* Posts by Gerry 3

176 publicly visible posts • joined 24 Oct 2011

Page:

Claims assistance firm fined for cold-calling people who put themselves on opt-out list

Gerry 3
FAIL

Good luck if your surgery or hospital tries to call you about an imminent appointment or operation, or to tell you that a recent blood test or scan has revealed a cause for concern.

Don't even think of suggesting they use Royal Mail. On 22 April I received 11 items most of which dated back to 3 April or 8 April. Royal Mail is so broken that an NHS stamp was recently been introduced with a special barcode so that there my be a slim chance of it getting through in time.

We're becoming a fourth world country.

UK Home Office silent on alleged Apple backdoor order

Gerry 3
Facepalm

English as she is spoke...

>"A secret order to pry open iCloud, sources claim"

PRISE !

Microsoft adds another problem to the Windows 11 24H2 naughty list

Gerry 3
FAIL

Re: Trading Standards

When it comes to individual complaints about unsatisfactory service,Trading Standards are an extremely damp squib. You can't even contact Trading Standards directly, they hide behind Citizens Advice. CA warn that "Trading Standards can take businesses to court or stop them operating, but they won’t help you fix your problem - for example, they can’t help you get a refund.

"All complaints received from CA Consumer service are added to our intelligence database to allow us to target our resources at those criminals causing the most detriment to consumers. As we focus our resources on this criminal activity identified on the analysis of this intelligence, it is unlikely you will receive a call about your complaint unless it is part of an ongoing investigation."

Gerry 3

Re: Please re-read my post !

Pretty sure I tried all those things but it was always a case of Computer Says No. In that respect BitLocker was doing exactly what it was designed to do when triggered.

BitLocker would be a complete failure if your workarounds could be used successfully.

Gerry 3
Boffin

Re: 24h2 slow as hell - not fit for release

https://www.tomshardware.com/news/windows-software-bitlocker-slows-performance

Incidentally, I don't have any strong views on whether BitLocker slows things down significantly, I'm only mentioning what I discovered online.

Gerry 3
Boffin

Re: 24h2 slow as hell - not fit for release

https://answers.microsoft.com/en-us/windows/forum/all/since-windows-11-24h2-update-everything-runs-slow/bb6f32e4-c672-4363-88e2-2bba59240453

Gerry 3

Re: Please re-read my post !

Thanks. I'm not an anorak, but whatever I did I just couldn't get away from the BSOD. It kept on insisting on having the correct 48-bit Recovery Key entered, and refused point blank to allow anything else to happen, there was absolutely no escape. How would you get around that?

M$ seems to punish M$ account users more heavily because it activates BitLocker by default for them, whereas you have to opt in to encryption if you use a non-M$ account. If BitLocker is going to be active by default then it's imperative to have lots of tick boxes and bold red warnings: you should have to agree that you've found your Recovery Key and have written it down safely on paper before BitLocker can be activated.

I'll investigate some flavour of Linux but the last time I tried it on on a previous Windows laptop the Linux cupboard seemed a bit bare so I didn't pursue it. Do you have to start again from scratch with apps such as Firefox and Libre Office?

Gerry 3
Alert

Re: 24h2 slow as hell - not fit for release

Sounds like encryption is now active. If you logged in with a Microsoft account then the 24H2 update will have activated encryption by default. Data is encrypted when written to disk and decrypted when being read back, and it's been widely reported that these processes can slow down your device by up to 45%.

BitLocker can be falsely triggered by an update, as I discovered the hard way, so make sure that you have written down your 48-bit Recovery Key securely on paper !

Gerry 3

Please re-read my post !

• "When your device tells you to write something down or put it somewhere safe then that's exactly you do"

Nope, as previously explained my device did no such thing.

(1) M$ failed to warn me that a critically important Recovery Key would be stored in my M$ account. This was only revealed by a link on the Blue Screen of Death, AFTER BitLocker had permanently bricked my laptop.

(2) M$ failed to warn me that I needed to find my Recovery Key immediately and then keep it safely written down on paper.

(3) M$ failed to warn me that I wouldn't be able to discover my Recovery Key if (i) I'd used an M$ account but then forgotten its username / password or (ii) I'd used a non-M$ email account which was no longer supported. Many big names have closed their email services (e.g. Tesco, Powergen, John Lewis, Waitrose), and many ISPs hold you to ransom by closing and locking your email address if you dare to leave them (e.g. Virgin Media / Blueyonder).

• "What did you think would happen?". As previously explained, I expected to have no use for an M$ account because it would only be used to spam me about unwanted M$ products and services. I'd have opened a new M$ account if I needed one at some future time.

• "Personally I don't use bitlocker for this exact reason and I have no use for it." As previously explained, I didn't even know I was using BitLocker until it bricked my laptop. I thought the encryption was used only against malevolent third parties, not against the laptop owner. I'd expected it to be like WhatsApp, it's encrypted but it's just there behind the scenes, the end user doesn't need to fiddle around under the bonnet and get their hands dirty.

• "if my computer did on the off chance get locked out from bitlocker and I only had it a couple of days I would just re-install. I don't understand why you didn't just do that." As previously explained, BitLocker would NOT allow Safe Mode, re-installation of Windows (no CDs and CD drives these days, and I hadn't had time to make a USB backup) or any other workaround. Not even M$ can defeat BitLocker's military standard 48-bit encryption, that's its purpose.

• "Why are Microsoft and Lenovo laughing? You got a full refund and some clown has to set it up again so it can be sold for less as used. What have they actually gained here? Am I missing something here?" Yes, you're missing a lot. You missed ALL the above points that I thought I'd explained, and you're missing the fact that by bricking new devices M$ they benefit by flogging more Windows 11 licences and Lenovo flog more laptops

Others may be more knowledgeable, but I suspect that my bricked laptop will just be scrapped because of the costs and difficulties associated with physically replacing all the embedded encrypted solid state drives.

Gerry 3
Alert

It's FAR more than a bit buggy.

I bought an expensive Lenovo laptop at the end of October. Spent a few hours updating Windows 11, lots of downloads and reboots. It forced me to create an unwanted Microsoft account but I didn't make a note of the account name and password: I never intended to use it, expecting that it would only contain spam, spam and more spam.

I switched on Device Encryption because it promised 'protection from offline unauthorised activity', which seemed a good idea at the time. I downloaded a few browsers and Libre Office, and all seemed well.

There were some optional updates from Lenovo, so I thought I might as well have those, why not?

It suddenly rebooted showing the Blue Screen Of Death. Normally, this is a recoverable incident, but it turned out that my brand new laptop had been irretrievably bricked by BitLocker. I'd never even heard of BitLocker, which was demanding a 48-bit Recovery Key which I didn't have. It wouldn't allow Safe Mode, reinstallation of Windows or any other workaround. It said the key could be found in my Microsoft account, but despite using my phone to try every permutation of what I could hazily remember of my Microsoft account, I couldn't open it. There's absolutely nothing that Microsoft or anyone could do, my entire PC and all its data, photos etc had all been subject to BitLocker's military grade encryption which can't be bypassed without that 48-bit Recovery Key.

Neither Microsoft nor Lenovo bother to warn you that your Microsoft account details (which might have been set up several years ago and not regarded as especially important) MUST be treated like a Bitcoin or Swiss bank account number, otherwise your PC could be irretrievably bricked AND all your data and photos will be lost forever if they weren't securely backed up.

So unless you have the WW3 nuclear codes on your laptop and you're worried you may leave it on a train going to Waterloo, think twice about turning on Device Encryption. Even then you're still not safe if you haven't can't remember your Microsoft account details or the Recovery Key: the Windows 11 24H2 update will turn on encryption by default if you access Windows 11 using a Microsoft account (but it won't if you use a non-Microsoft email account instead).

Fortunately, I'd bought my laptop online, so I was able to return it to Argos within 24 hours of having collected it. To their great credit, Argos took only a few minutes to get the manager's approval for a full refund, courteously and with no quibble at all.

Microsoft and Lenovo must be laughing all the way to the bank.

Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters

Gerry 3

Re: Why is this so prevalent

1477 Automatic Call Trace was originally intended for use when death threats or similar calls were being received from withheld numbers. With some automated enhancements bolted on, it would be an ideal way to tackle the menaces of spam and scam calls.

During or immediately after a call from a withheld or spoofed number you'd dial 1477 and be offered a menu to flag its type, e.g. Press 1 for a Death / Serious Threat, 2 for a Scam attempt or 3 for Spam (if you are on the TPS List but were still called).

Type 1 threats would still need to be reported to the police in the usual way, but they'd now be able to identify the offending Network Number and take action. Types 2 and 3 would be referred to the telco for interception and/or outgoing blocking if a threshold number of automated complaints had been exceeded.

Gerry 3

Re: Why is this so prevalent

Apart from the the reverse charging aspect, this facility has existed for many years. It's 1477 Automatic Call Trace.

It stores the caller's Network Number (the 'real' number) at the victim's local exchange for investigation by the police. That makes it far more useful than the ICO's hopelessly clunky reporting system which is a complete waste of time because the scammer's Presentation Number (the one you see or are told by 1471) is usually spoofed.

Unfortunately hardly anyone has heard of 1477 Automatic Call Trace and it's seldom ensbled.

If dozy Ofcom were any good they would have mandated all telcos to make this service available on all lines, and to publicise it widely.

Who you gonna call? Premium numbers, but a not-so-premium service

Gerry 3
Boffin

Re: Wrong number

That's why London 3xxx xxx numbers were allocated when the legacy 7xxx xxxx and 8xxx xxxx numbers ran out. Seeing a London 020 x where x wasn't 7 or 8 would have confused some people into thinking it was an old pre PhONEday number and they would have mistakenly dialled 0120 x. Woe betide the unfortunate subscriber in the provinces who had the matching digits !

At PhONEday Coventry changed from 0203 to 024 76 numbers, so misdials to 01203 would have been trapped before they could cause any annoyance.

Gerry 3
Boffin

Re: Wrong number

There's only one code for the London system and it's 020. Local numbers start with 3, 4, 7 and 8. The area code can be omitted when calling between 020 numbers.

As Brit cyber-spies drop 'whitelist' and 'blacklist', tech boss says: If you’re thinking about getting in touch saying this is political correctness gone mad, don’t bother

Gerry 3
FAIL

Re: Fair enough

If you find blacklist and whitelist confusing, you shouldn't be in any technical job, least of all at GCHQ.

Gerry 3

'Deny Friday' ?

Hmmm... I never realised that the day after Thanksgiving to get back in profit in the US was known as Green Friday.

Will it now have to be called Deny Friday?

Hey, friends. We know it's a crazy time for the economy, but don't forget to enable 2FA for payments by Saturday

Gerry 3
Boffin

SMS is U/S for 2FA

GCHQ told the banks not to use SMS verification: it's insecure because MNOs aren't very good at preventing fraudsters gaining control of your mobile number.

Predictably, people still lose £thousands.

So why are banks such as Santander still refusing to issue card readers for 2FA, which seem to be pretty secure because (1) you need to have your card and (2) to know its PIN?

Motorola bounds out the G8 with a harder, better, faster smartphone for the thrifty

Gerry 3
Meh

Style over substance?

Does it have an FM radio, preferably DAB/DAB+ as well? Does it have a user replaceable battery? Will it have updates for at least a decade? These are all basics I'd expect but I doubt it'll have any of them, let alone all.

Don't use natwest.co.uk for online banking, Natwest bank tells baffled customer

Gerry 3
Boffin

Not quite as bad as Santander et al

Surprisingly, NatWest is actually one of the (slightly) better banks when it comes to online banking. Unlike Santander and many others, they offer a free card reader. As it requires you to have your card and to know your PIN it's a lot more secure than the predictable telephone questions where the answers are often widely known and/or shared, e.g. postcode, email address, DoB, mother's maiden name etc.

GCHQ have warned the banks that SMS verification is insecure, but most have ignored their advice. This guy found out the hard way.

There is a Santa! BT prises remnants of InLink from jaws of administration

Gerry 3
Facepalm

Re: Has it come to this

D'oh ! Payphone calls to landlines are 60p for half an hour.

InLink Limited limited: Firm that puts up UK's ad-supported phone booths enters administration

Gerry 3
Facepalm

Wrong. 60p for half an hour.

Halfords invents radio signals that don't travel at the speed of light

Gerry 3
Facepalm

El Reg using dial up to catch up?

I spotted this way back in July ! Here's the original in all its glory.

Meanwhile, I'm still wondering who makes a DAB radio without 'set channels that are a bit like the channels on your TV'.

UK.gov's smart meter cost-benefit analysis for 2019 goes big on cost, easy on the benefits

Gerry 3
Boffin

Re: numbers??

Gas meters are also smart: they are battery operated and phone home via the electricity meter.

The Smart Meter Roll-Out Cost-Benefit Analysis (2019) says "The total costs of the programme over the appraisal period are estimated to be £13.4bn, with £13.1bn attributable to domestic premises" and that "Just as with traditional metering, smart meter costs are recovered from energy suppliers’ entire customer bases."

Gerry 3

Re: numbers??

You're right about the load shedding aspect: smart meters can implement much more granular power cuts compared to substations switching off whole neighbourhoods (including vulnerable customers such as those who rely on medical equipment or alarm systems). Smart meters can also implement load limiting. It's all down to forthcoming shortages in generating capacity: we couldn't even keep the trains running and the lights on a few weeks ago when there were a couple of glitches.

But you're very wrong about the average bills (even the site you quoted says it's £1254 p.a., or £880 if you're on the cheapest tariff). Similarly, the costs of smart meters are being paid for by customers of the energy companies, not by the government. Even if the government were paying, there's no magic money tree: one way or another we all end up footing the bill. £13.1bn is now attributable to domestic premises and in 2018 there were 27.6 million households, so that's a whopping £475 each.

Gerry 3
Boffin

Re: If "smart meters" are so good

Smart meters for gas are included in the project.

Smart meters alone don't save anything: they may help consumers to use slightly less energy.

Gerry 3
Alert

Mega Expensive when you want to use it !

Smart meters mean Time of Use tariffs. Only 41.94p/kWh in SE England at peak time...

EPIC demand: It's time for Google to fly the Nest after 'forgetting' to mention home alarm hub has built-in mic

Gerry 3
Happy

Re: Google Wise Monkeys

Do Know Evil. FTFY !

Ecuador says 'yes' to Assange 'freedom' deal, but Julian says 'nyet'

Gerry 3

Re: Verbal subjects

Some of we think that this is taking the post off topic, so us will have to agree to disagree.

Gerry 3
Boffin

Verbal subjects

> Queue isn't a verb

I queued for a bus: that makes 'queue' a verb in my book.

> Us sheeple will just bugger off...

Nope, should be 'We sheeple...'. Stones, glasshouses and all that.

Talk about a GAN-do attitude... AI software bots can see through your text CAPTCHAs

Gerry 3
Boffin

My whinge about CAPTCHA is that the relevant objects are often not neatly contained within the boxes.

If it's traffic signs do you just click the main two boxes, or do you include the pole and the 'spillover' boxes ?

But at least it doesn't ask you to click on the pavement, a stroller or a solicitor...

Shocker: UK smart meter rollout is crap, late and £500m over budget

Gerry 3
Boffin

Re: pros of the smart meter

If your oven was 2MW you'd need a substation to power it !

Gerry 3
Boffin

No legal requirement to inspect meters any more

>although by law they will still have to inspect the meters every two years anyway.

That's no longer the case, the requirement has been scrapped.

Gerry 3
Stop

Re: What could possibly go wrong?

Or just say NO.

Gerry 3
Boffin

Re: Reluctantly may have to get a smart meter.

Use a camera with a selfie stick instead.

Gerry 3
Happy

Re: What could possibly go wrong?

You forgot remote disconnection. Smart people with dumb meters will stay warm and bright when there's not enough juice to go round.

Gerry 3
Go

Electric Morris Minors

>Apart from the Morris Minor (made in 1966) - we've had it almost 25 years. If they did a hybrid system upgrade for it, we'd get that done too.

You can do better than that - your Morris Minor can go fully electric !

Gerry 3
Black Helicopters

Re: How are these supposed to save energy?

So you're a refusenik, huh? You don't want to have the Sunday roast at 2am and do the washing and tumble drying at 3am?

You need to be re-educated. No more flights or high speed rail travel for you !

Gerry 3
FAIL

Re: Smart meters do not save energy

> What a load of FUD.

It's FACT, not FUD. You're referring to permanent disconnection because of non-payment.

In contrast, smart meters can disconnect individual users for short periods (load shedding) when failure to build sufficient generating capacity means that there won't be enough electricity to go round. It's what they'll do when eye-watering Time of Day pricing (35p/kWh or more) hasn't worked.

Analogue radio is the tech that just won't die

Gerry 3
Unhappy

Planet Rock is MONO !

Planet Rock is Mono, in common with many other UK stations that use plain DAB rather than the modern(ish) DAB+ standard used almost everywhere else.

Gerry 3
Alert

Beware of obsolete new radios !

Buy a new DAB radio at Tesco, John Lewis, Sainsbury's, Currys etc and you may well find you've bought a lemon: many of their own brands are effectively obsolete because they don't support DAB+. They want you to buy twice.

Gerry 3
FAIL

Re: Analogue Radio Must Never Die

The noon Shipping Forecast is LW only.

Gerry 3
Boffin

Re: I'm increasingly ambivalent about technology.

FM does carry Now Playing info, assuming the station can be bothered to implement it. It's called Radiotext.

Which? That smart home camera? The one with the vulns? Really?

Gerry 3
Facepalm

Good only for White Goods

I find the Which? reviews useful for seeing what's on the market and what all the bells and whistles do. They seem OK on relatively straightforward things (e.g. the toaster will burn the toast if you use it again immediately) but they are often well out of their depth even on slightly technical thingies.

Not so long ago I was amazed at their review of DAB radios which completely failed to mention the need to check for the Digital Tick. Many well known retailers such as Tesco and John Lewis are still ripping off their customers by selling digital radios that can't receive the ever-increasing number of DAB+ transmissions in the UK, but Which? readers would be none the wiser.

Buried in the hype, one little detail: Amazon's Alexa-on-a-chip could steal smart home market

Gerry 3
Stop

If it has Alexa inside, I won't have it in my house.

Even if they give it away free of charge.

Sealed with an XSS: IT pros urge Lloyds Group to avoid web cross talk

Gerry 3
Facepalm

D'oh !

The Halifax website has a very obvious weakness: the password characters entered via the drop down menu are displayed permanently rather than momentarily.

Their 2FA is also poor because it relies on an SMS. They've never considered that mobile numbers can easily be hijacked.

TV Licensing admits: We directed 25,000 people to send their bank details in the clear

Gerry 3

It worked for me !

But I share your views about Capita.

Gerry 3

Withdrawing their Implied Right of Access and warning them of the Malicious Communications Act 1988 will immediately stop ALL the threatening letters.

Page: