Posts by WatAWorld

Re: It's a nice thought

But in reality, it doesn't matter if they do, or do not, create this new secret clearing house for zero day vulns, because any serious security researcher, or a nation-state-hacker-team (they always need more than one guy) can collect, examine, reverse engineer, and redeploy any remote hack that anyone can dream up, ever.

That would be like the invention of the time machine in Hitchhikers Guide to the Galaxy.

If it were so trivially easy to discover all the zero day vulnerabilities, then all the zero day vulnerabilities would be discovered at once, days after the release of the program product concerned.

It generally takes either expertise or random luck plus time to find new zero day vulnerabilities.

That is why it is total BS when some security researcher with either a Phd or no job eventually finds some (specifically) zero day vulnerability and releases it to the world because "all hackers already know about it".

a. If they already knew about it then you don't deserve publicity for finding it?

b. If they already knew about it why do the exploits only follow your information release?

c. Peer reviewed journals, tech journals, and newspapers would not mention the zero day discoveries because trivial things are not newsworthy.

d. We wouldn't have internet connected computers, since nothing substantial can be programmed by humans without it having vulnerabilities.

Is what we might learn about the terrorists worth risking people's lives for?

Obviously GCHQ didn't know about it - otherwise they would have told the NHS

It's not like the British government would risk the lives of 1000s of ordinary people to keep secret a tiny exploit

We don't live in a police state. If you patch the NHS computers, civilian computer types are going to know, including civilian computer types without security clearances.

So the decision would have been something like, "Is it what we might learn about 'the terrorists', Russians and Chinese worth risking the lives of UK citizens needing health care?"

Similar conversation in the USA regarding US civilian lives, except that protecting US health care systems is even harder since few of them are government owned and operated.

safe assumption various intelligence agencies been using these against our businesses for years

I'm still amazed that no-one else had found this vulnerability*

* I assume the Russians hadn't, or there would have been some "suggestions" to Russian organisations to at least block SMB at the firewall. Though maybe the Russian security services liked having their own EternalBlueski that they could use to snoop on their own people?

There was that Adylkuzz private cryptocurrency mining malware that had been quietly churning in the background of people's computers for a few weeks, and was only discovered during the search for WannaCry variants.

You can assume that real intelligence agency spyware would have been as unlikely to be randomly discovered by our side as Adylkuzz was.

The safe assumption would be to assume that the Russians, Chinese, Israelis, British, etc all knew of this vulnerability and had been using it against state, local and industrial targets for years.

Why would the security agencies of other countries not reveal the vulnerability?

a. Some of these countries are police states and would have probably have been able to apply protective patches to their national, state and local government computers without the public knowing.

b. The rest of these countries have fewer industrial secrets than the USA. So less to lose and more to gain from the continued existence of the holes.

Re: What

"For example, the factory next door to us bought them selves a spiffy new moulding machine , the price... about 500 000 pounds, now imagine that in 3 years time , m$ go fsck you we're not supporting your OS anymore , upgrade or else, and the machine is rendered useless."

Someone bought a GBP500,000 molding machine that is tied to an obsolete operating system?

And what did the device manager pay for that operating system? If it were Windows, $25?

I think the quarrel is with a device maker ripping the customer off by providing an inappropriate operating system to save money.

Re: A tidbit from the NY times:

"The [medical] machines can (as they should) last for decades; that the software should expire and junk everything every 10 years is not a workable solution."

Can you give us an example of a medical device, CT scanner, MRI, etc. that runs Windows?

I think you'll find that Windows is run on things like PCs used as PCs, not $50,000+ specialist hardware.

Re: A decentralised facebook

Won't work.

Each region of the world has its own Facebook equivalent, and only one Facebook equivalent.

Look at the dud that was Google+.

A personal website is not an FB equivalent.

Re: "I'm being treated unfairly... Means..."

This is a bit of a strawman argument isn't it? I mean people are saying why they think they've been treated unfairly and you've ignored that and fabricated an easy to attack image.

"When I was growing up Mum and Dad always said I was wonderful and talented and great and bought me anything I wanted and allowed me to do whatever I wanted. When I went out and got a job, the people who hired me don't treat me like that at all. I am being treated unfairly"

Re: Obligatory XKCD

" team product owner should be a goofball from the sales team. Much misery ensued."

If "team product owner" is anything like a product manager you'll find that is pretty much universal.

Same thing with CIO, usually some person with a strong sales background from somewhere, and just a little technical knowledge.

In Canada, in the finance and services industries, IT people, especially male IT people, are seen as so universally and completely lacking in people skills they're only ever allowed to run small teams of fellow socially handicapped colleagues.

Managing larger groups more requires either a woman or a former salesperson.

Re: Twas ever thus

@LGB "Good tech people are hard to find and a small percentage of the population to begin with, to try and mandate requisite genitalia and skin colour seems stupid to me."

The bosses say they hope to get more people into the industry by recruiting women. (Either that or they hope to pay $0.72 (or $0.92) instead of $1.00.)

For every woman they attract they probably push away a man.

Much better to let women who want to enter the industry. And let them take the positions they want.

It isn't always race and sex that cause the ill treatment, but to the extent that author Thomas

It isn't always race and sex that cause the ill treatment, but to the extent that author Thomas Claburn is correct that it is, the reason for the high numbers leaving is that it is majority groups and near-majority groups facing the unfair treatment.

That is certainly how it is in Canada. Once they're up to quota in your sex or race your treatment declines ways made obvious every time a manager opens its (his/her) mouth. And in IT in Canada that means male, but it doesn't only mean white males. At large companies here, Chinese and Asian males often complain privately that they're are treated so much more poorly than other members of their ethnic group.

(Basic arithmetic: Small minority groups leaving for any reason would only only cause statistically small movement. Big movement statistics require large groups leaving.)

This isn't 1980, but you still have to be quite intelligent, and you'll be treated like a labourer. IT contains perhaps half of a typical financial company's top 10% in brain power is in IT, and they're almost entirely excluded from strategic decisions and management development.

I will repeat what I said in response to past articles, I don't regard it as ethical to recommend directly entering an IT career to anyone, male or female.

Much better to do engineering or business administration or fine arts and get into IT via being an expert user.

Re: Not The Only One

"how much could Apple charge to license a copy of iOS when Google gives Android away for free?"

Maybe more money than MS made with Windows, given that there are more phones than desktops.

Re: Somebody trademark "iCar"

iCar is trademarked in Canada already, it is a training company.

And in France it is a ceramics factory.

In Germany iCar does aeronautics parts.

iVan is too many things to mention in Eastern Europe.l

But iSedan is available.

Frank, same is true no matter who comes up with the car -- or any product or service, any industry, cars, computers, TVs, music.

Company comes up with a good one, people want it, and they make a boatload of cash and it puts them ahead of their competitors.

But a question: What does it mean for a car to 'handle well' when nobody is handling it, when it is being handled by a computer? Do you mean a car that 'rides well'?

Or maybe it is a difference between UK and North American English?

Re: “Collision Avoidance Of Arbitrary Polygonal Obstacles.”

The article did give a link to the actual patent so you can see which means of skinning a cat they claim is new:

http://appft.uspto.gov/netacgi/nph-Parser?Sect1=PTO2&Sect2=HITOFF&u=%2Fnetahtml%2FPTO%2Fsearch-adv.html&r=2173&f=G&l=50&d=PG01&s1=(1%2F1.CCLS.+AND+20161208.PD.)&p=44&OS=ccl/1/1+and+pd/12/8/2016&RS=(CCL/1/1+AND+PD/20161208)

As you can see it is indeed as @malle-herbert said.

Vectors of where the car is.

Vectors and polyhedrons to describe the obstacle.

Bounding circles to describe what must be avoided.

Vectors to describe where the obstacle is in relation to the car.

Computer systems with memory, display units, memory and one or more processors.

Etc., etc.

This whole topic brings up yesterday's "Could you ethically recommend a female go into IT".

No, I couldn't ethically recommend _anyone go into IT_, unless they live in some country with very low labour costs.

Which of us would recommend a young person go into a field where they are most likely (with a exceptions) to be working for cheap skate abusive employers who treat 'permanent staff' like contractors and lay them off at the first opportunity to shift the work offshore?

In 10 years most of the IT work left here in the first world is going to be administrator work, shifting machines, cabling, swapping boards, and other physical stuff that can't be offshored.

IT was good for me for the first 25 years, now it is rapidly becoming so not worth it. I as badly for the bright young optimistic newbies just getting out of college or university now as I do for those with 10 years experience who are being laid off because their specialty was product we've switched away from.

Re: The good people

"I put my name down several times and was told I was too valuable - not valuable enough for any form of pay rise - but eventually they were left with only a few people like me who kept their hands up and I got my package. Yay."

Yes, it is the best people who aren't afraid to look around, who are versatile enough to adapt to new companies.

I'll add, in my experience many of the 'good people who stay' are generally people who have worked in one environment or with one architecture for so long they are afraid they cannot make a transition. They might have been versatile really good once, but now they are good at what they do and fear the need to learn something new.

Re: If Seagates drives didn't fail so frequently they might have been able to hang on

Sorry about the title, my computer changed it as it posted.

"for the next twenty years, men must be on their best behaviour"

Young me will do what young men are doing: Staying away from university in droves.

Those IT companies had darn well better attract female STEM graduates because STEM's male prospects have given up before they've started.

Affirmative action, whether against Jews in the 1930s, or against white men now, pushes people away, makes them leave. And then you're left having to depend on your Aryans or later day Aryans.