Posts by pig

Re: Real life example

There is a great deal of difference between what auditors should know and do and what they do know and do.

Now now, let's not get silly.

Re: Measuring standards pedant alert!

So you would be allowed a square one? 100x100yards?

That would be interesting.

Re: The bad news

"What's unclear? Many, maybe most, of the vulnerable devices won't be fixed -- ever."

Yeah, but it is also clear most handsets wont also be pwned, and most users wont care or know either way.

I know us lot like to think that everyone should be super security savvy and fully alert about their data, but most people just don't care - unless it has an explicit and noticeable effect upon them.

Certainly, I don't think your solution is the right one. Shutting yourself off from the world is not the answer, and neither is overplaying the threat.

Are the risks of someone getting some/all of your data proportional to your actions?

I don't think so personally. But hey, each to their own.

The Pro wouldn't crash the van in the first place.

Re: Huawei

They specialise in the cloud though.

Securing clouds is HARD and there are groups that take advantage of that. Some of those groups are state backed, some are - essentially - private enterprise.

In the early days of 'the cloud' I remember seeing a great example of lateral thinking for a 'hack'

The provider was pretty good with the security on the live servers.

If you hired a box in the same data centre as your target though, and then purchased backup services you could, given the right skills, follow that route to a backup box shared with your target...

The security on that box was not as good as live.

Re: Why is Christmas so far away?

LEGO sets will usually have a few extra bits, almost always the smallest parts.

It is due to the way they pack the sets and that they decide a while ago it was better (and cheaper) to have extra bits in then have people upset they are missing a bit. (As happened during the dark days of LEGO when the company was struggling)

Over time they add up to a lot of pieces.

I know I have a bag full of 'extra bits' that is scarily large!

"Just for good measure, HPE also claims that as time went on, Lynch became “less and less focused and grounded in reality,"

Sounds like he was nearly perfect material for a HP Chief Exec, except he must have remained a bit too grounded in reality for their liking.

Is it just me though or does most of the evidence HP have brought work against them?

This is a most odd case.

Re: a refund to be paid into a prepaid debit card

I'm sure there are people without bank accounts, but doubt they would be filing a tax return at all, let alone online.

Allowing the refunds to be paid on to pre-paid debit cards is bonkers.

Part of my brain screams 'inside help' but then the other, larger, part just says 'stupidity'.

Re: Auditors?

This.

What I heard at the time was this:

Autonomy: We are for sale for $6billion

HP: We'll give you $11billion

Autonomy: Errrrrrr. OK! :D

If you put your car up for sale for £600 and someone tries to buy it, but for £1100 and forces the cash in to your hand, are you really liable for overcharging them?

Autonomy didn't think they were worth that.

HP finance people didn't think they were.

But Leo and his adviser decided $11bill was a snip as they could make it worth $17bill!

In reality they made it worth about $3.5 bill.

Autonomy should point out prior behaviour to the court too.

They are far, far, far, from the only company HP have bought and messed up.

Re: waste

I once supported a 4 person departmental HR team that had 3 colour laser printers.

When colour laser printers cost around £20k.

They did like to keep their budget.

Re: "Young students, for example, cannot be expected to remember and enter a password. "

My 3 year old Nephew knows the passcodes of all the iPads in his house.

Why my sister has pass codes when all her kids know them I don't know. If I am there and I want to use one I just ask my nephew for the code.

The problem with school IT is usually more with the teachers than the students, especially in infant and primary school.

My wife is an early years teacher. She has a passion for it. She does not have a passion for IT security, and neither has she been taught how to deal with it. And neither have her bosses.

As such they bumble along finding practical ways to get things done. If, and it always does, this involves unencrypted pen drives rather then secure storage they will use it.

Can we really blame them when they haven't been taught why this might be wrong?

Re: Massive-

True Story.

The only way Chequered Flag ever loaded for me was if I stopped the tape half way through the loading, rewound it a bit, then hit play again.

I don't know how I discovered this, but I do find it amusing to this day that I didn't find it odd at all.

That's just how it was having a Speccy. You learned to be creative to get things working.

(Like my level skip cheat for Operation Wolf. It involved rubbing my socked feet across the keyboard until it gave the message it was skipping to the next level).

That's what I was wondering.

The Interpol boss didn't make sense until I saw this.

Tit for tat.

It's like the 80s again.

Re: Really?

Errrrr.... Think about it folks.

I'm pretty sure scanning the QR code isn't the *only* way to get the performance info.

You could bring it up in a browser instead of making such an onerous trip.

Re: More than NICE to have

"But I couldn't find guidance for infosec (looking under several relevant terms) on the NICE website. If it's there, it's not obvious. Does it need a disaster first?"

Yes.

The NHS is, sadly, anything but proactive.

It requires a Wannacry that doesn't suddenly stop, but instead spreads more and destroys/costs more.

Sense wont get change, only public outcry after a disaster.

it's bloody sad it like that, but that's how it is.

OK. I'll bite.

"Due to the very nature of Social Media, even 30 million can cause a lot of damage.

Here how it works. Hit the 30 million with targeted ads. Say 10 million take the bait and like or share it with all their friends. Some of those do the same. After a while it becomes a meme on Social Media and untraceable back to the original source.

To be honest 1 is to many"

1. How much do you think it would cost to send ads to 30m? Go find out. It is not cheap!

2. 10m out of 30m to like or share?!?! LOL!

(For comparison) Direct Marketing has a standard return rate of around 0.01. To even imaging 10m out of 30mil would respond is bonkers.

I think so many people are overstating the effects of this.

You have been served ads.

Are you all as fickle as to be directed by these ads? No. You are not.

So why do you all think everyone else is?

Finally, social media is a business with 2 products. The platform and us.

The platform is the product we buy, and we pay for it by being served ads (targeted via our data).

We are the product the advertisers buy. They buy it with money that funds the service/company.

I thought most people understood this? I do.

I expect my data to be used to target ads because they tell me they will do this.

A lot of this complaining is like my nan moaning about ads on ITV. . .

Re: When life imitates art...

"and if they were that helpful, they probably wouldn't have ended up as a network engineer"

LMAO. Funny and true.

Re: @Vimes

A smart scammer would now resend the phishing emails as being from Talk Talk.

Re: They're not all idiots, but ...

"the 12 year old suggested replacing it with an iPhone app. He and his team were hurt when we laughed"

LMAO. Digital Dan by any chance?

The sad thing is that group of shysters actually believe that their solutions will/can/do work. They seem to be hard wired into thinking everyone they talk to is just over complicating things and a shitty iPhone ap with a catchy name and a picture taking up all the real estate on the screen is what people want.

What Whitehall needs is a trap door system so that whenever someone says "Agile" the floor opens and they are deposited to some pit, where the only way to exit is via an iPhone ap that doesn't have the exit button yet as that is tricky and has been put off to a sprint that will never actually happen.

Re: One big problem with online storage is when you become too reliant on them and they shut down.

"To be fair, there's a world of difference between an corporate oriented provider, and one that hopes to make money slinging ads."

Not with 2e2 there wasn't.

Re: > with no physical connection ... they won't be able to break in, and data can't get out.

The large 24 hour ASDA near me has 16 self service tills.

They leave them unlocked. If you push the handle with the lock on, it clicks and the screen of the machine lifts up, revealing the PC (yes, these are XP based too) and 4 usb slots.

The usb slots are enabled as this is how they reimage them if something goes wrong.

Sadly getting physical acces is nothing like as hard as it should be.

I was discussing this with a friend who fixes cash machines, and he reminded me that almost all the threats he deals with are physical.

Re: Fine but whathappens when...

"> Some idiot with a JCB (backhoe) digs up your business critical network link and it is down for several days?

You would face a similar problem with on premise storage"

No, we wouldn't.

My organisation is going the full cloud.

At the moment we have our own onsite data centre. If the internet line to the building goes down than the only effect is a notable upswing in actual work being done.

In a year or so's time, once we have gone fully Desktop as a Service (I can't wait...) the effect of the internet line to the building going down will be that no work can be done.

And yes, we do have a backup. In fact we have 3 internet lines coming in to the building. Primary and 2 back ups.

Being Local Governemnt though the 3 lines are all Virgin cable and, most likely, anything to take out 1 would also take out the other 2.

@Eagle One

>>The "S.S. 2e2" may not sail again, but she won't leave those who depend on her high and dry.<<

Really?

Out of interest which part of the 2 people who we relied upon not being paid, being laid off, and us being told we are going to get f'all from 2e2 is not being left high and dry?

We will be ok, but only because we promised to pay the staff ourselves if they rock up and complete their work from here.

Re: 'Poll' position

Live subtitles are typed on a special type of keyboard which is phonetic.

This is why subtitles of live events will often have the correct word phonetically, but the incorrect spelling - like your Poll and Pole example.

In a live broadcast there is no time to double check these as they go.

http://en.wikipedia.org/wiki/Speech-to-text_reporter

Re: ummmm

You have 1?

That's 1 more than I know of here (but then, we only have 2000 employees on this site......)

Re: A bit more reading suggests . . .

"So HP actually paid $5M a head for a professional services firm. Very hard to scale"

Funny thing. I remember reading that, on these very comment pages, before the deal was concluded.

I find it hard to believe HP on this when a majority of articles and comments I read on the deal seemed to be saying "They are massively overpaying and won't be able to scale the business".