* Posts by Graham 24

196 publicly visible posts • joined 27 Mar 2012

Page:

400,000 Windows Server 2003 boxes face SUPPORT DOOM

Graham 24

RIsk reduced, not removed

True, you don't get as many people doing their online banking via a Server 2003 machine as you do via XP, but the risk is still there, even for a machine not connected (directly) to the internet. The vast majority of these systems will be on a corporate internal network, and therefore indirectly vulnerable to downloaded exploits.

An end-user downloads some malware via one of the usual vectors, but instead of infecting the local machine, the malware scans the network for vulnerable 2003 machines and infects one of those.

Drone in NEAR-MISS with passenger jet at Heathrow airport

Graham 24

Also, civilian radar doesn't really detect the actual aircraft - it detects the transponder in the aircraft that sends a pulse back in response to an interrogation request from the ground radar.

Oracle bypasses SAS/SATA controllers in flashy new servers

Graham 24

Re: Coding solution?

Probably because it speeds up well-coded SQL, that's already optimised, as well as the queries that are badly written.

Google kills CAPTCHAs: Are we human or are we spammer?

Graham 24

Re: Hmmmm...

Provided the image is of a bird, we have five years before this method is obsolete:

http://xkcd.com/1425/

Chef and HP cook up partnership for infrastructure as code – even on Windows

Graham 24

Re: Ansible & Salt

If you think you're at risk from producing unstructured code, and apparently have a history of producing it, surely the approach is to change how you write the code, not the language you write it in? Any language can be used to produce an unreadable hair-ball, and any language can be used to produce structured, documented and maintainable code.

If a developer was producing C++ code that made extensive use of goto and setjmp, I wouldn't be thinking that the solution was to change to Java.

Part 3: Docker vs hypervisor in tech tussle SMACKDOWN

Graham 24

Re: Not disruptive?

"They're significantly sub-optimal for everything else, but they're widely deployed because there's nothing better that's widely-available."

So what's better then, even if it isn't widely available?

"it's much easier to tune a workload in one place rather than two"

Not if the container has very limited tuning capabilities and the hypervisor and guest have much more sophisticated tuning capabilities. Just because something is easier to do doesn't mean you end up with a better end result.

Docker, Part 2: Whoa! Spontaneous industry standard! How did they do THAT?

Graham 24

Change of heart?

Can I ask what's prompted the change of heart from

"I might write it for Docker, once Docker has things like FT, HA and vMotion, but I'm honestly not sure why I'd bother, Docker seems like more work than AWS and doesn't offer a fraction of the flexibility you get when using a proper hypervisor."

(http://www.theregister.co.uk/2014/09/17/pay_for_what_you_provision_cloud/?page=2)

to today's

"Docker looks set to become a major component of modern IT infrastructure."

As far as I can see, Docker still doesn't have FT, HA or vMotion-esque features (unless you consider those to be present one level up, at the parent OS level). Are they coming in some future release?

Docker: Sorry, you're just going to have to learn about it. Today we begin

Graham 24

Define an entire operating environment with a text file?

Sounds interesting...

Can you post an example text file?

Graham 24

Differences from virtualisation?

"Done properly, applications that are jailed cannot impinge upon the resources of other applications that reside in other jails, cannot see their storage and shouldn't even be aware that those other jails exist."

For a hypervisor, I could say:

"Done properly, operating systems that are virtualised cannot impinge upon the resources of other operating systems that reside in other virtual machines, cannot see their storage and shouldn't even be aware that those other virtual machines exist."

In the spirit of enquiry, how does a container differ from a "full fat" virtual machine?

I'm thinking of this from the point of view of the application - presumably each application "sees" a certain number of CPU cores, a certain amount of RAM, a certain amount of disk space and so on. That sounds a lot like a standard virtual machine to me. There must be a difference though.

Is it just that the containers share the RAM associated with the "parent" operating system, so there's some efficiency and performance gains, or are there some specific technical differences aside from performance?

Fat upstart Nimble embiggens revenues by 77% in ONE quarter

Graham 24
Facepalm

But they're getting longer by less - so the rate of increase is dropping. It's a good way to spin increased losses - you get to use words like "less" and "reduce" in the same sentence as "loss", hopefully disguising the fact that you're still losing more money than you were before.

Looking at the chart, I'd estimate approximately a total loss so far of about £130M. Or to put it another way, even if they make profits of $25M /year for the next four years, it's 2020 before they are really in the black.

I like the growth strategy though:

•Get new customers

•Grow Global 5000 customer base

•International expansion

•Encourage customers to expand app load after purchase and buy more product

I read that as:

•Get new customers

•Get new customers

•Get new customers (not in the US)

•Get customers to buy more things

That must be why I don't run a business that loses $100,000 per day - there' no way I could think of such a creative strategy of "get more customers and get them to buy more things" - that's business genius right there.

Let's vote on breaking up Google, say MEPs with NO power to do any such thing

Graham 24

Re: Precedent has been set...

If you're that fussed about the analytics, you can always add www.google-analytics.com to your local hosts file, pointing at the loopback address.

Graham 24
Coat

Re: New Start-up idea: Euoorle / Findo

I'll join - it sounds like it would be cool.

We have a winner! Fresh Linux Mint 17.1 – hands down the best

Graham 24
Joke

It's an oldie but...

... if you're going to do the computer innuendo thing (btw, I don't claim credit for writing this):

Micro was a real-time operator and dedicated multi-user. His broadband protocol made it easy for him to interface with numerous input/output devices, even if it meant time-sharing.

One evening he arrived home just as the Sun was crashing, and had parked his Motorola 68000 in the main drive (he had missed the S100 bus that morning), when he noticed an elegant piece of liveware admiring the daisy wheels in his garden. He thought to himself, "She looks user-friendly. I'll see if she'd like an update tonight."

Mini was her name. She was delightfully engineered with eyes like COBOL and a Prime mainframe architecture that set Micro's peripherals networking all over the place.

He browsed over to her casually, admiring the power of her twin, 32-bit floating point processors and enquired, "How are you, Honeywell?" "Yes, I am well," she responded, batting her optical fibres engagingly and smoothing her console over her curvilinear functions.

Micro settled for a straight line approximation. "I'm stand-alone tonight," he said. "How about computing a vector to my base address? I'll output a byte to eat, and maybe we could get offset later on." Mini ran a priority process for 2.6 milliseconds then transmitted 8K. "I've been dumped myself recently, and a new page is just what I need to refresh my disks. I'll park my machine cycle in your background and meet you inside." She walked off, leaving Micro admiring her solenoids and thinking, "Wow, what a global variable. I wonder if she'd like my firmware?"

They sat down at the process table to a top of form feed of fiche and chips and a bucket of Baudot. Mini was in conversational mode and expanded on ambiguous arguments while Micro gave occasional acknowledgments, although in reality he was analysing the shortest and least critical path to her entry point. He finally settled on the old, 'Would you like to see my benchmark routine?' but Mini was again one step ahead.

Suddenly she was up and stripping off her parity bits to reveal the full functionality of her operating system software. "Let's get BASIC, you RAM," she said. Micro was loaded by this stage, but his hardware policing module had a processor of its own and was in danger of overflowing its output buffer, a hangup that Micro had consulted his analyst about. "Core," was all he could say, as she prepared to log him off.

Micro soon recovered, however, when Mini went down on the DEC and opened her divide files to reveal her data set ready. He accessed his fully packed root device and was just about to start pushing into her CPU stack, when she attempted an escape sequence.

"No, no!" she cried. "You're not shielded!"

"Reset, baby," he replied, "I've been debugged."

"But I haven't got my current loop enabled, and I can't support child processes," she protested.

"Don't run away," he said, "I'll generate an interrupt."

"No, that's too error prone, and I can't abort because of my design philosophy."

Micro was locked in by this stage, though, and could not be turned off. But Mini soon stopped his thrashing by introducing a voltage spike into his main supply, whereupon he fell over with a head crash and went to sleep. "Computers!" she thought as she compiled herself. "All they ever think about is hex."

The Big Data wrangling CIO you've probably never heard of: But his kit probably knows YOU

Graham 24
Joke

Re: I don't think so ...

>>> also Pearl should be Perl

Maybe it's a new scripting language designed to be run in a shell?

NetApp cyclists part from storage firm... go to Bora Bora

Graham 24

Re: Hope they've sorted the legals

The car's probably not a problem. Typically cycling teams are sponsored in part by one of the three main drivetrain & component manufacturers (Shimano, Campagnolo and SRAM), and there is usually a requirement to black out the names of any component made by someone who isn't a sponsor.

I bet it'll be an interesting discussion if the new team is part-sponsored by Shimano, and the main sponsoring name is the name of a key product by a competitor. Most people watching cycling and seeing the name "Bora" are going to think "I must buy some Campag. wheels" long before they think "I must buy a German kitchen appliance".

Graham 24

Hope they've sorted the legals

Bora is the name of a rather expensive (£2000+ a pair for top-end) wheels made by Campagnolo, an Italian manufacturer of cycling components.

Bendy, but hangs loose too: Lenovo Yoga Tablet 2 10-inch Android tab

Graham 24

Re: John Lewis

The VAT-back offer isn't specific to John Lewis - it's run by Lenovo. Applies to a range of their hardware.

See https://lenovo-offers.com/winter-vatback

WATCH Rosetta's Philae's SUCCESSFUL drop on Comet 67P

Graham 24

Obligatory XKCD reference

Looks like XKCD is doing a "live" stream too...

http://www.xkcd.com/1446/

How mobile device management is taking on the BYOD challenge

Graham 24

Re: Virtual Desktop Infrastructure

Why do you say that software development is not suitable? It's mainly editing text, which is ideally suited for a remote-working scenario (protocols like RDP are very efficient for text).

It's a problem if the devs insist on downloading a 5GB repository to the local client, but provided you keep the source code, compile and link etc on the server end of the remote link, there isn't a problem.

Boxing clever? Amazon Fire TV is SO CLOSE to being excellent

Graham 24

Re: WiFi?

Try a wireless extender like http://www.amazon.co.uk/gp/product/B0055Y6PUA?psc=1&redirect=true&ref_=oh_aui_detailpage_o01_s00

My parents (why do we end up doing all their tech support?) had to get a WiFi signal up a level, and then through a thick external wall (an extension was added to the house, so an external wall now is inside the house), and the wall was made of granite blocks. Before extender - very spotty, dropped out 10 times a day. After extender, no problems at all. Much less hassle than running an ethernet cable.

Fujitsu waves 50PB+ monster at hyperscale storage freaks

Graham 24

Re: Where's the corresponding tape silo?

Thing is, a single replica implies twice the cost of hardware, power, cooling etc, never mind the bandwidth to keep the two replicas in sync. Often it isn't cost effective.

Graham 24
Stop

Where's the corresponding tape silo?

How do you back up that much storage?

"The system’s usable capacity depends upon the number of data replicas, two or three for example, set up to protect against data loss."

Data replicas, assuming they're on the same hardware, don't protect against a fire in the DC, or a few burly gentlemen on a dark and stormy night with sledgehammers and a Transit van.

Can you really run your business on a smartphone?

Graham 24

Everyone apart from me, obviously...

>>> "I am sure everyone reading this has their email delivered to their phone already. It is just such a no-brainer, and it took me less than five minutes to get my Hotmail, corporate and private email all configured on the Lumia email client."

How does this work? Let's say I have a corporate Exchange Server behind a firewall, and a personal e-mail account accessed via POP3.

How does the phone even get to the Exchange Server?

When the phone connects to my personal ISPs POP3 server and downloads email, it's gone from the POP3 server. If I then connect later on from a desktop home computer, any new mail is then on the computer. Does that mean that half my personal email is on one system and half on the other?

Whomp, there it is: Seagate demos Kinetic disk drive

Graham 24

I mst be missing something...

"The idea is that applications can directly use banks of these drives without having to go through complex filesystem software stacks"

Are they suggesting that applications write directly to these disks, rather than using the underlying OS's filesystem?

Me give you $14 squillion gadziddly-dillion

Graham 24
Boffin

Customer / Mark Selection Strategy

There is a school of thought that far from being "a creative tour-de-force of logical ineptitude" these e-mails are carefully written, and the style, spelling and grammar are deliberate.

If you are running a business (and that's what this is), you don't want lots of people who ultimately have no intention of buying your product taking up time with your sales people. You want to filter out those who are never going to buy as soon as possible.

These e-mails go out to tens of millions of people. For a scam operation, you don't want lots of people getting hooked with the initial contact, and then for you to invest time and effort only for the vast majority to realise it's a scam at some point in the process and back out.

What you want is a few *really gullible* people to reply to you, so you can focus your efforts on those who are likely to ultimately part with their money. The purpose of the style and content of the e-mail is to provide that initial filtering. You'd have to be a complete idiot to think that there really is a Nigerian price who has just left you $10M in his will - and that's exactly the sort of person they want to contact them.

EE launches 150Mbps '4G+' in the heart of London

Graham 24
Facepalm

Re: FUCKIN LONDON AGAIN!

A business launches an expensive service in the place where there are lots of people willing to pay high prices for it and the underlying infrastructure is in place to support the back-end network needed.

I can't for the life of me imagine why they didn't launch it in the Isles of Scilly or the Outer Hebrides instead.

UK smart meters arrive in 2020. Hackers have ALREADY found a flaw

Graham 24

Re: The questions of communications

SIM card and a cut-down "3G dongle" in the meter itself is the obvious one. The supply side of the meter will always have power, even if the consumer side is turned off.

Graham 24
Unhappy

The actual government PDF makes for depressing reading

See http://www.parliament.uk/briefing-papers/SN06179.pdf

It contains phrases like

"Demand-side response involves electricity users shifting (or reducing) demand usually prompted by price"

which translated means

"we will charge more for electricity and gas at peak times"

and

"a proportion of savings experienced by suppliers may be expected to pass on to consumers"

which translated means

"We expect the energy companies' profits to go up as a result of this"

The good news is

"Licence conditions allow suppliers to access monthly (or ‘less granular’ i.e. less frequent) consumption data for billing and other regulatory purposes without needing consent. There will be a clear opt-out for daily collection of data, and an opt-in will be required for use of the most detailed half-hourly consumption data"

Whether the companies choose to honour a consumer's opt-out choice remains to be seen. My guess would be that they will encourage people to opt in by "charging less" for opted-in consumers, whereas the reality would be charging more for opted-out ones.

Microsoft fitness bands slapped on wrists: All YOUR HEALTH DATA are BELONG TO US

Graham 24

Re: Cycling

For cycling, ANT+ is fast becoming the de-facto standard for speed, cadence and power measurements, so provided it speaks to (or more accurately listens to) ANT+ devices, it should be OK for cycling).

You can do speed via GPS, but a wheel sensor is much more accurate.

Even a broken watch is right twice a day: Not an un-charged Apple Watch

Graham 24

Long-term battery life

My concern would not be the fact it needs charging every night (although that would be a pain without some sort of induction pad, and inconvenient even then - forget to put it on the pad as you go to bed - no watch the next day).

If it needs charging once per day when new, how long will it be before the battery gets "tired" and only has 50% charge capacity. At that point the watch keels over half way through the day, making it useless.

Doctors urged to adopt default opt-out approach to care.data scheme

Graham 24

Opting out seems to be common

I popped into my local surgery recently, and said I wanted to opt out. The receptionist simply turned round, picked up a form from the shelf behind her, and gave it to me. I got the impression that this was an everyday occurrence for them.

Caterham Seven 160 review: The Raspberry Pi of motoring

Graham 24

Re: Sold

Not sure that's true anymore. It certainly was when ABS first came out, but modern ABS systems don't let the wheels lock up. The reluctor rings provide sufficient speed information to let the system modulate the brake pressure up to 50 times a second as a wheel speed drops, and independently for each wheel, before any wheel starts to skid.

I doubt very much whether a human driver, no matter how skilled can

a) detect a skid in a few milliseconds

b) pump the brake pedal 50 times a second

c) provide different brake pressures to each wheel

Graham 24

Re: Sold

Yes, but if the Caterham and 2CV had ABS, they'd stop even quicker than without.

Graham 24

Re: Prices - Need the exact model for a comparision, but...

Does that include all sales taxes? List price in the UK for a base-model X1 is £24,230, but that includes 20% VAT (our UK sales tax), so it's £20,190 ex tax, or about what you paid.

Graham 24

Re: Sold

It's all very well saying that you don't want all the techy stuff, but when your small child runs out into the road on one rainy afternoon, I bet you won't be thinking "cars don't need ABS".

There are some things that these days cars *can* do better than the driver.

Graham 24

I agree it's rare - I just think it's bad for a car company to give a journalist a car to review when it's technically illegal to drive that car on the road.

It's the journo who would get fined, not the marketing bod from Caterham who thought it was a good idea for the publicity photos.

Graham 24

The spacing is wrong. It looks like the actual VRM is S16 OCC, and moving the O to the left is an offence, with a £1000 penalty.

See http://www.legislation.gov.uk/uksi/2001/561/introduction/made for the whole thing and http://www.legislation.gov.uk/uksi/2001/561/schedule/3/made for the precise layout details.

Graham 24

Was it supplied to you with that number plate? That's a £1000 fine just waiting for a bored traffic cop...

Nice PistonHeads reference, by the way.

Warning to those who covet the data of Internet of Precious Things

Graham 24

Re: How can IoT stuff help me?

>>> Apart from the 'convenience' of remotely read gas/electricity/water meters (no need to be there to let a meter reader in once a year)

It's not about convenience for you. If the only reason was to make life easier for the householder, the utility companies wouldn't be suggesting smart meters for new builds, which usually have the meters in an external box, so can be read without requiring access to the inside of the property.

It's about:

a) reducing their costs, while not passing those savings onto the consumer

b) implementing demand- and time-based pricing, to further increase their profits and to help load-level the demand.

Bad news, fandroids: He who controls the IPC tool, controls the DROID

Graham 24

Re: How many

"Strangely, I don't know a single person that's ever had a [malware] problem, and I suspect everyone else is the same..."

Those applications that do things like log your online banking keystrokes tend to keep quiet about it, you know. The whole point of most malware is that you don't realise it's there.

Google ordered to tear down search results from its global dotcom by French court

Graham 24

That would be the sensible thing to do. Two problems with that:

1) The court rulings are being made by judges, and supported by politicians, who think that "Google" and "the internet" are the same thing.

2) Getting the underlying site to remove the content is much more difficult. If it wasn't, the record labels, media companies etc. would have removed all pirated content a long time ago. Going after a big company is much easier, and makes it *look like* the problem is being addressed.

Reddit trousers $50m to splash on ads, mobile and cash-generating staffers

Graham 24

Re: It takes money

I suspect a lot goes directly into the founders pockets, but in a subtle passes-the-accounting-audit way.

Recently, there was an article on El Reg about Outsourcery - losing £3.6M on revenues of £3.5M, but somehow the two head honchos were paid over £500,000 in the previous year.

(http://www.theregister.co.uk/Print/2014/08/14/outsourcery_salary_sacrifice/)

Anti-Facebook Ello: Here's why we're still in beta. SPAMGASM!

Graham 24

They may be hoping that the reverse is true:

"All the rest of my social group have paid for super-shiny-whizzy feature X, so I'd better pay as well, or I'll get left out"

The tricky thing with all these things is getting going. I take your point about chicken and egg, but the same could be said of the first telephone / fax machine etc.

SHELLSHOCKED: Fortune 1000 outfits Bash out batches of patches

Graham 24

Re: Fortune 1000 overlords SHELLSHOCKED into Bash patch batch

"all of our critical systems on stable, long-term tested software"

"apply security patches automatically within 24 hours of their release"

The first is sensible, but can't be true if the second is true. It can't be really considered stable if you change it as soon as a security fix comes out.

"The risk of a security patch tacking a system down is trivial compared to the potential consequences of leaving a known vulnerability open."

Not sure I'd agree with that. I'd agree it's probably less, but there's many a bug been introduced because someone was in a hurry to get a patch out. The original ShellShock patch has undergone at least two modifications after its initial release.

Graham 24

Re: @AC re: MS consultants

I don't know of any Linux distributions (or any operating system for that matter) that offers those either.

There may well be a large amount of "the grass is greener over there" being applied, though, which may well drive some changes.

Graham 24

Re: Fortune 1000 overlords SHELLSHOCKED into Bash patch batch

The trouble is, you really don't want to get notified every time one of packages that's installed on a typical Linux system is updated in one of the main repos. The signal-to-noise ratio would render such notifications useless.

Very few systems are truly "up to date" in that all the software is the very latest that's available. This is even more true for corporate production servers, which tend to be conservatively managed, with a preference for stability over security.

A Norsified Linux for Windows and OS X wobblers

Graham 24

Re: Bottom Dock/Panel

>>> So much UI design seems just glossier and prettier but backwards in useabily compared with best 1978 to 1998 designs.

So presumably, you now "design" interfaces that look just like the ones from the 1980's? After all, they are much more usable, apparently. Care to give us an example of one you've designed?

Samsung lays down PCIe server flash gauntlet

Graham 24

Re: marketing shot

A single PCIe v3 lane runs a whisker under 1GB/sec, so if the memory on the card supports a maximum of 3GB/sec transfer rate, presumably four lanes is enough.

Page: