All these companies have made a living (and a fortune) from taking other's data. They all should be held accountable and the bosses/leaders should be held personally accountable.

The policy euphemism

...forbidding "inappropriate advertising"...

Hm. lets see...

Smartass@#chx> We moved to network XYZ

Bzzzt... disconnect. Ok, this is wrong.

Smartass@#chy> We have a secret. You know what we did? We did the same thing as many others and got smart. You know, that smart thing you can do. We all can do it. We can all be smart.

Pling! you see, advertising done appropriately.

Telling someone not to say A makes them say B with the meaning of A and we all know it. Only idiots try to use bad policies to limit expression. When you need such rules, you have already lost control.

Upgrade or die

...and helping with device migration...

The problem will be a large volume of "old" 2G modems that many systems have set up. Here in Europe, the problem may be significantly larger than in South Korea, but I guess that quite a bit of remote equipment will go silent when the 2G net is switched off.

Migrating old equipment may not be an option and would then need to be replaced. But, replacement may prove very difficult, considering that some of this stuff may be 15+ years old and have no "modern" equivalent and most likely no support contracts.

With the accelerated changes in standards during the last 25 or so years, it has become clear that (planned) obsolescence is a much bigger problem. Sure, products are designed to fail fast, but when the standards chance rapidly, then you are forced to change more often than you'd like. As an example, we went through several digital television standards in very short time and created lots of expensive paperweight in that process. Yes, it is expensive to maintain "old" tech like 2G, but sometimes when it just works, why do you need to change it? Well you might want to change it, but please, also make me a dumb-phone again that will work on a 4G network.

Double U-turn

So, they will not proceed with telemetry hosted at the Bad Guys but then suggest to start on building it within their own infrastructure. How is that a U-turn? As if building a telemetry infrastructure at home makes you the Good Guys? That is a double U-turn.

Telemetry has no place in most if not all programs. It is not a benefit for the user and only a profiteering market for the data collector(s). Stop it.

Your fault

Of course it is your fault! You used their service and you knew better when you went for them anyway. You should have stayed away. You know it. You feel it. You promise yourself to do so next time. Then, and only then, it will not be your fault.

Well... unless you forgot to change bank, house, nationality, gender, body, soul and also died and were reborn. Next time you should stay dead and let the computer buy your stuff.

Cheers.

From anonymous and cheap to expensive and tracking

How is going from a bad, cheap and annoying anonymous solution to an expensive personal identifiable and track-able solution benefit the user?

Oh, I was mistaken, it is not about the user. Sorry, to have spoken out loud.