* Posts by DropBear

4675 posts • joined 4 Mar 2013

Here's why your Samsung Blu-ray player bricked itself: It downloaded an XML config file that broke the firmware

DropBear
Devil

Re: The Internet of break things

Faraday has entered the chat and started typing...

NASA delays James Webb Space Telescope launch date by at least seven months

DropBear
Flame

Sure thing, and if the Draco thruster RUD would have happened to NASA they would have deemed that proper procedures absolutely require no further Dragon flights within this century, until the very last one of the their bureaucrats catches up filing their last report to the relevant committee. Because, clearly, you either work to three hundred nines or have no business flying stuff.

Companies toiling away the most on LibreOffice code complain ecosystem is 'beyond utterly broken'

DropBear

This is grim

I'm in the same boat here, just installed Mint only to find it riddled with G3 nastiness sprinkled all throughout. There's some hope for the future with Xfce Classic or STLWRT but right now neither seems to be much help yet.

LibreOffice community protests at promotion of paid-for editions, board says: 'LibreOffice will always be free software'

DropBear

Re: There is a third way

Dear Lord. If mature players and tentacle sex are essentially the same thing to you, you badly need to get out more.

Readers of a certain age will remember GPRS: Old insecure tech from turn of millennium still haunts 5G networks

DropBear

Well, you know what happens when your old smartphone suddenly kicks the bucket and you're forced to fall back to your previous Symbian S60 smartphone (that incidentally was capable at doing literally _every_ _single_ _thing_ your "modern" smartphone could do) that just happens to still be working...? Well, for one, you WILL NOT connect to any webpages whatsoever considering they all transitioned to https in the interim, which your hopelessly-out-of-date-both-by-cyphers-and-certificates old phone will absolutely refuse to have anything to do with. Yes, even a simple Google search. Except... until you try wap.google.com WHICH WILL STILL WORK AND DELIVER YOU SEARCH RESULTS. Yes, motherfucking WAP. Yes, in 2020. Cower at the might of legacy tech, ye fucking mortals...

Russia drags NASA: Enjoy your expensive SpaceX capsule, our Soyuz is the cheap Kalashnikov of rockets

DropBear

Sounds like a helluva lot of sour grapes to me. In the end, I seriously doubt they can put one man into orbit for less than SpaceX can. Being able to reuse your first stage kinda does that to you...

Signal goes Gaussian to take privacy to the next level: All your faces don't belong to us

DropBear

Re: Fix the bugs first

I dunno about others, but as far as I'm concerned the stupid requirement of having to identify yourself with your phone number is what prevents me from using Signal - that is entirely unacceptable. On the other hand, Session looks promising, and gets rid of the central server problem too...

Snapping at Canonical's Snap: Linux Mint team says no to Ubuntu store 'backdoor'

DropBear

We do want Linux to be mainstream, don't we?

We do. But first and foremost, _I_ want my Linux box to be under _my_ absolute control and answerable to and serving absolutely nobody but _me_; that other goal can never ever be anything but subordinate to this one, full stop. There's nothing to balance here for me - in a direct conflict, maintaining control has 100% importance, increasing popularity has 0.00%.

Watchdog slams Pentagon for failing – for a third time – to migrate US military to IPv6

DropBear

Re: NAT is not a firewall

This is not about firewalling not being possible on IPv6 (which it clearly is) - it's about a device on a LAN being naturally impossible to reach unless you specifically take steps to make it reachable in IPv4, and the same device being naturally reachable unless you specifically take steps to prevent that in IPv6. It's not a difference of what is possible, but a bloody large (and unpleasant) difference nonetheless.

For an ideally perfect sysadmin with an ideally perfect arsenal of tools, there would be no difference between the two - but in practice I'm willing to bet it will end up mattering quite often, IPv6 leading to loads more scantily protected stuff ending up exposed to anyone with an interest than it would have on IPv4.

All-electric plane makes first flight – while lugging 2 tons of batteries aloft

DropBear
Trollface

Re: The video

Well, you could connect the prop shaft to a long tube made of a number of hamster wheels inside the fuselage; then you could also mount a number of those around the first one, meshing through some sprockets - this might just be crazy enough to work...!

DropBear
Trollface

Re: Could someone check the numbers?

Clearly not in a glider, but 2m might just be possible with a biplane if the passenger is offered the traditional stand-on-the-top-of-the-wing "seat"...

Tor soups up onion sites with bountiful browser bump: No more tears trying to find the secure sites you want

DropBear

Re: How do you know that ?

Also, using Tor to post your life on FaceBook. Now that's ironic.

You don't know whether they actually log into it though - I've never had a Facebook account yet see myself visiting the site plenty of times seeing as how the rest of the world apparently decided old-fashioned websites are completely unnecessary even for small businesses, it's enough if you exist exclusively on Facebook...

So you really didn't touch the settings at all, huh? Well, this print-out from my secret backup says otherwise

DropBear
Facepalm

Re: It's always fun ...

It boggles my mind how many people seem to have issues grasping the concept that being provably right can be crucial in certain circumstances, but it's never a win in any circumstances.

Dude, where's my laser?

DropBear
Trollface

Re: "Of course, in the '70s, active correction of the beam was not an option."

Oh come on, don't be silly - no need for that. You just need to rifle the laser...

You've duked it out with OS/2 – but how to deal with these troublesome users? Nukem

DropBear
Boffin

Re: Expensive

There was a version of the S3 Virge that got sold with LCD shutter glassed though - and there was a version a Descent that could actually use them. It was absolutely glorious...

London's Metropolitan Police flip the switch: Smile, fellow citizens... you're undergoing Live Facial Recognition

DropBear

Re: Big Brother is here and he isn't going away.

That is universally true. Police everywhere around the world is the blunt end of the state's domestic power. It's not meant to protect, it's meant to suppress. Criminals just happen to be closest and the most immediate target when it swings, but by no means the only ones hit.

You're not Boeing to believe this: Yet another show-stopping software bug found in ill-fated 737 Max airplanes

DropBear
Unhappy

Re: Isn't THIS why we've got to teach 2nd-graders how to "code", rather than how to think?

These days spotting and pointing out potential (or indeed very much guaranteed) problems is aggressively shunned and called "negativism". Nobody cares who and how will deal with whatever inevitable problems turn up during the execution of a job (or indeed if anyone does at all, instead of just sweeping them under the carpet) - all management (and even your peers) ever care about is that there be no objections raised so the whole thing can be rushed out of the door before it blows up, never mind whether it's ticking or not. "This will need to be solved if that is to ever work" is simply not acceptable attitude - your job is to go out there and shout at the tide without asking questions, and it's your fault if it doesn't stop.

...

There HAS to be a better way, and I want off this accursed universe, over to the one where they found it.

Copy-left behind: Permissive MIT, Apache open-source licenses on the up as developers snub GNU's GPL

DropBear

Re: Just one question

In theory, you're right. In practice, all you need is proof that a cloud service is exhibiting the same specific bug or is vulnerable to the exact same exploit (which you didn't necessarily attack it with yourself) and lawsuit can start a-flying...

Nowhere to run to, nowhere to hide, muaha... Boffins build laser-eyed intelligent cam that sorta sees around corners

DropBear

Re: Cars, really?

But but but how can you say that when this works so great at detecting spherical cows...!

DropBear

Re: Super black

That would be vantablack, methinks...

No Mo'zilla for about 100 techies today: Firefox maker lays off staff as boss talks of 'difficult choices' and funding

DropBear

Re: Removed features

The value that using a browser offers me comes wholly and entirely from its extensions and UI, not it its engine and mostly-useless "features". Mozilla chose to ditch those, I chose not to upgrade, ever. Still looking for an adequate replacement (being which Waterfox fails at amazingly hard, lacking support for much the exact same stuff), puttering along with Palemoon (and vanilla Chromium whenever the former inevitably fails to render) until I can figure something else out. As for Mozilla, they are welcome to cry me a river, for I have zero goodwill left for them; quite the opposite, in fact.

Sometimes shining a light on a nuclear problem just makes things worse

DropBear

Re: Assumptions

Well no you actually kinda can. Of course, first assumption is that things normally taken for granted are actually good, but the first time you encounter something that simply shouldn't happen or is inexplicable in any way, the first thing you do is take a mental step back and ask yourself "which ones of my default assumptions would have a chance of influencing this outcome if they were to turn out false?". And then you actually check whether they are indeed valid assumptions, of course. All it takes is a mindset of taking nothing for granted if falsifying it would have a chance of influencing the phenomenon you're out of explanations for.

The Nokia 3.2 is a phone your nan will love: One camera's more than enough, darling

DropBear

Re: Android updates

I'd just like to mention that buying "new" batteries can be quite a misleading endeavour - original batteries tend to get made only for a short time after a model is released, and you can find yourself buying batteries for a five years old phone that were actually manufactured... four years ago (or indeed almost 7-8 years ago, for a phone like my S2) - and you'll only realise this if you take the time to look up the manufacturers date code scheme and decode the gibberish on your "new" battery (which will be totally different than the one on the photo of the listing). They may technically be "new" but they've been sitting on a shelf for years, losing a lot of their capacity before even getting sold. Of course, non-original batteries also exist, but there you really have no idea what actually is inside anywhere from rated capacity down to wet sand...

DropBear

Re: Is that a bit like...

False equivalence. That quote is valid when almost or indeed all components of something have been gradually replaced. When about half of it stayed the same it's just called an upgraded computer...

DropBear

Re: "longevity ... guaranteeing two years of software updates and upgrades"

Well that explains why I'm not thinking about upgrading my Galaxy S2 - I'm not using Whatsapp...

Windows 7 and Server 2008 end of support: What will change on 14 January?

DropBear
Devil

Oh do get real

Nothing. Absolutely nothing. My W7 never ever saw any updates from day one, and I am willing to assert that I actually am competent enough to say I'm reasonably sure I'm still free of any malware all those many years later. Name your test, I'm happy to run it. Guess what, you don't need to be air-gapped from the internet (or particularly careful about what you visit...) to stay clean - as long as you do use an ad-blocker and you don't give in to every ridiculously transparent attempt to make you click on something you definitely should not. Which kinda makes the whole point of "OMG, no more updates" moot, for those of us who realised long ago that there are only two kinds of computers: those that are not perfectly secure, and those that don't yet know they are definitely not perfectly secure. That said, I know full well this is straight against the prevailing Reg doctrine so feel free to downvote full tilt - sadly I suppose, that won't make me any less secure, but it might make you feel a lot more secure than you actually are.

Blackout Bug: Boeing 737 cockpit screens go blank if pilots land on specific runways

DropBear
Coat

@robin48gx ...you mean something like i^2=j^2=k^2=ijk=-1...? Mine's the one with the photo of a carving on a certain canal bridge in the pocket.

The time PC Tools spared an aerospace techie the blushes

DropBear

Admittedly deleting anything on a FAT FS under MS-DOS was a very long time ago for me, but didn't that process usually work by nuking the first letter in the filename, that you later had no way of retrieving unless you knew? No unerase tool could help you with that. I mean, *imem.sys is pretty obvious but who knows all the myriad others...?

Want to live long and prosper? Avoid pirated, malware-laden Star Wars free vid streams – and pay to watch instead

DropBear

Re: Live Linux distro?

You can "run as opposed to install" Linux from a CD _because_ what you have is a live CD, meant to let you do exactly that, roughly since data CDs were a thing. Otherwise you'd be stuck staring at a text prompt asking you onto which disk you want your Linux installed, instead of just firing it up fully in RAM.

DropBear

Re: Fake torrents too.

That "we have the random string you have searched for" bullshit is not new at all - it's likely older than our Sun. Been seeing it basically forever. I'm avoiding it practically subconsciously by now...

Cheque out my mad metal frisbee skillz... oops. Lights out!

DropBear

Re: Oops

"usually turning it off means its not set for current measurement dosent it?"

Not in my experience. Most mechanical dial meters I saw very much had their own separate power button (and tended to auto-switch off even when it was a true toggle button) so you could leave them on whatever setting. Only the absolute cheapest meters choose to instead make "off" one of the settings on the dial to spare that extra cent on the extra button.

Log us out: Private equity snaffles Lastpass owner LogMeIn

DropBear
Facepalm

Re: Call me old fashioned

I can one-up you on that: what one business, now defunct (for completely unrelated reasons if you must know) used for multiple decades for absolutely all passwords on anything was several simple combinations of its own name and a random brand name they had on a large batch of mouse pads acquired at some point in the past. To the best of my knowledge, they were never ever compromised. Not defending the practice, mind you - I'm saying all this amidst some heavy Picard-facepalming in a "what can one get away with" sense...

DropBear

Re: Bitwarden

I still think XORing with a guaranteed random stream coming from a hardware noise source is more secure. Twice with the same stream of course, to be extra sure...

DropBear

Re: Ouch

+1 for KeePass. There's even a plugin working with a hardware USB dongle that can directly "type" your password (emulating a HID keyboard) into whatever you plug it into, straight from you phone...

Google tightens the screw on 'less secure apps', will block most access from June 2020

DropBear

Re: Gmail must die.

Out of curiosity, do you have any alternate suggestions that are also free _and_ provide POP3 access - not considering the tyrants running GMX or *gulp* the walking corpse that is Yahoo (if they still do POP3 at all)...? Because, frankly, I do not.

DropBear
WTF?

Re: Thunderbird is fine. K9 doesn't do OAUTH2 yet

Well yes but actually hahaha NOPE. Thunderbird still doesn't support OAuth with POP3. And before you go the standard "but whyyyyyyyyy would any sane person want to use POP3 in 2020?!?" route: with all due respect, that's none of your concern.

Non-unicorn $700 e-scooter shop Unicorn folds with no refunds – after blowing all its cash on online ads

DropBear

Re: priorities..

That's pretty much all it is these days, lots and lots (and lots and lots) of project owners never even consider making what they want to make on the funds raised, which would be a small fraction of a realistic budget anyway - they just want the metrics to throw at people with actual money to prove existing interest. That is of course not at all how they're selling it to the punters on KS, and frankly I find this business model incredibly disgusting...

BOFH: Trying to go after IT's budget again?

DropBear

Somehow I seriously doubt Mg will ignite from a few sheets of A4 paper.

Bad news: 'Unblockable' web trackers emerge. Good news: Firefox with uBlock Origin can stop it. Chrome, not so much

DropBear

Re: I couldn't in good conscience do that kind of deep analysis work to assist an ad-slinger

Perhaps not so small. I'm currently working for a pittance in an absolute shit job because I actively refused to work for a company doing something I could not accept being part of when I had to leave my previous job. I'd love something better, but not at that price.

DropBear

We need not go any further than the explicit stipulation of the GDPR that websites are motherfucking forbidden to refuse service simply due to a visitor not consenting to tracking. Because 98% of all websites very much actively prevent any service unless you click "accept", and any other button (if any is present) only goes to "how to contact XYZ in the hopes of not getting tracked" or "how to disable cookies in your browser, at which point our site won't even load anymore" for the more brazenly unashamed ones. If I was a millionaire I would make a point out of suing hundreds of them to bankruptcy, and Disqus would be the first...

The silence of the racks is deafening, production gear has gone dark – so which wire do we cut?

DropBear

Re: The big red button

No, it won't. That does not look like an actual product. Concepts are a cent a googol. Where's the "buy now" button...?

Weird flex but OK... Motorola's comeback is a $1,500 Razr flip-phone with folding 6.2" screen

DropBear

Re: Want one

But I can already buy a regular slab, and I'm not interested. I want a regular slab that I can open to TWO regular slab size, or else what's the point...

If it sounds too good to be true, it most likely is: Nobody can decrypt the Dharma ransomware

DropBear

Re: Obvious bollocks is obvious

"But computing power ??? WTF ?"

You don't understand. They've bought over a dozen Raspberry Pis...!

DropBear

Re: Can someone explain.....

Network storage is not necessarily corruptible. I just had a (definitely-not-)quick and (definitely-not-)fun little romp trying to set up a "write-only" network share - you can write to it as long as you wish or until it runs out of free space, but (short of compromising that machine too) you can never alter anything already written...

DropBear

Re: Surely decryption is possible...

*I'm too tired for this shit* okay, listen: if the SUN would be replaced by a black hole with an equal mass, do you know what would change over here on Earth...? Nothing. Well, save for a major problem for the solar generator plants soon followed by all kinds of related major problems for everybody else. In the same vein, it really wouldn't make any damn difference if we somehow managed to suck all of Earth's matter into a black hole the size of a pea - the rest of the solar system wouldn't give no shits whatsoever, least of all the Sun.

Boeing comes clean on parachute borkage as the ISS crew is set to shrink

DropBear

Re: Quality system

Ever seen one of those magician tricks where something that's supposed to be hooked inextricably through a hoop just slides apart like nobody's business...? Threading a pin through the wrong part of a big pile of coiled rope such that it doesn't, in fact, engage securely with it is probably the easiest thing in the world, and nobody will know until you actually extend all of it under tension...

BOFH: We must... have... beer! Only... cure... for... electromagnetic fields

DropBear

Re: EM sensitivity is like UFOs

The minds of those who believe appear to be physically incapable of processing "reasoning". The only thing getting through is "gossip", sorry, "FACTS", presumably more often than not originating from Facebook posts of their equally reality-challenged peers (no, really, just walk away - they're beyond redemption).

DropBear

Re: I'm having headaches

My best effort goes along the lines of "well basically it's 100% that the other guy is successfully deluding himself (even if unintentionally) but hey I won't hold this against him - that's so easy to do. And I'm willing to reconsider based on some kind of more objective proof - but nothing less.

Apollo 11 @ 50: The long shadow of the flag

DropBear
Trollface

Re: It's absolutely farcical that people still believe they went.

Don't be silly, of course you don't. You just catch up with Bilbo...

DropBear

Re: The most expensive dick swinging contest in history

Oh, that isn't even the most ludicrous part - some of the more brazen swindlers claim they don't even need the rubies, they can do the same thing with the stuff you exhale from your lungs... Ha!

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020