* Posts by s2bu

434 posts • joined 16 Mar 2013

Page:

WireGuard VPN gets native port to the Windows kernel

s2bu

Oh, they're productizing it too:

https://www.edgesecurity.com/#wireguard

I've got a broken combine harvester – but the manufacturer won't give me the software key

s2bu

Tractor?

It would have been nice if the article had stated the manufacturer of said tractor. I'm strongly guessing it was the big green maker, as they have a habit of doing things like this. I was told that some Mennonites managed to reverse engineer the system and they make a living by fixing other people's green tractors.

I read recently that there's a big market for late 1970s green tractors. I guess they're 'new' enough to have the safety of a modern tractor, but old enough to not be computerized, so easy to fix!

Rackspace literally decimates workforce: One in ten staffers let go this week

s2bu

Kudos to El Reg

I have to give my kudos to El Reg for properly using decimate. The improper usage of it is a pet peeve of mine. Yes, I know, the dictionaries have given up and added the improper definition, but that’s just because they’re bloody sellouts!

You'll want to shut down the Windows Print Spooler service (yes, again): Another privilege escalation bug found

s2bu

SYSTEM

I still don't understand why Print Spooler need SYSTEM privileges?! That seems insane to me!

Syria and Sudan turn off the internet to suppress ... cheating by kids sitting exams

s2bu

Re: Seriously? To stop cheating?

IMHO, anybody using SO during an interview should be immediately asked to leave. Not because they’re looking things up, that’s fine. It’s because code on SO is total utter garbage.

How hot is it right now? 'Water park catching fire and burning down' hot

s2bu

Re: Follow up?

Unless you count a hay ride somewhere, I seriously doubt there are any amusement parks that don't have some kind of regulation.

What Microsoft's Windows 11 will probably look like

s2bu

Sounds like your anger should be pointed at the vendor of said high priced audio gear.

We don't know why it's there, we don't know what it does – all we know is that the button makes everything OK again

s2bu

Re: The light..

The most maddening thing I ever dealt with was a Motorola CSU/DSU that had 3 buttons: Yes, No, and Home.

Those 3 buttons were for not only going through the list of configuration options, but also for changing their values.

Seven-year-old make-me-root bug in Linux service polkit patched

s2bu

Re: One of the many advantages of Gentoo

Assuming you’re on a desktop, don’t forget his original infection: PulseAudio!

s2bu

sudo also does that by default. Some consider it a security issue though (eg, if you ran something as root and then an app you’re using gets exploited, there’s a chance that you’re still within the time frame and that exploited app just gets root).

s2bu

Except there are distributions that use the Linux kernel and yet aren’t infested with the GNU user land. Not all Linux is GNU/Linux.

US House Rep on cyber committees tweets Gmail password, PIN in Capitol riot lawsuit outrage

s2bu

Re: Criminal Trespass

He claims that they actually entered his house without permission.

Google leads Big Tech effort to ensure H-1B spouses can continue working in America

s2bu

Re: And now a word from our sponsor

The sad thing is that companies still haven’t figured out that you get what you pay for.

The crap cheap labor stays cheap, and the good cheap labor quickly becomes not-so-cheap anymore. So it’s a vicious cycle where they keep bringing in more and more cheap crap labor because they don’t want to pay the good ones what they’re worth. Eventually quality takes a nosedive and the whole company suffers because of it.

But not before the execs who saved so much $$$ take their golden parachute and bail, of course.

Facebook: Nice iOS app of ours you have there, would be a shame if you had to pay for it

s2bu

Re: They can’t charge for it anyway..

Nobody ever told you how or how not to run your network. If you want run DECnet or AppleTalk, then Bob’s your Uncle! I’m just trying to defeat the FUD surrounding IPv6 and NAT.

1) My machines behind a /48 are no less secure than my machines behind a /28, and didn’t require any configuration to do it. The default deny any inbound that the stateless firewall that your NAT router is doing works just as well without the NAT.

2) Most consumer devices ship with UPnP enabled, which means any piece of software can punch holes into your NAT like Swiss cheese without your approval.

3) Disable the UPnP and have fun with manually pinholing just to play online games on your console.

4) NAT breaks the Internet badly. All kinds of nasty workarounds like STUN are required for RTP and SIP sessions. So much “cloud” stuff is only required because of NAT issues!

5) The only networks that force stateful addressing and disable privacy addresses are corporate networks. On those you have much bigger issues to worry about privacy wise!

6) It’s a lot easier for Google to track your one NAT’d IP for weeks (your DHCP lease time) than it is for them to track 2^64 of privacy IPv6 addresses daily!

s2bu

Re: They can’t charge for it anyway..

You don’t need to maintain a firewall for a default deny any any inbound, which is exactly the default that you get with PAT anyways.

s2bu

Re: They can’t charge for it anyway..

One day of one IP is worse then all of your devices using one single IP for the duration of your DHCP lease how, exactly?

s2bu

Re: temporary privacy addresses enabled by default for IPv6

WiFi itself has nothing to do it with it. If you’re not on IPv6, then what I said doesn’t apply, so I fail to see the issue.

My Charter/Spectrum connection is happily handing me a /60.

s2bu

Re: They can’t charge for it anyway..

Most OSs have temporary privacy addresses enabled by default for IPv6, which much better fixes the tracking by IP issue.

s2bu

Re: They can’t charge for it anyway..

Have a +1 for realizing that NAT is an obstacle that needs to die and not some fake security shield that people mistake it for.

GitLab's 10-day certification freebie offer lasted only two because, surprise surprise, people really like freebies

s2bu

GitLab certification?

Seriously? What’s next, certification for successfully launching Chrome?

Can you imagine Slack letting people DM strangers in another org? Think of the abuse. Oh wait, it did do that

s2bu

IRC

You can pry my IRC from my cold, dead, fingers!

Richard Stallman says he has returned to the Free Software Foundation board of directors and won't be resigning again

s2bu

I thought ESR was the 2nd amendment free software guy?

License to thrill: Ahead of v13.0, the FreeBSD team talks about Linux and the completed toolchain project that changes everything

s2bu

Re: Says it all

Actually, Bob, as long as you use UEFI mode, bhyve supports graphics via VNC. It’s just the BIOS/CSM mode that doesn’t.

SpaceX wants to slap Starlink internet terminals on planes, trucks, and boats – but Tesla owners need not apply

s2bu

Re: 1 million users?

Although I'd be scared to see what the bandwidth would look like with that many after users...

Hidden text in MacOS 11.3 beta suggests removal of Rosetta 2 compatibility layer in some countries

s2bu

Re: As a pure guess

DEC had a system called FX!32 that worked pretty much like Rosetta 2 does, in order to run x86 NT apps on Alpha NT systems. It even was embedded in the Windows 2000 for Alpha beta releases before that product was canceled.

Apple's latest macOS Big Sur update stops cheapo USB-C hubs bricking your machine

s2bu

Re: This is why I had to swap.

macOS can write to FAT32 and exFAT just fine, and there are third party modules to add support for just about anything else. I’m not sure where you think that it can only handle its own file systems?

Texas blacks out, freezes, and even stops sending juice to semiconductor plants. During a global silicon shortage

s2bu

Re: That's a right wing lie

Obviously you're having difficulty reading what I said. I didn't place any blame on renewables, I'm just saying that they had a major impact also.

Sure, the wind turbines could have been winterized and the panels could have been heated or cleaned or something to prevent this. So like I said, I'm not placing blame. Please re-read what I said.

s2bu

WSJ's view

https://www.wsj.com/articles/the-political-making-of-a-texas-power-outage-11613518653

s2bu

Re: The Real Story from Texas

This happened also in 1988, BEFORE deregulation.

s2bu

Re: The Real Story from Texas

Fourth occurrence. The first was in 1988, before deregulation.

s2bu

Re: That's a right wing lie

No. Renewables make up 14% of the total load NORMALLY, but out of the capacity that is currently missing, it is 39%. Sure, 39% isn't the majority, but it also isn't insignificant.

s2bu

Re: Actually, the Texas grid has lots of renewables

cronyism? sure. Deregulation? no. This is at least the third time this happened, and I know for a fact the first time was before deregulation. I'm not sure about the 2nd time...

So no, that's not the cause.

The unanswered question at CentOS community Q&A: How can we trust you now?

s2bu

You should give HardenedBSD a look at. It keeps up with FreeBSD (it isn’t a true fork), but lays down extra goodness on top!

New VS Code release hits stable channel for everyone who's not on Apple Silicon after last-minute bug found

s2bu

Electron

Too bad anything using Electron automatically seems to mean that it’s a huge bloated POS. See Slack.

ThinkPad T14s AMD Gen 1: Workhorse that does the business – and dares you to push that red button

s2bu

Re: Price point

Agreed. I only buy the T and P series. I’ve heard horror stories about the budget series.

So far so good. Not any issues at all!

Cisco intros desktop switches, one with USB-C to power your laptop

s2bu

Re: fibre not future proofed.

These days, honestly, you might as well just run OS2 singlemode and call it a day. There's almost no cost savings advantage dealing with multimode.

s2bu

Re: Future-proofing needs a better crystal ball

Once you start looking at even 10GE, fiber SFPs+ and their switches are much cheaper than ones using RJ-45.

Copper these days is stupid expensive. I have a *farm* that has fiber bundles everywhere because I can get fiber and SFPs+ from China cheaper than direct-burial Ethernet cable.

The killing of CentOS Linux: 'The CentOS board doesn't get to decide what Red Hat engineering teams do'

s2bu

Re: They still don't get the issue with "stream"

If you want to run the *exact* same software for two years, I dearly hope your security department gets you fired for refusing to security patch for that long!

Must 'completely free' mean 'hard to install'? Newbie gripe sparks some soul-searching among Debian community

s2bu

Re: "Hair Shirt"

Wha? Most OSs these days default to IPv6 enabled, but I’ve yet to see one that forces you to only use IPv6?

Apple reportedly planning to revive the MagSafe charging standard with the next lot of MacBook Pros

s2bu

Wish list

Other things I wish they’d revive:

- The little push-button battery status indicator that was on the side of the laptop

- GigE

- 17” screens

- Better reliability. My older units lasted much longer than the newer ones

That's it. It's over. It's really over. From today, Adobe Flash Player no longer works. We're free. We can just leave

s2bu

AMF3

For me, the one thing about Flash that I'm going to miss is AMF3.

It was simply the fastest way to load large amounts of data into the browser. JSON, XML+XSLT, XHR, etc, just didn't even come close.

Extreme Networks misses death-of-Flash deadline, suggests winding back PC clocks to keep its GUI alive

s2bu

Sadly, ruffle only support 5% of ActionScript 3, which means everything written in the last 9 years or so.

Trump administration says Russia behind SolarWinds hack. Trump himself begs to differ

s2bu

Re: In case you haven't realized..

It’s widely known that the NSA’s toolbox includes the ability to “fingerprint” hacks to make it look like it came from a foreign adversary of their choosing. So you can’t always talk them at face value.

Rocky Linux is go: CentOS founder's new project aims to be 100% compatible with Red Hat Enterprise Linux

s2bu

Oracle?

I know Oracle is never to be trusted, but, Oracle Linux has been free for years and has actually been faster at updates than CentOS has.

HP CEO talks up HP-ink-only print hardware and higher upfront costs for machines that use other cartridges

s2bu

Re: Dictionary

I have this same exact problem: don’t print often and the heads get dried out.

I “fixed” it by buying a color laser printer!

Apple's global security boss accused of bribing cops with 200 free iPads in exchange for concealed gun permits

s2bu

Re: Cali is like leftist Europe, only the criminals are allowed guns

Contrary to what the news media say, that’s not what the SYG laws are about. It just means you don’t have to attempt to run away first. That’s it.

s2bu

Re: Why didn't he just buy out of state?

Going out of state to buy a handgun is definitely illegal (for both parties). For long guns it depends on which states.

s2bu

Re: Why didn't he just buy out of state?

As a FFL myself, I can safely say you’re wrong. The handbook is almost the size of an old fashioned telephone book, and that only covers federal law. Add state, county, and city laws and you’re drowning in regulation.

AWS admits to 'severely impaired' services in US-EAST-1, can't even post updates to Service Health Dashboard

s2bu

Re: I learned SRE at Google

So that means you learned to discontinue every service you provide, and that your “customers” really are the “service”?

How Apple's M1 uses high-bandwidth memory to run like the clappers

s2bu

Re: It's been a while

NUCs might be a good Hackintosh system, but Apple's systems are NOTHING like Intel's reference designs AT ALL. They're very very different.

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021