Posts by Adam 1

Re: why

> Why on God's green Earth does someone, anyone, actually want to run _iTunes_ on a _Windows device_?

Apple must think that their customers are too stupid to get music and video onto their iThings using copy paste like the rest of the world.

Re: I do not install anything asking for this permission

>The noble idea of app permissions is flawed by not being able to revoke them individually at install time or afterwards.

It would be a good start to be able to eliminate search results in play store by requested permissions.

Re: Greenies

Tassie has a small population and a struggling economy. Hydro everywhere which would be a plus. SA has a lot of wind power and is a much bigger market.

Between Sydney and Melbourne would give pretty close to half the country's population, the main downside is that Victoria has some of the dirtiest power generators around so any Tesla sold down there would be worse than a large SUV for CO2. Plus a large amount of that capacity will be sold off cheap now some smelters have closed down.

Re: Legality ?

>When there is no password set, VNC simply connects and shows the desktop. It is therefore available to the general public in exactly the same way that a public website is.

An unlocked car whilst foolish is not an invitation to hop in. An open front door is not an invitation to wander in and take a photo.

I suspect that the researchers are probably (in the IANAL sort of way) OK to establish a connection to these computers, but taking a screenshot is both unnecessary from their research point of view and moves well into privacy violation territory.

Re: Ooohhhh! A terrible attack is available in the lab !

Whilst it can be defeated by HTTPS, that isn't really the ideal technology to transfer large files because it limits proxy servers' ability to serve those downloads. The server is also then encrypting each packet in the file with the session key which is even more overhead. Publishing the sha256 hash of the download is much more efficient. The main problem is that if you can intercept the file download it is trivial to intercept and change the page with the expected hash. That page could be delivered over https.

Re: Standard Windows timings

>Windows 8.x seems to improve this though, grabbing and applying updates post-install seems to be much improved

Funny thing is that my memory of installing 8.1 involved first applying about 1GB of update patches before it would let me download the upgrader itself (only available via their windows store BTW) which then proceeded to basically blow away and replace with new versions all of those files it had just demanded be installed.

Incidentally, I don't remember win 7 taking as long as OP suggests. Maybe I spent too long many years ago fighting each machine that was loaded with either 2k or 98 where upon install you had to find another machine with net access to find your network drivers before you could find your video drivers so you could get out of 640*480 mode... fun days (and at the time Linux wasn't much better; the initial install was seamless in comparison but there was always something that would take days to get working.)

Re: Possible solution?

>The Server could encrypt pages using a user-provided Public Key.

Sure could. How do you validate that the server you sent the public key to is the right one? A malicious server could substitute your public key with its own, talk to the real server, decrypt the website, then re encrypt it with your public key and you are none the wiser.

Re: Misdirection

>nmapping the internet is a fast way of attracting attention, no matter how stealthy you might think you are.

You are right, but I highly doubt that the port scan is happening directly. They would already have a botnet which would do their dirty work.

/applies tin foil

I am sure when they managed to take over the cryptolocker C&C servers they just shut them down without pushing their own malware into hundreds of thousands of machines.

Re: Pop goes Samsung's glossy image.

A fair comment. My recent experience was the opposite. Bought a new HP ultra book which refused to activate. Went through the reset my PC (that is the new lingo for reloading the original image) to no avail so I connected to their web support portal thing. They* were utterly useless and just kept advising to reset the PC to see if it fixed it. The third technician to get involved even offered to "generously" post out a recovery DVD (all I needed to do was buy an external drive).

It wasn't until the local outsourced repair company got involved that the problem was fixed (and they actually turned up when they said and returned phone calls). The difference was night and day. So I guess YMMV.

*Yes I know the web support is also an outsourced company.

Re: Fiddler2 is a useful tool

It is very useful, but now it is owned by teleric it is only a matter of time before it is EA-ified.

You must be new here. Hi, I am Adam 1.

Re: We're gonna need a bigger hard drive...

>how is that kind of bandwidth possibly handled?

I imagine frame to frame compression would be amazingly effective at that frame rate.

Re: Pete 2 One Tip...

>Once the sender and/or recipient are identified they can simply move to either a warranted search

I have no problems with Spook's executing warranted searches with proper oversight (like a judge). It is the wide scale untargetted fishing expeditions that grossly invade the privacy of everyone where I disagree. If we are going to start (continue?) to track everything about everyone then we put in place the key infrastructure needed by a police state. You had better make sure that the risks and substantial costs are worth it...

Re: It was inevitable.

>Cracked, hacked, decrypted, recovered keys, i dont give a monkeys HOW it was done. But it was..

Thief 1: We managed to crack the uber secure super vault.

Thief 2: Awesome! But how? We have been trying for years without success. Even the cops and even three letter agencies haven't been able to get in! That is a game changer. Can you describe how you did it?

Thief 1: We found a spare set of keys in the wife's handbag.

Re: Abbott is a complete and utter incompetent

explained his plan to attack the youth unemployment issue on regional centres by funding training and apprenticeship programmes as well as university scholarships and business incentives to come on board, financed by phasing out tax concessions to superannuation income over $200000.

(No, he didn't suggest this, but I surely proved you could be surprised by the end of that sentence)

Re: Brandis

I laughed out loud literally after watching that interview with David Speers. Then I remembered that this is our AG so now I am just depressed.

Re: Honestly

I didn't but that's OK because someone else did.

Re: Ironic

Or to be able to use the phone while overseas without the extortionate roaming charges (especially for data).

Even if they do want to root their phone, why is that a problem? The vendor can refuse a warranty claim if the problem can be shown to be caused by the rooting process. Piracy is a problem with or without this law. The piracy problem was not solved for the 18 months when it was banned so why would it be solved if the ban remained in place.

Re: I always figured the plan was:

I think that was the original thinking but they discovered they didn't need to do steps 1,2 or 3

Re: re:- " Brits don't like us because we don't use the letter U in every second word..."

> Admittedly the US did turn up - late both times - but only after agreements which effectively neutered the resolve of the "Brit's", and then only to protect US economic expansion.

Hmmm. Normally it is the residents of the land of the free that I seem to encounter who don't seem to know their own history but love to point out the failures of others.

While yes, the US took a long time to realise that an isolationist position was untenable, I suspect that a certain nation behaving like dicks in the Ukraine at the moment might offer a slightly different viewpoint about the length of time taken to open up the western front. The alliance with Stalin was never more than that of a common enemy and from a British point of view it was preferable for the Nazi and communists to be killing each other than to become another Spain.

>And Apple with their Itunes and Ipod with integral hard drive that has a facility to store a complete CD in a lossless format from my home collections of CD's are not included in the law suit because?

Simples! Those record companies are just waiting to be sued. Have you not seen the round corners on the typical CD? Has a CD never stopped working because you were holding it wrong? Apple have them over a barrel!

Re: Limericks

>we do have some interesting town names like

Additionally there are complex abbreviation rules. You can call Wagga Wagga Wagga; but you can't call Woy Woy Woy.

Re: Another Tech That Should Die

I completely agree with Jake.

/WTF JUST HAPPENED

Wow! That link is a freaky time warp back to the www of that era. All it needed was a blinking heading.

Re: Water supplies?

I can't comment for everywhere but gravity fed is still preferred. In this way the pumps don't need to be strong enough to maintain full pressure during peak demand, just enough to replenish across the day/week. This permits smaller pumps and/or off peak power to be used.

Re: We need a new elReg Unit of Measure?

What about the Palmer-Gore scale?

My thought on this is that there is no free lunch. Someone has to pay for this data retention, for the spinning rust, the tape archives and the masses of servers sitting up top. Who is supposed to pay for that? The ISPs? Are you not attempting to transfer the true cost of the surveillance tools you believe are necessary to perform your job?

What about the security of the data? It is very expensive to ensure the data remains secure both during transfer and at rest. Who is going to pay for continual audits and penetration testing? Who is liable when a user's privacy is violated?

No. If it would blow your budget in a week and not turn up the quantity of useful leads where you can justify it against your own budget then that probably tells you something about its value. Just pushing the cost to someone else doesn't make it any cheaper. It just makes our internet bills higher rather than our tax rates. Forgive my lack of excitement over that "saving".

Re: How do you make sure of this?

"Except that if you can revoke permissions at any time, those functions would have to be called every time anything is done in the app ever. Making it ridiculously slow."

Firstly, I did not describe a model where users could revoke permissions at any time. I suggested that they could choose which optional tokens they accept.

Secondly, the permissions are held in a manifest, and the OS could quite easily maintain a hashmap of application/permission. Even on modest phone hardware this would be capable of several hundred thousand containsKey calls per second. I am really racking my brains to imagine what sort of overheads you are imagining. I would be unsurprised if the OS does this behind each API call anyway.

Re: I am amazed

>If this data is supposed to be so secret, what is it doing on internet connected servers in the first place?

Totally agree. If the military wanted to connect their IT assets together into some distributed interconnected network they should invent one.

Re: Something wrong

Never fear. The long running tradition has been continued where phone reviews don't mention the capability (or otherwise) of "making a telephone call".

Re: Why 128 bit AES not 256 bit?

>How about a non-American government generated encryption method instead?

How about one invented by a few Belgium blokes? There is a good one called AES....

Re: on a technical note...

>THE SKY IS BLUE!

In the UK that WOULD be news!

Re: @Stuart Longland

>you seem to want something for free when it actually costs something to build

Who held a gun to their head and asked them to release it for free? You are conveniently ignoring their bait and switch of claiming it is free but the cost is hidden by a EULA so long that no normal person could possibly comprehend it. Or another way to think of it is would the free* software have gained such market share if they charged for it all along? Did their decision to give it away make competitive products unprofitable?

*Free as in you can have this beer if you let me look through your fridge and note everything in there and then offer you advertisements based upon people with similar tastes)

>Your talking nonsense

You're

Re: A remarkable achievement

...taken lightly

IC what you did there.