Posts by Rabbi

How about plugging the igniter itself?

I've got no experience here so I could be talking from my nether regions but . . .

If the problem is dissipation of the igniter flame, how abot putting a "plug" directly over the igniter. Presumably it's shaped like some sort of rod in contact with the fuel. Could you perhaps put a lump of something directly on top of the igniter?

Obviously the low-temperature is a consideration on what you use. I'm thinking something like silicone sealant, clay or even araldite. Whatever you use, all it has to do is confine the flame against the fuel long enough for the fuel to ignite. It will then presumably get burnt away. I'm assuming that the remains of the plug are not a massive concern given that there is presumably debris left in the combustion chamber from the igniter anyway?

Some servers may still be blocked.

We were a Nildram customer - swallowed up in the same chain that ended in the bowels (and you know what you find in bowels) of TalkTalk.

We first had some emails bounced on 8th May. I contacted TalktTalk the same day: I provided them with all the information as to why emails were being blocked, including the website where they could see that the IP address was being blocked AND EXACTLY WHY it was blocked. It took me nearly an hour to explain it all to them and I still don't think the idiot understood or believed me. I just took a guess and started sending email (successfully) via smtp.tiscali.co.uk instead of smtp.mildram.co.uk.

On 19th May I got an email from TalkTalk. Pathetic: "it's not our fault", "a 3rd party has blacklisted us", "they are refusing to de-list our servers". They gave me another SMTP server to use which I ignored. Note that this response is after your article says the blocks were lifted.

After reading the article I phoned TalkTalk again. Another moron who doesn't recognise my account number, doesn't recognise the reference number on the email I was send and doesn't understand the problem fully. This moron informs me that "75% of the IP range is now unblocked, 25% is still blocked". Once again, this "isn't our fault" and "they blocked us for no reason". I would black-list TalkTalk - and the reason's got nothing to do with spam!

So, a couple of possible corrections to the article. Blocking certainly started on 8th may or earlier. By 19th May (according to TalkTalk) the problem had not been resolved. Today (again according to the morons) the problem is STILL not entirely resolved.

Actually I believe the last bit. Until a nuke is dropped on TalkTalk HQ, the problem never will be solved.

It won't be spam

"Spam in a can" has already been to space - that's how early Mercury astronauts were described, due to being passengers in largely-automated capsules.

Plus, Space-X want to get some real humans up there soon. I'm sure they don't want us thinking about spam in a can then.

See this month's Windows Updates . . .

. . . they included 2 patches for Windows 7 that are required before installing SP1.

Presumably issues were discovered after the service pack "hit manufacturers" and they are waiting for Automatic Updates to spread the fixes before they consider RTM.

Group Policy Fix

I remember having to work hard the first time to set up a method of setting killbits with group policy. Then I found the following article:

http://msinfluentials.com/blogs/jesper/archive/2006/09/29/Set-KillBit-on-Arbitrary-ActiveX-Controls-with-Group-Policy.aspx

As soon as I had the CLASSID, it took 5 minutes to add it to group policy and protect 100+ computers.

I just hope this helps anyone else wondering how to deal with it!

Witchfinder General's Security Advisory

We have reports of active attacks against WG witch bottles. They are being stolen by practitioners of Voodoo and the hair and fingernails contained therein are being used in directed Voodoo attacks.

There is currently no patch available for this issue. As a workaround, users are advised to bury their witch bottles as deeply as possible.

Very misleading . . .

. . . although I'm not sure whether it's Secunia of El Reg mis-quoting.

PSI scans all files - whether software is installed or not. For example - I have multiple MS Office 2000 problems because I have a folder containing the installation source. I upgraded to Office 2003 some time ago, but that folder is good for half a dozen "unpatched" warnings.

PSI also highlights several programs that are "end-of-life" but don't have any known security issues - simply later versions available.

Having said that, I still think the program is excellent, as long as you have the experience to evaluate the warnings. Does anyone remember BigFix? I think MS do a great job of patching Windows (shame they have to though!). It's about time we had another service that can do a reasonable job of looking at a wide range of other companys' software.

It's not a complete install package . . .

For the first time in quite a while, this update is NOT a complete re-installation of Adobe Reader. It's just a 2.2MB msi installer (for Windows at least) package.

This is a good deal better for sysadmins - I can deploy to 100 computers spread over 6 sites without anyone moaning about the download/install time!

You are in breach of . . .

. . . something, certainly. You are showing the Google-car's number-plate! Not only that, you show the number plates of the other cars around it! Suppose one of those people was actually supposed to be somewhere else at the time - they're exposed now.

If Google say they're going to blur the number plates (and faces), shouldn't El Reg?

You can't block IE6

@Martin Owens - My company uses a legacy application that works through the browser - and won't work properly with IE7. IE6 is still supported software and our patches are all up-to-date. I'm not saying we're not unusual, but IE6 is not so bad that it should be "banned".

And generally speaking, I'm not impressed with AVG8 (I use it on my personal PCs, not work). It IS turning into Norton - bloated, toolbar, unwanted Yahoo search integration, obtrusive notifications. I've disabled LinkScanner - and have to put up with the notification icon that constantly tells me there's a problem.

My solution? I'm going back to AVG 7.5 and recommending it to all the people who ask me. I still have the installer on a USB key and it looks like updates - at least - are still available on the AVG website. Certainly my kids' PC is still running 7.5 quite happily.

If/when AVG sort their act out, I'll start using/recommending their product again - unless someone else has won my vote by then!

It's not a complete install package . . .

For the first time in quite a while, this update is NOT a complete re-installation of Adobe Reader. It's just a 2.2MB msi installer (for Windows at least) package.

This is a good deal better for sysadmins - I can deploy to 100 computers spread over 6 sites without anyone moaning about the download/install time!

@Jolly - LLU Providers

Have a look at samknows.com.

3 clicks and I now know that there are 8 LLU operators listed at my exchange, whilst the average for the 149 exchanges in the London area is 10.48.

Why the security services shouldn't bug politicians . . .

. . . because they are controlled by the government. If they bug politicians, the information then goes to people who are effectively "in competition" with the person under surveillance.

If MI5 report a security indiscretion by David Cameron to the government, they could use that information against the Tories. On the other hand, if it's a Labour minister, they can choose to ignore it.

In Spycatcher, Peter Wright refers to controversy about Harold Wilson, where MI5 were either being used for political ends, or may have been pursuing them themselves.

Of course, there's no spying ban because the politicians are "clean" - it's more likely that the Security Services couldn't handle the amount of dirt they'd find if they investigated them all!

@BitTwister

"nearly infinite"

Well, you're right, there can only be an infinite number of file inputs if infinite file length is possible which, of course, it isn't. The point is that the number of FEASIBLY possible file inputs might as well be infinite.

If, for example, you consider ONLY files of 4MB in size. There are 2^25 possible such files. A 128-bit hash has 2^7 possible values. Therefore, on average, each hash value can be derived from 2^18 different files.

As John Stag kindly pointed out, we can already provide security that is theoretically impossible to crack by brute-force methods. The problems arise when weaknesses in the security algorithms make it possible to bypass these theoretical limits and find a solution more directly.

Winword.exe on my system is over 12MB in size. I'm pretty sure a decent (?) piece of malware could be written that would be a fraction of that size. If I then had some way to populate the other 11Mb with junk such that the MD5 (or whatever) hash of the whole file matched the original Winword.exe hash, it would pass a hash-based check.

Without actually being able to prove it, I am pretty well positive that there would be many different versions of my file that could be made to match the original MD5 hash. Whether it could AT THE SAME TIME match an SHA-1 hash, and/or an SHA-2 hash etc, would be a question for a REAL cryptographer!

Google-rage debuts the day after

Given how impatient and pushy drivers can be when queueing for the pumps already, imagine what will happen when drivers can stand there and surf!

I give it a week before we get reports of an impatient motorist shunting another car away from the pump because the driver is standing there trying to work Google Maps after he has filled up and paid.

How to uninstall Quicktime from Windows . . .

It's not only Macs where it's difficult to uninstall Quicktime. On Windows it doesn't provide an uninstall link and does not appear in Add/Remove programs.

I would like to share this tip that I found in the Tech Support Guy forums:. Check to see if there's a file "uninstall.log" in the c:\windows\system32\quicktime folder. If there is, run the following command:

c:\windows\unvise32qt.exe c:\windows\system32\quicktime\uninstall.log

I run a network of nearly 100 business PCs. At least half of them came with QT installed or have had it added by users. Since the proliferation of QT vulnerabilites I have used this command to remove QT wherever I find it. It has worked every time. I ignore the dire warnings and "Remove Everything" - no problems yet!

Thou shalt not use the word "mobe"!

And that includes "mobe-captured". Shame on you, Lester.

http://www.theregister.co.uk/2005/09/09/mobe_poll_result/