Re: Should have gone to Starling
I gather you haven't been near any London public transportation for the last 2 years?
Posts by Michael H
15 posts • joined 27 Aug 2011
PIN the blame on us, says Monzo in mondo security blunder: Bank card codes stored in log files as plain text
Android clampdown on calls and texts access trashes bunch of apps
'Sorry, I've forgotten my decryption password' is contempt of court, pal – US appeal judges
A Rowhammer ban-hammer for all, and it's all in software
Google's Chromecast Audio busted BT home routers – now it has a fix
Tuesday 29th November 2016 09:16 GMT
Re: BT Homehubs and Amazon Echo
It's not been fixed, only mitigated. It seems that the Echo struggles with the BT default settings of broadcasting 2.4GHz and 5GHz APs with the same SSID (I've noticed quite a lot of devices struggle with it actually, so I split them out in the settings a while back)
Google engineer names and shames dodgy USB Type-C cable makers
Apple: Samsung ripped off our phone patent! USPTO: What patent?
Wednesday 19th August 2015 10:43 GMT
Re: Taketh away
This one was actually rightfully rejected - and for amusing reasons.
The patent that Apple is asserting in this case was filed using a dubious method - they take an earlier failed patent application and submit a completely different concept as a refiling, so that if it's granted, the patent will receive the filing date of the earlier first filing.
This is where things get interesting. The original filing was made in January 2007 - making it before the iPhone's release. When the USPTO reviewed this patent in the course of the case, they noted that the design patent granted differed substantially from the initial application. Because of this, they changed the filing date to when the refiling was submitted, which was August 2008.
So the two pieces of prior art that invalidate the iPhone's design patent are the iPhone and iPhone 3G! Whoops.
GitHub jammed by injected JavaScript, servers whacked by DDoS
Friday 27th March 2015 18:52 GMT 
Semi-obfuscated?
Anyone who knows owt about JS could pretty easily tell what that code is - unless your idea of semi-obfuscated is 'contains no comments', in which case the majority of code in circulation is probably semi-obfuscated.
(For the record, it randomly picks a target to send AJAX requests to based on the current time and continues to hammer the pages for 30 seconds.)
Google not sabotaging YouTube on Windows Phone after all
Tuesday 7th May 2013 23:57 GMT
Kind of an odd stance from MS
"Windows Phone invested additional engineering resources against existing APIs to re-architect a Windows Phone app that delivers a great YouTube experience. ... Microsoft did not receive any additional technical support to create the Windows Phone YouTube app."
In other words, reverse engineering, which Microsoft itself despises and works against (particularly with Skype)?
Google's Brin admits he under-estimated Chinese censorship
Tuesday 17th April 2012 23:26 GMT
You've either misunderstood me or not read what I've written
Facebook and Google are all about identity consolidation and profiling in order to gather advertising metrics, which all rely on key aspects of the way the internet and web browsers work. Projects like Tor and Freenet attempt to engineer networks and software which preserve free speech by anonymity, and so undermine the ability of advertisers and analytics firms to track and profile users, a seriously large part of their business. Firms like Yahoo, MS, Google, Facebook, Alexa, etc will never support these projects on a significant scale because it would destroy the foundations of their internet businesses, full stop.
Monday 16th April 2012 23:04 GMT
@AC 16/04/2012 17:53 Google are not philanthropists
The fact of the matter is, this won't happen. As much as people like to think, Google isn't a philanthropic organisation, sworn to protect all free speech on the internet. Google is a publicly-traded for-profit company with a market in advertising and web analysis, and a swarm of shareholders to keep happy.
As projects like Freenet and Tor undermine the traceability of users, which is the cornerstone of their whole profit-making operations that subsidise the squishy PR parts of Google, there's no way they will invest anything significant into their R&D.
They have provided some small contribution to Tor (under $100k incl. stipends paid out to GSoC participants according to their website), but this is another part of their PR creed of "Do No Evil". It's not enough to make a significant inroad to censorship prevention, and it's certainly not enough to turn it into global censorship resistant network capable of supporting the world's general population. What Google can do and what they will do are not the same.
As for the Hong Kong move, that was most likely a business move with a PR to appeal to Western consumers. My assumption is that their boardroom felt that the cost of complying with Chinese takedown orders frequently wasn't worth continuing in that market, especially considering they probably felt helpless to compete with a Chinese company that probably had big friends in the party and the national pride of a large part of the billion-strong population.
US lawmakers claim Huawei sold censor tech to Iran
Thursday 5th January 2012 12:20 GMT
Oh the irony...
Isn't it strange how these law makers:
A) Have 'conveniently not noticed' that Juniper and Cisco (both American networking moguls) are providing similar products and services to pro-censorship regimes?
B) Are currently trying to rush a bill through in their own country that instates such a regime?
You can tell that American politicians are desparately trying to clutch on to their country's status as the economic leaders in the technology sector by the repeated bogus or hypocritical accusations they levy at Asian tech firms like Huawei, and every patent case in favour of the Silicon Valley software giants.
Android upgraded to be more resistant to hack attacks
Tuesday 25th October 2011 14:14 GMT
ASLR might stop people exploiting buffer overflows...
...but it still isn't going to stop J. Random Luser (the sort who uninstalls their AV protection because "the update balloons were annoying") from installing an app off the market that runs up a £4000 bill in premium rate dialing scams. This is where the real security issues in Android lay. (Of course, enabling ASLR is still an improvement, I'm not deriding that)
I'm firmly of the belief that background services in Android should be restricted from texting and calling, and bring up a confirmation when done by third party apps in the foreground, without explicitly setting it otherwise in the preferences. Not nanny state, just opt-out protection for those who don't know what they're doing.
Phishing email used in serious RSA attack surfaces
Saturday 27th August 2011 23:54 GMT
Sadly...
...thanks to the "helpful feature" that is Microsoft's COM, any ActiveX plugin can be inserted into office documents. Of course, Microsoft doesn't care about how flawed and insecure COM is, especially as a feature in Office documents. But why have security when you can have buzzwords and lock-in?
