* Posts by An0n C0w4rd

359 publicly visible posts • joined 24 Oct 2011


Fix five days of server failure with this one weird trick

An0n C0w4rd

Sun E250

I had a Sun E250 around the year 1999 or so that every two weeks, give or take a few days, would develop a fault on one of the CPUs and crash. Sun were dutifully called out (except it wasn't Sun that came, it was some outsourcing company) and replaced the CPU. The first time I remember the guy opened the box up and looked on the motherboard for the label for which CPU had the fault and couldn't see anything. I had to point out the mobo layout was on the underside of the access panel he had removed

After 3 or 4 CPU replacements someone at Sun started wanting to figure out what as killing CPUs. PSUs were replaced, then the motherboard and still the CPU killer was there. Seems that since the E250 had dual PSU, there was a power distribution board (probably with PMBUS functionality to monitor the PSUs also) hidden under the mobo. Swapping that finally sorted the CPU killer

Never figured out why it was always killing one of the dual CPUs in the chassis

Japan's aerospace agency hooks up with Boeing to make planes quieter when they land

An0n C0w4rd

Re: Why not go the whole hog

Not to mention the small issue of hydraulic and electrical power needed for the flight instruments and control surfaces. As ably proved by the 737MAX debacle, muscle power alone is not enough to move control surfaces on a modern aircraft

I guess you could point to the RAT (Ram Air Turbine), but that only provides power for very basic instruments and controls.

Do you come from a land Down Under? Where diesel's low and techies blunder

An0n C0w4rd

Check the gnerator exhaust

One building I heard about never tested their backup generator. Cue power failure. Generator kicked in. Yay!

No-one thought to check where the fresh air inlet for the HVAC system was. The tech support team (in the same building as the data centre) got gassed with the exhaust

FreeBSD gives ARM64 green light for production over x86 alternative's 'growth trajectory'

An0n C0w4rd

Re: Also covers Raspberry Pi 3+ and 4.

I've got Factorio running on FreeBSD 12.2 fine. The Steam client crashes for some reason though. It installs but the web renderer process crashes on an madvise() call

Yep, you're totally unique: That one very special user and their very special problem

An0n C0w4rd

wait, what, apple devices had physical controls?!?!?!?!?!?!?!

Wi-Fi slinger Ubiquiti hints at source code leak after claim of ‘catastrophic’ cloud intrusion emerges

An0n C0w4rd

Re: Just, why!?

You manage UniFi devices together as a site rather than as individual devices. If you have EdgeRouter/EdgeSwitch devices they're individually managed, but the UniFi stuff makes it easier. For example, if you create a VLAN it shows up on all relevant switches and APs automatically rather than having to mess with each device individually.

An0n C0w4rd

Re: Just, why!?

The self-hosted controller option does not require a cloud login, all you need is a Raspberry Pi. I've explicitly avoided anything from UBNT that requires their cloud login, and all their products that I have are on a VLAN that has no outside access (and the router isn't made by them)

The silicon supply chain crunch is worrying. Now comes a critical concern: A coffee shortage

An0n C0w4rd

Out of coffee??


Multiple customers knocked offline as firefighters tackle flames at Telstra's London Hosting Centre bit barn

An0n C0w4rd


Are all telstra.co.uk's DNS servers dead? I can't see any of the pages that the article linked to

So much for following best practise and having diverse servers

I spy, with my little satellite AI, something beginning with 'North American image-analysis code embargo'

An0n C0w4rd

Who are they fooling?

The Chinese probably already have a copy of all the tools that Uncle Sam paid countless $ to develop, and probably didn't pay for them. Somone with a Green Card working on the project took a flash drive holding the code with them while visiting their parents over the holidays.

SpaceX Crew Dragon: Launched and docked. Now, about that splashdown...

An0n C0w4rd

Missing word

Quote: "Champagne remains on ice until Demo-1 is bobbing about in the Atlantic"

I suspect no matter what happens, Crew Dragon will be bobbing around in the Atlantic. The question is whether it is *intact* or not...

An0n C0w4rd

Re: Landing

What I find more impressive is that when landing back on a pad on Terra Firma, instead of one of the drone ships, is that the booster is in fact aiming into the sea, and only once the onboard computers have determined that it has sufficient control does it move sideways to line up on the pad. Hence why a recent failure due to stuck control fins "landed" in the ocean instead of blowing up spectacularly near the launch site.

'They took away our Cup-a-Soup!' Share your tales of bleak breakout areas with us

An0n C0w4rd

Break room downgraded

They took away the foosball machine and the air hockey table, which was all the entertainment in the room. All they left was the fridge, microwave, a soft drinks machine (not free), and some tables

I got one of the CAD people to print out a huge sign on their plotter printer thingy that said "THIS SPACE INTENTIONALLY LEFT BLANK" and taped it to to the floor where the entertainment used to be. I think it survived months. Not sure when it got ripped up. May have outlived me in that building.

Hey mate, are you dense? Why, yes. Yes, I am, says the NAND in Micron's new client SATA SSD

An0n C0w4rd

Quote: "The 1300 uses 75MW"

75 MEGAWATTS of power?!?!?! Perhaps the MW should be mW instead?

Hold horror stories: Chief, we've got a f*cking idiot on line 1. Oh, you heard all that

An0n C0w4rd

Hardware mute buttons which didn't mute

At a previous job the support and sales teams had headsets (sorry, cannot remember the brand but I'd recognise them if I ever saw them again) which had a headset which could be disconnected from the adapter box and a mute button on the headset adapter box that sat on the desk next to the phone (there were 3 controls on the box, can't remember what the other two did)

Turns out that the mute button didn't actually mute the mic, it just made it quieter. People with good phones could still make out what was said. Can't remember how this was discovered, but I bet it was similar to the stories above. Agents were instructed to physically disconnect the headset in future and not use the not-quiet-a-mute button

Mobe networks battle to bring comms back after Hurricane Michael smashes US Gulf Coast

An0n C0w4rd

@ivan5 who fixes the duct if someone digs into it? who manages the notifications out the consumers of the duct? it sounds like a simple plan, but the devil is in the details. utilities aren't going to be happy waiting around for the village to do the duct replacement

An0n C0w4rd

Underground means either cut'n'cover, which has it's own challenges, or a horizontal directional drilling machine. Both are expensive propositions. If there are utility poles then it's much easier/cheaper to stick cables on the pole and (in most location) does not require permitting from the local government for the transit sections - the bit that goes from the pole to the customer may require some permitting, not sure TBH

Additionally, if it's underground then you're putting amplifiers and other electrical equipment either in manholes, utility ducts or ground mounted cabinets, which get flooded and knocked out. Not to mention the ever-present backhoe fade. No-one ever dug up a utility pole and claimed they didn't see it and it wasn't marked on a map. After 9/11 the VZ telephone exchange next to ground zero had all it's cables underground in massive ducts and tens of thousands of copper pairs got cut by falling debris

Burying the cables doesn't solve the problems, it just changes the ones you have to fix and perhaps when you have to fix them

Oh Smeg! Hacked white goods maker resurfaces after system shutdown

An0n C0w4rd

Will this go in the compilations of Smeg-Ups that accompanied the TV show?

Please forgive me, I can't stop robbing you: SamSam ransomware earns handlers $5.9m

An0n C0w4rd
Paris Hilton

<obligatory sexism>

quote: "The attacker is very good at covering their tracks and appears to be growing increasingly paranoid (or experienced) as time passes, gradually adding more security features into his tools and websites," Sophos reported.

Sorry Sophos, but why is it "his tools"? Why could it not be "her tools"? Or "their tools" to be more gender-neutral?

Airbus windscreen fell out at 32,000 feet

An0n C0w4rd

depends on the time between step 1 & 2. if the cracks propagated quickly then it may not have been an option. however SOP for visible cracking normally is descend to 10k ft

An0n C0w4rd

Re: Last time this happened...

@anonymous coward

Nope. The technician doing the job walked into stores, eyeballed the different screws available and found what he thought was the correct type, ignoring the recommendation of the stores officer as to what the correct type was

He got the right diameter and thread pitch but just a little too short to fully engage in the socket

(at least that's my recollection of the NatGeo Aircrash Investigation episode)

Typical cynical Brits: Broadband speeds up, satisfaction goes down

An0n C0w4rd

I would dispute the "all of them" statement. I've been satisfied with my occasional interactions with Zen cust svcs, although I wish they were open longer hours.

Noise from blast of gas destroys Digiplex data depot disk drives

An0n C0w4rd

Re: Safe for personnel?

When I worked in a facility that had a gas discharge fire system (FM200 from memory) we were told to get out of the room ASAP when the alarm went off as being in there when the discharge went off would likely blow out your ear drums and possible cause other problems also. Even people near the room weren't safe as for some reason they put windows in one of the exterior walls to a corridor so they could show off the contents of the DC. The glass wouldn't survive the discharge

Intel alerted Chinese cloud giants 'before US govt' about CPU bugs

An0n C0w4rd


So hang on, they say "Standard and well-established practice on initial disclosure is to work with industry participants to develop solutions and deploy fixes ahead of publication.".

Notice the word "all" missing. They were very selective with their notifications, with some OS vendors finding out around the same time El Reg did, while Mickeysoft and Linux had months of notice.

"In this case, news of the exploit was reported ahead of the industry coalition's intended public disclosure date at which point Intel immediately engaged the US government and others."

Right. Because giving people 4 days to write extremely complex changes to their VM systems is TOTALLY FINE.

Responsible disclosure my posterior.

Beat Wall St estimates, share price falls 5%. Who else but... AMD?

An0n C0w4rd

Re: I just do not understand

If you strip out the "extraordinary event" last year (the GlobalFoundaries write-down), the income was $255m profit for FY2016. Compare that to an income of $179m for FY2017. If Ryzen/Epyc/etc are selling like hot cakes then it would be reasonable to expect better profit margins. I suspect the street were also looking for better news for FY2018. The article here doesn't contain anything about any forecast, which is likely also what dinged the price.

I suspect Intel's stock price went up because they announce that they will have meltdown+spectre silicon ready later this year, and analysts expect all the cloud providers to refresh their servers to get rid of the problems. Remember that Dilbert cartoon where the PHB promised a bonus for every bug fixed? Intel just coded themselves a Ferrari - they instantly made all existing silicon undesirable. Customers can't put off buying new kit so Intel will keep churning out buggy silicon to customers and banking the profit, but the customers could want new silicon ahead of their normal refresh periods to get rid of the bugs, so Intel scores a MASSIVE win. All it has to do is make sure the legal costs are less than the bonus.

All aboard the Vomit Comet: Not the last train to Essex, but a modded 727 for weightless flight

An0n C0w4rd

Rubber duck

If I get on board a passenger aircraft and see a rubber duck in the cockpit, I'm getting off again....

IBM offloads Notes and Domino to India's HCL Technologies

An0n C0w4rd

Re: Notes wasn't a bad idea.

I suspect the Notes Applications is the one reason Notes still exists. Companies built their business processes around Notes Apps and it's too expensive to move off so they're stuck on the platform. It was certainly one of the big blockers to migrations off Notes in the companies I dealt with.

Dumb bug of the week: Outlook staples your encrypted emails to, er, plaintext copies when sending messages

An0n C0w4rd

Re: By design?

Is this the new FBI version of security?

Wonder why Congress doesn't clamp down on its gung-ho spies? Well, wonder no more

An0n C0w4rd

Re: Waste, fraud and abuse

Never happen

You know why? No politician wants to commit career suicide by voting to de-fund an agency that could prevent a terrorist attack, because if an attack happens then fingers will be pointed at the lack of funding.

It's the same reason that after every attack legislation is almost always passed to try and prevent another attack. Not because another attack is likely using the same method (apart from the truck attacks which appear to be the new favourite), but because they have to be seen to do SOMETHING. Even if it's completely ineffective, such as most of the security theatre put in place after September 11. Or the backscatter body perv scanners that were installed after the underwear bomber, that have been proved to let stuff past if you make it look like part of your body (e.g. fake belly).

An0n C0w4rd

Can't get congress to act on reports they can't see

One Congress-critter (can't remember whom) commented that one of the reasons that it's so difficult to get Congress to effectively review surveillance legislation is that the committees that review the secret reports cannot tell other members of Congress their contents, even in a general manner. They cannot take anything in to those briefings (so no notes or recordings), and there are never any nice handouts they can share afterwards.

So all those closed-door committee briefings? Completely worthless. The committee cannot report on what they were told, so the other people in Congress that get to vote on the legislation don't know about any transgressions (unless a whistleblower comes forward, and we all know how that ends), and therefore cannot do anything more than rubber stamp whatever the spy agencies want

I doubt any country is any better to be honest.

What's the biggest danger to the power grid? Hackers? Terrorists? Er, squirrels

An0n C0w4rd

Soldiers unaware of the Faraday cage

"In the same year, three Sri Lankan soldiers were electrocuted after a squirrel caused a fire that broke power lines – causing them to fall on the soldiers' vehicle."

From what I understand, the soldiers who died got out of the vehicle, and were therefore electrocuted. The other soldiers in the same vehicle who stayed inside survived.

An0n C0w4rd

Re: Or a shovel through a fibre/wire bundle

My favourite RFO* from a telco was that they found shotgun pellets embedded in the fibre. Someone had been taking pot shots at some fauna and had taken out the fibre instead. I guess it must have been hung from telephone poles, but can't remember to be honest

Yes, this was in the land where the 2nd amendment is used to justify way too much

* RFO = Reason For Outage

Search for MH370 called off after new theory about resting place is ruled out

An0n C0w4rd

Re: Commercial Aircraft Locations

@ The Man Who Fell To Earth

Hopefully accurate telemetry. I watched a 767 land at GLA airport a few years ago on a online plane tracker. Something in the ADS-B data path for the plane drifted as it held east of Glasgow while the runway was cleared of snow. Each loop around the hold patten the plane "drifted" a few miles north. In the end, when the landed at GLA the tracker showed in landing in the Trossachs! Probably badly calibrated inertial guidance system feeding the transponder. Since they landed safely, the cockpit crew must have been using a different navigation source, maybe relying on beacons instead of inertial navigation.

However, I agree. The Inmarsat data would have been much more useful had it included the ADS-B transponder data in a way that the cockpit could not disable. Doesn't have to be every few seconds like ADS-B, but every 15 minutes would suffice to narrow down the search area.

An0n C0w4rd

Assuming that the theoretical flight path from primary RADAR sources (after the transponder and ACARS systems were disabled) is correct, it is highly unlikely to have been an equipment malfunction. Equipment malfunctions generally don't route around populated areas and RADAR systems. If the plane was being controlled by someone, then routing around populated areas to crash land makes sense, but they never descended. If you lost radio comms, there are protocols in place for that (circle one way to say lost transmission, circle the other way to say lost both receive & transmit)

Autopilot could have flown the route, but only after someone told it to.

What's worse is that even if they find the wreckage they may still NOT figure out what happened. Even if the CVR & FDR survived, the CVR only records the last 30 minutes of cockpit noises. It was never designed for this scenario where something happened hours earlier. There is also no guarantee that the CVR and FDR weren't disabled also, there is (or was) a breaker in the cockpit that could be used to disable them. Not sure about the 777.

Flight 666 lands safely in HEL on Friday the 13th

An0n C0w4rd


Sorry to ruin everyones joke comments by asking a question, but what changes to European flight numbering? Are the going to 4 digit numbers across the board or something?

Europe trials air-traffic-control-over-IP-and-satellite

An0n C0w4rd

The last I heard (which was admittedly a few years ago) was that NASA had set up a test bed which simulated pilots in an ATC zone and all the ATC comms associated with that (lots of people running FSX in a lab with 2 way headsets, and an ATC with some kind of virtual radar view of all the planes)

The one point of ATC instructions over data comms is that pilots lose situational awareness. By having all instructions broadcast, there is a second level of error checking going on because if ATC tells a plane to fly an altitude, a plane already at that altitude can hear the instruction and relay any concern about a possible conflict.

With data based ATC comms that was lost

Probably more of an issue for approach/departure controllers around an airport rather than at high altitude, but it is still a concern

An0n C0w4rd

Re: Am I missing something here?


Repeating back "Turning to 270" doesn't mean that the pilot has done it, but it does mean that the pilot has heard the instruction and at some level understood it. Hitting "OK" on the flight computer doesn't indicate understanding or even that the message was seen

Apple's 'lappable' iPad Pro concept is far from laughable

An0n C0w4rd

Re: file

Or they could use the keyboard to do text selection

shift + left or shift+right selects text one character at a time

command + left or command+right selects from the cursor to the start or end of the line

option + left or option + right selects the word to the left or right

Intel's Broadwell Xeon E5-2600 v4 chips: So what's in it for you, smartie-pants coders

An0n C0w4rd

Re: will do methinks for a new Mac Pro

you can never have enough cores!

An0n C0w4rd

working TSX?

Quote: "while teasing developers with goodies like posted interrupts, working TSX,"

Surely that should be

"while teasing developers with goodies like posted interrupts, allegedly working TSX,"

Pretty much every Intel chip product of the last decade (and probably longer) has had multiple errata, I suspect most of them found after release. I think claiming TSX is working is a bit premature until it's seen in the wild for a while.

Lights out for Space Vehicle Number 23: UK smacked when US sat threw GPS out of whack

An0n C0w4rd

Telecoms companies

I'm curious, what telecoms companies rely on GPS for any timekeeping? Muxes and the like (at least the ones I saw) had no external clock/timing source, and POTS exchanges (even digital ones) have been around long enough to pre-date such clock sources so I can't see them relying on that either (I've seen a few 5ESS systems in the USA, didn't go into the details of the different inputs)

Mobile phone companies maybe?

Inside Intel's CPU-level multi-factor auth (and why we've got deja vu)

An0n C0w4rd

Quote: "It's supposed to help employees who are bad at remembering complex passwords"

It will do, until they lose their phone, or the system breaks and goes into some failsafe mode that needs the password, and they then need to remember their long and complex password, which they haven't used at all so they have no hope of remembering it

Wait until the system breaks for everyone at the same time and then watch the helpdesk melt.

Oracle Java 'no longer the greatest risk' to US Windows PC users

An0n C0w4rd


secunia PSI warns you (and also scans once a week by default) about out of date software. So I'm puzzled by people who have PSI installed and don't keep up-to-date. They clearly had/have an interest in patching their systems, else why install PSI in the first place? Maybe the Windows habit of hiding tray icons by default contributes to delinquency?

Thousands cut off from email after EE bungles domain renewal

An0n C0w4rd

all ee domains seem to be 1 yr renewals

orange.co.uk, t-mobile.co.uk, ee.co.uk, etc, all expire in 2016. guess they're short of money.

Sign of the telly times: HDR shines, UHD Blu-ray slides at IFA

An0n C0w4rd

Re: When HDR becomes prevalent ...

Maybe Sky will also quit using 50i outputs and give decent data rates for their encoding so the picture doesn't look so crap

Who am I kidding. Never happen.

Microsoft backports data slurp to Windows 7 and 8 via patches

An0n C0w4rd


anyone know how this is "hard coded"? Would blocking it on the DNS server work?

Chinese gang shoots down aerospace security with MSFT flaws

An0n C0w4rd

Re: Oh dear. Same old tricks still working.

CIO is probably not the problem. The CIO on their own is likely not sufficient to enact change as they still need to rely on budget approvals from other people. The CEO and the entire board of directors (including the chairman) need to be liable. Only then will START to change.

I am starting to think that people that say antivirus/antimalware/IDS and IPS are the wrong solution are correct. Antivirus/antimailware only work once the signature of an attack is known. Most IDS and IPS are set up the same way, look for known attack traffic and then respond.

No, you need to set up your systems to allow known legitimate traffic/files/applications and block everything else (i.e. whitelist good stuff, not blacklist known bad stuff). Only then will security start becoming effective.

German railways upgrade their comms tech from 2G to 4G

An0n C0w4rd


Recently read somewhere else a story about the Network Rail plan to switch the East Coast Main Line (between Kings Cross and Edinburgh) over to ERTMS, at least in the southern part of the route, due to European compatibility regulations


They specifically call out 2G based GSM-R as a problem. What's the bet that the Germans upgrade to 4G based radios and the UK subsequently installs a 2G based solution because we're idiots?

Never mind falling revenues, BT watchers, look at the footy offering

An0n C0w4rd

Re: Really...

"Apparently you need to have BT Internet service to take their TV!"

Not exactly a surprise. They can properly manage delivery of the service over their network (anything not picked up off Freeview is sent over IP). QoS and other stuff which allow you to prioritise delivery stops the second a packet leaves your network. Plus paying other broadband customers to deliver your TV service probably isn't in their model.

I have a sky box and it's plugged in to my home network, but I only let it through the firewall when I want to download a program. I don't want the damned thing sending/receiving data when I'm trying to do other stuff on my crappy bandwidth (the service itself is excellent, for a 10 year old tech, i.e. ADSL2+. pity NeverReach don't want to extend FTTC or FTTP to my street, and I'm not holding my breath for G.Fast to appear any time soon)

An0n C0w4rd

Re: It is NOT fibre ...

I know of a company which laid high speed Internet cables through some of the poorest areas of a given city just to pump up the "homes passed" figures. The people couldn't afford the basic service, let alone all the other stuff they were selling. It was mostly a waste of money, but it appeared good to investors.

The metric needs to be retired and replaced with something more meaningful which indicates the ability of the residents in the premises passed by a cable to actually afford one or more of the services provided.