Unfortunately security isn’t a priority in much software (and general system configuration) design as it’s often cheaper to face the consequences of a breach than robustly implement security which still might be breached anyway. Until security is as much as a focus as other requirements like usability we can expect things like this to continue.
182 posts • joined 29 Jul 2011
Whilst I understand people comparing the Android to Apple ecosystem for you do have to remember that Apple is more likely to receive an ongoing benefit from each user than most Android manufacturers even on an old device. Apple will get App Store and services revenue which means they can subsidise that ongoing support cost whereas Samsung May get a handful of people using its store at best. In my opinion Google itself as the primary benefactor of people having Android should take more of the responsibility for patching the OS. They have made things better in the last few years and things are slowly improving but there is far more the could and should do. In my opinion devices should get a decade of security updates and a guarantee it can have a battery replaced for a sensible amount.
Re: Small market for small phones
It’s weird to me when people ask why I went for a 12 mini over the SE. It’s because it’s got flagship performance and a better screen in a smaller chassis. There just isn’t a comparison for me and I don’t get why smaller = cheaper in peoples minds.
The funny thing is amongst my apparently weird circle of iPhone people I know 4 of us have minis, one has a full size 12 and none are using the SE.
Personally i hope they don’t get rid of the smaller line as I’ve no need for a larger screen and like the pocket sized format. However if that’s not what the market really wants then I guess they have to make the decision
What really irks is they solder the SSD down in the name of security, but this security comes at the cost of reparability. The ram I can get slightly less bothered about as it tends not to die like SSDs do as they don’t wear the same. That all said the skeptic in me thinks they do this to artificially push the price of the higher end upgrades up rather than as a space saving measure.
Mystery cloud added 10,000 new AMD Epyc servers in under ten days to handle demand for you know what
My anecdotal evidence is that even amongst technology staff people see Intel as the premium option. Heck, we’re buying a bunch of servers and one of my colleagues who I generally consider top of his game is recommending the older more expensive Intel parts because “they are more reliable” and my boss believes him because he’s heard if Intel and not AMD. Part of the problem is marketing, Intel spend big on adding their ident to adverts for retailers to keep Intel in your mind.of course that’s just my personal experience and it’s not scientific in any way. Do do do di
Just the place you'd want to spot a BSOD: While waiting in line for a roller coaster that lifts you up 124ft
Get in the C: Raspberry Pi 4 can handle a wider range of USB adapters thanks to revised design's silent arrival
That explains why my reasonably expensive (compared to the PI) 6 socket USB supply didn’t work but the included one did. My original plan was to power a bunch of them from one supply but never bought the extra PIs as it didn’t work with one. Not that anyone is interested but I wanted to run my mail server on one, a website on another, a zabbix server on another and my PBX on the 4th. Ended up using an old PC
We still have some LOB apps which require IE and some horribly unsafe settings to make it work. We’ve now got some settings which switch them to Edge for other pages which are not on a list which mitigated part of the issue but if any of those legacy apps which haven’t been improved in 15+ years get compromised (which lets be honest would probably not be hard) then bye bye org. I really hope we’re not going to see ActiveX mk2, one of those things that sounds great in a developers head at the time and is sold to the marketing team.
When your device costs a large amount of money it doesn’t seem to be unreasonable to expect it to be durable and repairable at a reasonable cost. Apple could have got off Scot free if they hadn’t charged a ridiculous amount to repair it themselves or allowed cheaper 3rd party repairs, but as typical with American companies greed comes first. Sad that they are still the best for device security (although that lead has shrunk thanks to the efforts of Google and better brands like Nokia). Watch out Apple.
Re: 'tis the Merkin way
I’m not sure you can really compare the US system to the U.K. as most people in the U.K. are under PAYE and never have to complete a return. Also online returns are easy and free direct with HMRC for individuals. I’m definitely not one to defend HMRC but a company having to pay a small amount for software doesn’t seem to be that unfair when you consider how much the world stuffs down Oracle and Microsoft’s trousers.
On the first day of Christmas, Microsoft gave to me... an emergency out-of-band security patch for IE
It is worth mentioning the windows mixed reality headsets here now they seem to be gaining traction a bit more. We picked up a Lenovo Explorer for £149 recently and there is actually a whole lot you can do with it on a modest spec PC. Compared to the Gear on an S7 it lacks Netflix but has decent support on Steam and you can even play Skyrim on it pretty well.
I doubt the figures are anywhere near that. Everywhere I’ve worked has had at least a few machines that only get patched every 6 months or so due to it needing to be up 24/7. Sounds terrible bt you can’t blame the techies who maintain it, it’s always a lack of quality project management at the beginning that fails to consider it. Microsoft could do a lot to improve the patching experience by not requiring a reboot each time, that’d speed up server patching.
I wouldn’t let them into my whole house but Doesn’t anyone have a porch anymore that soolves this? I don’t have too much of an issue with this service as I would just let them into my porch but not my entire house and have a good old fashioned key lock on the second door. Then if the driver really does like nicking stuff he will be delighted to find some grubby wellingtons and some shopping bags, perhaps even a bit of newspaper!
Re: Why don't I just mosey on down and rob the bank @ x 7
They spend a lot more per head on health over in the US yet health coverage is not universal even with Obamacare so it depends if your priority is you (I'm assuming you'd earn enough to be able to afford healthcare) or if you feel everyone should get a level of care. If we funded the NHS as well as Americans pay for their system wyoud also probably find you'd get the same level of care they do but covering the whole population!
This situation is exactly why I sync all of my data between two different hosts and with two different suppliers. I then have a load of FTP space where the VMs are archived just in case. It is a pain to set up and is not fun to pay for, but it protects me against other peoples negligence or going bust, major outages etc. You really must only trust yourself if something is so critical to your business because although it is their fault it is your problem to deal with your customers and they will be asking you why you didn't keep a backup.
Re: Pay for updates?
That is just an accounting side benefit, Apple have much more of an interest in keeping those legacy devices up to date as it means they can flog those users other services, Android manufacturers have no such motivation. If Android developers have factored in the cost of OS updates why don't you see those updates? I don't want to pay for OS updates but you also can't expect a manufacturer on tiny margins to update their devices beyond a minimum unless there is a financial motivation to do so, remember most handsets are not flagships.
I don't know why the manufacturers don't come together and agree to charge for upgrades / updates, that way it covers their Dev work and they have an incentive to keep the devices up to date for as long as possible. I would gladly pay something like £1/month to receive official, timely updates rather than have to hack around with custom roms and I am sure a lot of non techies and businesses would too.
I have only 1 box running Squeeze left and have greatly appreciated the LTS effort for it. It has meant I had much less of a migration headache than in previous cycles where you had to upgrade everything within a year. I know I could have popped over to the CentOS circles for longer support (and to be fair I have no problem with using either), the reason I historically stayed away from CentOS was RedHat always seemed to feel quite negative about CentOS until they took the project under their wing. With Jessie upgrades not going as smoothly as previous upgrades though now might be my time to migrate.
Yes blame it on IT, more likely it was a user in the schools admissions department making sure the software works without thinking of the consequences. IT departments are not babysitters, people should take some responsibility for their own actions or next year the users will be complaining IT are too restrictive in what they allow! Can't win!
Now if they could not change my sales rep every 3 months that would be nice! Having to explain my situation and requirements each time and have them talk quite frankly a load of bull each time is something that really grinds with me. I used to have a great Rep, one that wouldn't try and rip me off and used to just give me the kit I asked for at decent prices. Now its all about 'solution' consultants and experts trying to sell me extras I frankly don't need.
Apologies for the rant, I now feel better. As for the server no doubt I will be seeing one very soon.
Who buys servers with so few cores?
Other than tiny outfits I'd imagine most people are going to have more than 8 cores on new kit once the Xeon E5 V4 stuff comes out. Even now I just slip into this category as most of our dual CPU kit is Dual 12 core E5-2690 v3 based. Just as well 2012R2 is supported for a good long time!
I really really hope it is this chappie just so TalkTalk can stop it with the sophisticated attack rubbish they keep churning out and get their just desserts. My guess though is he was just the one who decided it would be funny to send the ransom email and actually knows nothing about the real attack.
Looking forward to finding out why they still have my details on record 2 years after ordering a contract. They is 0 reason for my bank details to be stored for that long and shows a serious lack of thought about security. I am also looking forward to them sucking it up and ensuring everyone's banks are contacted on their behalf and free fraud monitoring services for all former customers. You can bet I am a former customer by the way.