Patience, my dear
TCP has evolved over some 40-50 years. I suppose QUIC will eventually deliver on their performance promises, but sure isn't going to be a simple quic-fix ;-)
120 posts • joined 25 May 2011
Requiring that normal software customers must verify the integrity of software distributed via official channels is completely impossible.
Get some detection systems instead and keep an eye out for behaviour that indicates a compromise. That will catch not only supplychain attacks, but also any other kind of attack.
Then go BYOD - even more savings for the company beancounters, yay!
Seriously, with my company going all-in on Microsoft 365 solutions and other SaaS stuff, it is quite rare that I actually need my company laptop for work. Even the company VPN connection is rarely needed.
"Alcohol-fuelled Danish film directed by Thomas Vinterberg takes the top prize for non-English language film at the Academy Awards"
(Too obvious an icon, sorry...)
Indeed. And greenlanders - including the winning IA party - really would like to separate from Denmark and gain independence. That costs a lot, so at some point they'll have to decide between independence and mining, or remaining part of the Kingdom of Denmark and keeping the RME's buried beneath Kvanefjell.
But keeping the chinese out of the loop would probably be a good idea.
Somewhat along the lines of this story...
Every danish citizen has a unique identity-number issued at birth. System was designed in the 1960's, so obviously had to carefully consider how much data to store - meaning they ended up with a number including the date of birth in the DDMMYY format: DDMMYY-NNNN, the last 4 digits being a sequence number.
Except it wasn't quite a sequence number, because some bright fellow decided that it would be nice to distinguish between men and women, so the last digit is odd for men and even for women. (You can guess how the transgenders feel about that). Another bright fellow discovered that in 1960 they actually had grandparents born in the 1800's, so the first digit of the sequence number was used to encode the century: 0-4 if you were born in the 1900's, and 5-9 for the old people from the 1800's. Guess how that worked once year 2000 turned up, and we still had some people alive from the 1800's.
As the final twist, the sequence number also acted as a checksum of the entire identity number, with each digit multiplied by a specific factor, added together, and the sum had to be divisible by 11. Bizarre, and with the additional "feature" that you can only have about 250 people born on any one day. This wasn't really a problem until people started arriving from countries where you really don't care much about when you were born, so a third bright fellow decided that if the date of birth was unknown, assume Jan 1st of a year that seems plausible. Guess what happened when a surge of asylum seekers arrived one day...
So the checksumming was abandoned. But the identity number is used by every single public and private sector business, so quite a bit of scrambling when they had to remove that check from the customer entry forms.
Public sector IT disasters - you cannot make them up, they are for real.
Cheques? How quaint ...
Banks here (Denmark) stopped accepting cheques for payment a couple of years ago. Nowadays, gift cards from shops are issued as credit cards. If you want to transfer cash we use cell phones and telephone numbers (not bank account numbers). We haven't gone all cash-less yet, but we're getting there. The Virus has sped things up somewhat, even among the greybeards.
Fingerprint authentication is so horribly broken - the guys at Talos tried it: https://blog.talosintelligence.com/2020/04/fingerprint-research.html
TL;DR version: All fingerprint systems can be bypassed with simple techniques. Two exceptions: Samsung's A70 cannot recognize any fingerprints, even valid ones. And the MS Windows implementation seems to work just fine.
As I understand, you can enable this kind of checking. https://techcommunity.microsoft.com/t5/azure-active-directory-identity/azure-ad-password-protection-is-now-generally-available/ba-p/377487
Yes it says "Azure AD", but it does offer the same for an on-premise (or at least hybrid) environment.
And that is to ensure an orderly transfer to another person or group.
There are a lot of one-man/woman open-source projects. An impressive number of them work very well - I ran one myself for 10 years. And I always knew that one day I would have to assign that duty to someone else. You really must plan ahead for when that day comes.
My iPad chargers have a completely standard USB output, it's only the cable that has a Lightning connector on one end. So what's the fuss about chargers?
IMNSHO, standardizing wall plugs would make a lot more sense.
(Paris, because I'm sure she doesn't understand either --->)
They do have one significant advantage: The WAF (Wife Acceptance Factor). It's the only kind of pc-style box permitted in the living room to power my media center (MythTV on Linux) - anything else was vetoed as too big/klunky/noisy/ugly.
For bonus points I replaced the minitower PC in the office at home with a second NUC. A bit pricey - sure, but much cheaper than an iMac.
How many of us IT pro's do something similar - keep tons of files in odd places?
Personally, I tend to hoard all sorts of stuff in my Downloads folder - so much so that I have subdirectories there. Bloody annoying when working from home without my company laptop because this folder is not synchronized to OneDrive.
I know of several people who store passwords in their contact lists. Anything from Facebook and Gmail to the PIN-code for their rately used credit card.
Yep it is a stupid idea and they should use a proper password manager, but changing habits from what you did back in the Nokia days is hard.
I'm with you on that one - it is one of my favourite features of Notepad++ that you can open a new file, and it will automagically be saved somewhere in the bowels of the programs filespace until you do give it a proper filename yourself.
Now, where was that configuration file template - "New file 283" or 316 ...
--> Paris 'cause she never thinks about saving, only spending.
Usenet existed more than 30 years ago. Tiny pictures were posted on alt.sex.pictures in uuencoded form split into multiple posts because the size of posts was limited to a few kB (yes, KILO bytes, not MB), so you had to download each post, strip off the headers and run it through uudecode before viewing a tiny 200x140 pixel image on your 640x480 16-color CGA screen.
Nowadays 12-year olds post selfie-porn on social media.
No way. The Royal Mail equivalent around here (Denmark) takes minimum 5 days to deliver any letter or package. I suppose they need to ship them via GCHQ to make sure the t-shirts I ordered haven't been infested with some evil RFID chip...
They're clever enough not to have the rerouting show up on the tracking page, though.
(Yes I will go take my anti-paranoia pill now, don't worry).
Biting the hand that feeds IT © 1998–2021