* Posts by Mk4

57 posts • joined 16 May 2013

Page:

Our hero returns home £500 richer thanks to senior dev's appalling security hygiene

Mk4

Everyone is the administrator now!

I did a short stint at a car maker about 20 years ago (the one shortly to leave Swindon...) where the IT director had directed that no-one was to have administrator rights given to their normal user account as this was insecure, which to be fair is quite correct. However, there were about 100 developers working there. It was really not practical (time, people and knowledge all being in short supply) to think that these devs would be able to provide the list of granular rights and permissions they needed for every project, and anyway the necessary rights and permissions changed fairly frequently.

The IT director said that the devs should submit their request for whatever they wanted to do to the IT support team and they would do what needed to be done. Asking a bunch of basic IT support bods to do developery things just made messes and the overall problem was then even worse as these messes had to be cleaned up. The devs were under massive pressure all the time to release working things and the upshot of this situation was that in the end about 100% of the developers knew the domain admin UID and password. This ensured that all changes on all systems were totally untraceable to whomever had actually made them. Something I pointed out and advised that it would be better to give the devs local admin rights on all servers, then at least we could track those changes against individuals and the devs couldn't bugger up the AD. Did they pay any attention? No, of course not. They changed the domain admin password, which fixed the problem for possibly a whole hour.

What a nightmare that place was. They also used a Windows PC to do a nightly FTP transfer from a mainframe in the Netherlands, and the downloaded files would periodically and unpredictably be unusable. This mystery had been around for ages before I was asked to take a look and quickly found that they did not know that an EBCDIC to ASCII conversion was taking place during the transfer and even more quickly found that the default conversion in the FTP client was not quite right.

The pro-privacy Browser Act has re-appeared in US Congress. But why does everyone except right-wing trolls hate it?

Mk4

Re: BROWSER Act

Everything is marketing in the US - individuals have to market themselves on LinkedIn, Facebook, YouTube, etc. Laws have to marketed. The concept of the "free market" has found its way into every aspect of US society.

Note: I am not saying that there are any free markets in the US or even the rest of the world (before someone tries to read that into what I have written.)

Thanks

Bye

Shall we strip price caps from .org, mulls ICANN. Hm, people seem really upset... OK, let's do it

Mk4

As so often the case...

The actions of the USA, their companies and organizations throw into sharp relief the benefits of being a Josette and Joe Public living in Europe, where things are run a little differently. Sure there are problems, but overall Europe is a cut above everywhere else on earth right now as a place to live.

Comms room, comms room, comms room is on fire – we don't need no water, let the engineer burn

Mk4

Is it just me or has on-call gone quite a long way downhill in the last months?

I used to get a laugh or a giggle on a Friday but these days it just seems like "sexed up" very average stories of stuff that happens in IT.

Large Redmond Collider: CERN reveals plan to shift from Microsoft to open-source code after tenfold license fee hike

Mk4

Re: Honorary knighthoods

One way to keep it going is to increase GDP and the tax revenue to the state. This is, of course, not the only option. The commitments of the NHS can be reduced to a level that requires no annual increases and probably you can think of other ways to fund the activities the NHS is engaged in. The basic choice to be made is to decide what NHS activities are to be paid for, and I would like to see those choices being made without the need to under-pay and over-work doctors and nurses. Same argument for teachers and school maintenance (and a bunch of other things).

48 aircraft are projected to cost 13Bn in their lifetime. There will also be a ton of operational costs for these ships. It goes way beyond the build cost.

The argument that the cost of an activity (e.g. aircraft carriers) is much smaller than the overall cost of the NHS and so would make little difference to the NHS if the funding for that activity was redirected to the NHS does not help to make choices about what to do. The choice to consider is the value given to the well-being of the citizens of the UK compared with value of other national objectives, like building aircraft carriers. My view is that the current culture in the UK allows the well-being of citizens to be devalued when compared to other national objectives and I think the honors system is part of the reason.

Mk4

Re: Honorary knighthoods

Bill Gates did something worthwhile for the UK? What? Was it something signifcantly more worthwhile that lots of other people?

The apparent result of the process is that people like Philip Green get a knighthood and a stream of career civil servants get a plethora of honors as retirement presents. It is perfectly possible to recognize sterling work of genuine community value without the pompous garbage involved in the current honors system.

Making a "what about" argument about France and Germany is not the point but just to respond - Germany spends a much smaller percentage of its GDP on defence and accepted 1 million refugees when the UK accepted 20,000 over 5 years. Perhaps that is why some food banks are needed? BTW, the old DDR still lags behind the old GDR, for example most of the right wing nut-jobs are successful in the eastern cities (although not uniformly). But moving away from the "what about" argument - the point is that the disparity between rich and poor in the UK is widening and many people seem to think this is OK. I do not think it is OK and I think expressions of of privilege such as the honors system is a contributing factor to why many other people just accept this situation.

Any human activity can spend more money on itself, but the point is to define what the activity will do and then to define how much money it needs to do that. Then make choices about how what activities are affordable - these choices reflect the cultural values of nation. Defence is very much different to healthcare when it costs so much that the well-being of the people in the country starts to suffer. Healthcare, education, council funding, social security funding are all having problems. Aircraft carriers have little to do with national defence and much more to do with projecting power overseas. There are plenty of countries that do not have aircraft carriers and manage to defend their borders. Airfields around the UK have fighter aircraft that can easily defend the country. The reality is that the culture in the UK is still that we like and expect to be able to project power and influence the affairs of others. The question that is not being addressed in the UK is to what extent we are prepared to reduce the value given to human lives in our own country for the sake of providing the ability to influence the affairs of others. I don't think that balance is right at the moment.

Mk4

Re: Honorary knighthoods

Yes, yes I am not a moron - I know that only UK citizens (commonwealth, whatever) can get a "real" knighthood. That is indeed the point I am making, there being no actual difference between a "real" knighthood and an honorary knighthood. Without getting too semantic - when the honors system is changed so that an honorary honor can be bestowed, it call into question the basic reasoning behind the whole thing. Or is this just a stupid system where a bunch of pompous, self-important and essentially self-apppointed people deem themselves (and those they decide to bestow honors on) to be of more value as human beings than all the other human beings? I think it might be. Might also begin to explain why food banks and other signs of poverty are so common in UK and the NHS is struggling, even while it is deemed appropriate to spend vast amounts of cash on aircraft carriers and aircraft to go on those aircraft carriers (among other things).

Mk4

Re: Same stunt they pull in any academic setup

I had to look this up https://www.theguardian.com/world/2005/mar/02/usa.microsoft . Right, so Bill Gates was given an "honorary knighthood" - as opposed to what? A real knighthood? It is not as if knights of the realm dress up in armour, get on their horses and go off and fight for the monarch.

What a bunch of stupid, inconsistent arse the honours system is. FFS - that high-street twat Philip Green has a knighthood.

Mk4

The Open University provides 0365 and doesn't accept open document format

I study with the OU (masters in software engineering at the moment) and one of my bug-bears is that I have to convert the ODF documents I write into MS Word format before submitting them.

I guess in order to make sure that students can produce MS Word format documents, they provide every student with an o365 account. While I really do understand that it is necessary to support the diverse student body (different financial means, ages, backgrounds, technical ability, etc.) as well as the teaching staff (who don't want to struggle with documents in different formats) I would like to see them get shot of MS. Unfortunately I think even MS would have difficulty arguing that the OU is not an academic institution :-).

Amazon Mime: We train (badly) an AI love bot using divorce bombshell Bezos' alleged sexts to his new girlfriend

Mk4

Re: Better than this??

My snorting laughter is echoing down the hall at work. :-) The funniest thing I have read in a long long time. Absolutely fabulous!

ZX Spectrum reboot scandal firm's original directors rejoin

Mk4

Re: off topic

LensLook? LensLock? Often we would just squint and guess. Worked more times that it should have.

Techie was bigged up by boss… only to cause mass Microsoft Exchange outage

Mk4

Is there anybody out there?

I did the same thing, accidentally shutting down the file and print server for the London HQ of AT&T (this was a very long time ago, so I feel safe enough naming the company) at 14:30ish on a Thursday afternoon. I was not sure I had really hit "shutdown" until I saw all the lights go off on the server. Starting up was a slow process - the disk arrays spun up their drives sequentially and the whole thing was offline for 5-10 minutes.

We had all the big wigs in the building, the hundreds of staff etc. but there was not a single call logged. SMB mounts on clients would only have noticed if they tried to r/w while the server was down and obviously also no-one tried to print anything (or just tried it again 5 minutes later and it worked).

Not a truly impressive story I will admit, but in those minutes before I could check that everything was back online I was convinced I was going to get the sack. :-)

Microsoft Germany emerging from behind Deutsche Telekom cloud

Mk4

The US security services and law enforcement have never shown much respect for due process

I can imagine that US authorities will try to stretch the boundaries of the CLOUD act. They have the foot in the door - now they will try to lever it open. I can imagine that they will try to put pressure on MS US to get data held by MS EU in any way they can.

Boss regrets pointing finger at chilled out techie who finished upgrade early

Mk4

Re: "Can you turn it back on. Please?"

Hello AC - no offense taken. When we found the problem we tried to have the SQL query changed to correct the problem, but we had to get approval from 6 (count ‘em - 6) mid to senior managers. Just getting them on a call was hard enough, trying to get a proposed change approved did not work as it always expired before we could get the managers to all sign off. Jesus - you have no idea how disfunctional the governance processes for systems like this were. The next step was to try and figure out why the mainframe messages were coming in in the wrong order but that was an exercise in screaming into the abyss. No response of any kind (although I got the distinct impression that the abyss was looking back with a wry smirk on it’s face). In the end I decided that given the graph of order quantity over time (which looked pretty steep) we better do something to keep the system working and give us breathing space.

The situation you describe is indeed very bad but reacting to the potential for that situation to emerge by making it impossible to fix things also has drawbacks :-)

Mk4

"Can you turn it back on. Please?"

Working on the national broadband wholesale system at a large telecommunications provider about 15 years ago, I had written a python application that automatically fixed a problem with a SQL query that regularly collided with a mistake in the order in which mainframe messages were sent to the system. The collision, when it happened, blocked all outstanding broadband wholesale orders (so every order for broadband in the UK). It was running very nicely for about a month when a busy-body noted that Python was not an officially supported language at this telecommunications provider. So my boss told me to turn it off. At this time we were seeing a huge increase in broadband orders and so after 3 days of a support team frantically trying to correct the problem manually I was asked very nicely if I wouldn't mind turning it back on again. Please.

US border cops told not to search seized devices just for the hell of it

Mk4

Re: The obvious solution

I have passed on two work trips to the US so far this year. Vegas (which was an easy decision anyway) and Colorado. I will not be going to that country in the foreseeable future, for any reason.

'Do not tell Elon': Ex-SpaceX man claims firm cut corners on NASA part tests

Mk4

Re: Gasketry

I understand what you mean but I think Feynman's investigation of the Challenger accident is a bit different. The take away from this story is that the world needs fewer people of dubious ethics in the workplace.

BTW - Sally Ride was the person with the real insight as she had been in the middle of the NASA circus at the time of the Challenger accident. The hints about the SRB seals failing were passed from her to Feynman via General Kutyna (all three were members of the presidential commission to investigate the accident).

European Patent Office dragged to human rights court – by its own staff

Mk4

Time to bin the EPO and create a replacement

I think it's clear that the EPO is horribly injured and should be humanely euthanised.

Like people on a poorly led open source project, if the staff in the EPO were given the option to move to a new organisation I imagine they would take it.

I can see the talk in capitals around Europe being along the lines of "well, whatever we do let's not setup another supranational organisation like the EPO".

IBM: Customer visit costing £75 in travel? Kill it with extreme prejudice

Mk4

Re: Nobody got fired for buying IBM-

That phrase is from a long time ago when IBM was building very reliable computers (mainframes and minis) and indeed as another poster has noted carried out a lot of hand-holding to make sure they worked for the customer (and IBM made a lot of money). Unfortunately IBM didn't adapt as everything moved to PCs and x86 servers so they ended up making very good stuff that no-one wanted any more, and then made a hash of switching to PCs and x86 servers (and so they sold those parts off to Lenovo).

For many years IBM has been just another IT vendor with all the same problems as other IT vendors.

Webroot antivirus goes bananas, starts trashing Windows system files

Mk4

Re: a crowning moment of AWESOME!

And none of the above objections to Bob notes that companies can choose to implement a safe surfing approach. No-one is asking users to be IT experts. I think the suggestion is that IT experts should be the IT experts.

Effort to fire Euro Patent Office president beaten back – again

Mk4

Re: Sleeping with the Battistelli

I live in the Hague and I know people who work for the EPO. They pay no income tax, although that is partly taken into account when setting salaries, subsidised private schooling for the kids and other very nice benefits. I'm not sure about this pressure on staff not to take sick days and then get home inspections. I know someone who went officially sick for more than a year, spending at least half of that working less than half a day a week during "reintroduction".

Bluntly - all the people I know who work for the EPO are in single income families who live in large houses in (very) nice parts of the Hague (which is an expensive city to live in).

I can imagine that there is some reluctance to leave, despite the bad working conditions reported. Sort of carrot and stick - the stick is the difficulty of finding another job in the same line or work, the carrot is the money.

Euro nations push for vote to axe Europe's patent office president

Mk4

Battistelli is an unbeliveable c**t. The fact that the EPO has had this happen should make the states who are participating in this circus of scary clowns change the f**king rules by which this most important institution is run.

FFS - this isn't the dark ages and the EPO is not some kind of fiefdom to be abused at will.

Alphabetti spaghetti: What Wall Street isn't telling you about Google

Mk4

Re: "Google came along with a better search engine algorithm"

I used AltaVista and in my circle Yahoo was poopoo'd :-). The nicest thing back then was being able to bounce around search results and find things that you would never have known existed. It was a joy.

I finally switched to Google as everyone else I knew/was working with used that and at that time the search results were better ("competition" forced me to use Google).

These days it's all "bubble" this and "echo chamber" that. I use DuckDuckGo as I like to avoid tracking but ironically that's based on Yahoo search and now my search tool use has come full circle.

Can someone restart the internet please... (it's non-responsive).

America halts fast processing of H-1B skilled worker visas

This post has been deleted by a moderator

Customer data security is our highest priori- ha ha ha whatever, suckers

Mk4

Shadow IT accronym

"ShIT". Hahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahaha!!!!!! "Shit!" Hahahahahahahahahahahahahahahahahahahahahahahahahahahahahahahaha!!!!!!! Ach! Feck, I've given myself a hernia.

US Director of National Intelligence legs it

Mk4

Are you taking the piss?

Really? Really?!

The solution to security breaches? Kill the human middleware

Mk4

Oh sod off

Go and read a few decent journals. Every now and again someone leaves USB sticks in a car park in a university (where all the clever and educated people are) and lo and behold... most people plug them in. Really? This is news?

Security as a domain of human activity needs to secure my and everyone else's normal behaviour, not make me contort my behaviour into some twisted version of itself. You don't build a building with doors and then act surprised when people try to use them. If a door should not be used it is either not in the building design in the first place or it is locked. Then idiots like me don't have to be given a list of doors that are there but that we must not use. This is not a perfect analogy, but then that's the nature of analogies.

Crypto guru Matt Green asks courts for DMCA force field so he can safely write a textbook

Mk4

Really?

I am from the UK and expat but unlike you I have spent more than 10 years in one developed country, not bouncing around many of them. I speak and understand the language (not natve level but my job is in English). I have now spent enough time here (just) to somewhat disentangle the national persona and stereotypes from individual people's personalities and get used to a host of ideosyncratic ideas and behaviour.

Before you write off the rest of the non-US world,think about how much time you spent in each place compared to the time you spent in the US growing up and normalizing your viewpoint with the rest of the US people around you.

I think the reason you didn't feel you belonged is that you didn't belong. When you do, you do.

Mk4

Really?

I am from the UK and expat but unlike you I have spent more than 10 years in one developed country, not bouncing around many of them. I speak and understand the language (not natve level but my job is in English). I have now spent enough time here (just) to somewhat disentangle the national persona and stereotypes from individual people's personalities and get used to a host of ideosyncratic ideas and behaviour.

Before you write off the non-US world, think about how much time you spent in each place compared to the time you spent in the US growing up and normalizing your viewpoint with the rest of the US people around you.

I think the reason you didn't feel you belonged is that you didn't belong. When you do, you do.

Scrapped NHS care.data ballsup cost taxpayer almost £8m

Mk4

opt-in, opt-out is missing the point

PNGuinn is being facetious but there is one point made that really important - it's personal data (my data and your data). It should be the property of the people it comes from, then many problems with questions about data access in the NHS and many other places become vastly simplified. Imagine the personal data is the property (in law) of the people it relates to. If someone wants a copy then it's equivalent to asking to borrow someone's property - if someone doesn't provide that permission then it's a criminal offence (like TWOCing) if they take it anyway.

Sure, this leads to a great deal of work to manage permission, but that's the same in many other spheres of human activity. Having a simple and clear principle to work from, that everyone can easily understand (not like DPA or GDPR) prevents a huge amount of discussion and interpretation (leading to massive variation across systems and industries). Not to mention pissing 8 million quid up the wall.

Seagate sued by its own staff for leaking personal info to identity thieves

Mk4

Personal data needs to be personal property

I've made this point a few times on El Reg comments sections. The problem is the starting point in all disputes regarding personal data, it is dealt with in the same way as all other kinds of data, but personal data is special. The Seagate employees are having to show that seagate was at fault, it is a similar story in all situations where personal data is deleted, given away, stolen, not available for discovery, etc..

Data relating to individuals should be the legal property of those individuals. It should be created, copied, modified, accessed and destroyed in the same legal framework as would physical goods.

There can be other legal provisions to make execs responsible for the proper treatment of personal data, but the starting point would be for Seagate as a corporation to be facing a criminal investigation for the loss of the personal property (of thousands of staff) that it held in trust.

Hacker takes down CEO wire transfer scammers, sends their Win 10 creds to the cops

Mk4

Is this just a puff piece for Sec Consult?

There isn't any information showing that crims "hate him for it". Do they? How do you know?

There is a proper place for puffery posing as journalism and it's in those horrible spamfomercials that go to my work email address pretty regularly. Don't just recycle a report about this security conflab and pass it off as news.

I'd be interested in a properly researched piece with multiple unrelated examples of how this kind of defence is denting global crime. Is opening bank accounts really that hard? Where is the evidence.

Go and get some stats from Europol, Interpol, FBI, whoever, and work it out.

VMware survives GPL breach case, but plaintiff promises appeal

Mk4

How to know when a corp. has pinched your code?

Frivolous cases aside, could the court order an independent and private review of proprietary code to compare it with the open source code it's supposed to have pinched from? Hang on a minute! I might be wrong but it's just possible this could be automated! :-D

Handover of US internet control to ICANN officially blocked in Republican policy

Mk4

Re: This is not a bad thing

There is a single sentence with the word ICANN and if you replace that with US Government the sentence does indeed have some truth to it. But I have made no comment about what the solution should be, I've only stated what should be very obvious - selecting a poor solution for something critical makes no sense.

You should also have a look at the way that ICANN conducts itself vis-a-vis selection of staff and the options to remove them from their positions. It is not very encouraging.

You should also really look at the record of many politicians who are working in that very difficult environment while maintaining their ideals. Dr. Mo Mowlem is a case in point, someone whom I knew personally and struggle to place in that all encompassing box of "dodgy politicians" you have created.

Mk4

This is not a bad thing

I'm as amazed as you are that I find myself in any way close to the US Republican party on any topic, but as I do it's incumbent upon me to state this and specify my reasons.

The function performed by IANA is critical to the functioning of the internet. The solution being presented is far from perfect. It seems to me madness to state that the solution for something critical is far from perfect. This is not a critical part of your car, it's a critical part of a global system upon which countless people depend in all sorts of ways.

To pick a comparison that will prompt a strong emotional response. Choosing a far from perfect solution for critical parts of an aircraft that you will be travelling in would probably result in you declining to board said aircraft.

Let's take a pragmatic approach, you say. Question: Is the proposed solution better or worse than the current solution? -> pick the best. But accepting a solution that is far from perfect risks the effects of the law of unintended consequences. We can be sure how the current solution operates in reality. We cannot be sure how the new solution will operate in reality. So it's seems prudent to make the new solution as good as it possibly can be by rejecting solutions that do not meet the standard of "pretty good".

The way ICANN has worked over the years and in particular the way it has conducted itself as an organisation in the last few years makes it untrustworthy at best.

I'm not an expert on this topic and this is just the opinion of an outsider based on what is being reported. That said I'm also a very active internet user and so I do have an interest in how it is governed.

European Commission straps on Privacy Shield

Mk4

Some tortuous english - are you involved in the legal profession? What do you mean by "protection" - for me that is about preventing unauthorised access to the data (ref. information assurance). In any case, I don't think you have read the text of the privacy shield documentation. Yes, there are notes about protection of data but it's really about control of the data, how organisations indicate compliance with the scheme and various aspects of governance of the scheme (and, of course, all the ways the US gov. is permitted access to the data).

You can argue that the level of protection is too low (and I would probably agree with you), but control of data and protection of data are two different things. I am discussing control of data in the sentence you cite.

Privacy shield is better than safe harbour, under which vast amounts of data was shovelled across the Atlantic. As I noted in the original post - my position is that personal data should be the legal property of the persons to which it pertains. Every time we take a step towards that postition it is an improvement.

Mk4

I humbly disagree with most of the above comments

The "Privacy-Shield" name is as badly chosen as "GDPR". 95/46/EU and the GDPR is mostly not about protecting data, it's about protecting people from organisations who want to use our personal data. It is a small step on the path to individuals owning their personal data (which is how the world should be organised IMO). If you find that an organisation is holding data on you that is not correct - e.g. that you have county-court judgements against you when you do not - there is a legal channel to getting a copy of that data and then getting it corrected.

Similarly Privacy-Shield is not really there to protect privacy - it's there to try and provide some kind of control over our personal data. It's not as strong as the GDPR and I imagine the main thrust of the legal challenges will be to establish if Privacy-Shield really does provide similar protections as 95/46/EU or the GDPR. This is a requirement for an EU organisation to send your data outside the EU.

The US government can get your data where-ever it is, forget about legal restraints, there aren't any that apply to them. The Privacy-Shield agreement includes many clauses specifying all the ways that US government can get to your data, so it actually formalises these methods as permitted.

If you give your personal data to a non-EU organisation directly e.g. filling in a form on a website hosted in the US (also the rest of the non-EU world) then your data is not covered by Privacy Shield, comes under none of the protections of and there is no recourse to authorities under Privacy Shield, 95/46/EU or the GDPR.

Until the basic standard is that individuals have legal ownership over their personal data and misuse has a similar legal standing as (for example) taking without owners consent (TWOC) it's up to everyone individually to think about which organisations they give their data to.

Half of EU members sidle up to EC: About the data-sharing rules. C'mon. Chill out

Mk4

The letter argues for the full implementation of the GDPR

Currently the differences between laws in EU member states mean thought has to be put into what needs to be done in different EU countries. With GDPR there is going to be greater parity between states, yes - I know it's not goint to exactly the same everywhere but a huge improvement on today when you, for example, compare Ireland and the UK. Ever had a chat with LinkedIn (located in Ireland) about your personal data expecting the same data protection rights as we have in the UK? I have and they don't exist (respectively).

If you want to have data moving freely between corporations in the EU then common rules seems to be a good idea. The GDPR will also make Europe the place to put your data if you want more than hollow words protecting your rights to this (your) data. Creating a strong regulatory framework for personal data is much the same as having strong regulations for accountancy and housing property ownership. Trustworthy regimes promote commercial activity. This will promote the growth of the digital economy in the EU, not hinder it.

BTW - Safe Harbour was not the predecessor of the GDPR. Directive EC/95/46 was. Enacted as, for example, the Data Protection Act in UK, Wet Bescherming Persongegevens (WBP) in NL and the "Pointless Piece of Paper" (PPP) in Ireland. Safe harbour was a self-certification scheme run by the US Department of Commerce so that US entities could pretend to provide the same level of personal data protection as we have in the EU. It was, frankly, bollocks from day one and the Snowdon revelations had nothing to do with that. Killing it has been a step forward.

Would you let cops give your phone a textalyzer scan after a road crash?

Mk4

Re: One issue....

Research as far back as 2001 demonstrates that listening to something (radio, audio book, etc.) in dual-task studies has no effect on driver performance. Tasks involving word generation result in a two-fold increase in failures to notice signifcant events (e.g. red lights) and an increase in response time when those significant events are noticed. This is irrespective of whether the device is hand-held or hands-free.

The science is clear on this topic, but interestingly it may also include speaking to people in the car. On the basis of the science, law-makers should make it illegal for a driver to speak while driving, irrespective of the person or device being spoken to.

Police create mega crime database to rule them all. Is your numberplate in it? Could be

Mk4

Re: Responsibility

Yes, Dave said there shouldn't be any strong encryption because criminals use it. Or was that cars? Yes, yes, it was cars wasn't it! Yes. So that's cars should not be used because criminals use them. And tin openers. I'm sure criminals use tin openers too.

Diskicide – the death of disk

Mk4

I actually stopped caring about media about a year ago

Great - flash this, "spinning rust" that, compression, dedupe, blah, blah, blah. I really don't care any more. What I want is the major attributes of the storage presented to the user able to be independently modified without effecting any of the other attributes. On the fly. Using an automation interface. Performance (IOPS and MB/s), availability, protection level (data redundancy), versions (snapshots) frequency and retention, locking data with guaranteed integrity, encrypting data, off-site copy of data, off-line copy of data, geo-distribution of data, access permissions, metadata creation/modification, etc., etc. All of them, no exceptions and no mealy mouthed marketing bollocks.

Compare and contrast with compute. If we were having this discussion about compute it would be about the number of CPU cores, memory technology and bus speeds. The dicussions on compute are actually about containers vs. H/W virtualisation, devops, continuous integration, etc. It is time storage got out of the stone age and joined the rest of the world. Discuss.

WIN a 6TB Western Digital Black hard drive with El Reg

Mk4

... so, before we close the meeting. To maximize the sales potential we need you to make a version for men. When can we have that?

Get whimsical and win a Western Digital Black 6TB hard drive

Mk4

Bloody humans. Who the hell am I supposed to call?

UK.gov issues internal 'ditch Oracle NOW' edict to end pricey addiction

Mk4

Re: remotes

OpenOffice Writer is great. I had to start using it a few months ago for a course I'm doing and it suddenly made so much more sense having the same application on my MacBook and my Windows desktop.

Running Office 2011 on my MBP, Wordpad on my Windows desktop (on the few occasions I needed to write something) and MS Office at work was just horrible. If I could use Writer at work I would, it doesn't randomly f**k up my document formatting like Word does.

Big Blue bafflement: Anyone in IBM Storage know which way is up?

Mk4

That takes me back...

to trying to read manuals for Taiwanese IBM-PC clone kit in the 90's. :-) How ironic, the master has become the clone.

The world .sucks at a minute past midnight on Sunday

Mk4

Re: no dot-suck?

ICANN got paid 185,000 USD in an auction for .sucks. Vox Populi won the auction (against rival registries) and then goes on to charge 2,500 USD per domain to pre-register. 74 domains later they are coining it. How is ICANN even equivalent to FIFA?

Mk4

Begin the cash cow milking

Shameless, absolutely shameless. ICANN apparently now operates on "FIFA Corporate Rules".

Hedvig flutters in carrying $18m in fresh VC greenbacks

Mk4

A great mind in action

"before being software-defined becomes too vacuous a term to be useful", and then you thought about it and decided it's already too late - 9th June "let's kill SDS" article. :-)

Let's kill off the meaningless concept of SW-defined storage

Mk4

Re: SDS

Hahahahahahahahahaha - oh, I haven't laughed so hard in a long time! For that I thank you, but I'm still going to mark your post as abuse of my intellect, if not actually abuse of the comments. :-)

Life after server-side flash: What comes next?

Mk4

Is this really what you think about storage?

Hi Dave,

You might have noticed that Samsung is making 3D NAND chips right now, and Toshiba and SanDisk are joint funding a 3D NAND fab in Japan. Martin Fink (HP CTO) has recently said that memristor DIMMs will be launched in 2016 and be in full production by 2018. So I would say that 3D NAND just won. If there was ever a race between them. Which there certainly hasn't been for at least a year.

BTW - NAND in it's current design is page access memory and memristor seems to be word (byte) access so can replace main memory. So they aren't really competing for the same use anyway - one is a disk replacement and the other is non-volatile main memory.

You should be interested in this stuff. For example a switch to non-volatile main memory will allow complete change in the way data is used. Think ccNUMA but accross a whole data centre (or wider).

It is a hugely interesting time in the world of storage at the moment. Articles like this do a massive disservice to a vibrant and fascinating area of IT, and one that should be supported by this esteemed organ.

Cheers

Mark

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020