* Posts by yoganmahew

496 posts • joined 1 Apr 2014

Page:

Report: 83% of UK software engineers suffer burnout, COVID-19 made it worse

yoganmahew

Re: Never ask a barber if you need a haircut.

Absolutely @James.

Agile in a large organisation is a recipe for sprint sweatshops. The treadmill is expected to go faster and faster, the few people who know what they are doing are stretched ever thinner providing direction to code monkey teams who only code, have no domain knowledge and never get the time to gain any.

IBM's 18-month company-wide email system migration has been a disaster, sources say

yoganmahew

Re: Dark, chaotic pit of not being able to access email or calendars

Exactly @nichomach. Email is the worst method of communication, apart from all the others.

I live my life by Outlook rules, automate the boring out of view.

Enterprise databases deployed in Kubernetes? Proceed with caution, warns seasoned analyst

yoganmahew

Re: Ermm...

Yeah, and if you're in GCP, Spanner or Firestore as your persistence layer exist whether you care about them or not - they are accessible from your cluster, but outside it.

If what he's further saying is you don't understand what Spanner and Firestore are doing, well, when your last mainframers retire, you won't understand your data centre either.

It's completely unsupportable. Yes, we mean your brand new system

yoganmahew

And then you have the "what is core? Baby don't code it" crowd. Those accountants and program managers that effectively run a large organisation. To them, they are core, everything else can be outsourced. So soon your core product is being built by outsourced teams. You will never know what it does or how it does it or how to fix it. It will always be broken in one way or another. Every fix will require a refactoring, change control, and a large project team.

I'm close enough to the end of my career that it's sad, but I no longer care. The battle's lost and the game is too.

10+ users can lead to washout: Data lakes struggle with SQL concurrency, says Gartner

yoganmahew

"able to handle 19,000 queries per hour"

Hmmm, 5 and a quarter TPS... this time next year Rodney...

Lessons have not been learned: Microsoft's Modern Comments leave users reaching for the rollback button

yoganmahew

Re: Well... there's always...

EDLIN!

Patch in the ascii!

Not as many $1m customers as last quarter? Sorry, we're out: ServiceNow shares fall despite soaring revenues

yoganmahew

Rant workflow triggered

This is an automated approval for a production system rant triggered by the words "Service Now". Your productivity engine has been downgraded to a hopeless box filler. Your engagement service is disengaged. Doctors are standing by.

Airline software super-bug: Flight loads miscalculated because women using 'Miss' were treated as children

yoganmahew

Re: "the company ignored that question"

""This should not have stopped the program from working, but as this was a 'fix,' it could not be known for sure."

This is what screamed at me... you don't test your fixes Tui? Really? What do you do, CI/CD hack them up to production and see how they perform there? If the software doesn't crash, fingers crossed the plane won't either?

Testing? We don't fly there...

State of Maine orders review of $54.6m Workday project as it alleges delivery failure and threatens cancellation

yoganmahew

Re: There must be a better way to build these systems

Even 30 years ago a mainframe would handle multiple parallel users with no loss of performance, I worked on a system that in 1991 had 20,000 simultaneous connections processing workloads. Every year they get faster and better where now the mainframe I work on supports millions of simultaneous connections.

You can read up on some of the characteristics of what people mean by 'mainframe' here - https://www.suse.com/c/mainframe-versus-server-farm-comparison/

Offloading tightly coupled applications that six people in the company understand well enough to describe the business flows is nightmarish. The lack of people with skills is the reason that mainframe needs to be offloaded, but the same lack of people is what makes it ludicrously hard.

Biden's $2tn infrastructure plan includes massive broadband rollout, equates internet access with water and power as essential utilities

yoganmahew

YMMV

"equates fast internet access – broadband – with other utilities including water and power"

So not available in Texas, comes with surge pricing, and poisoned in Flint?

SQL now a dirty word for Oracle, at least in cloudy data warehouses

yoganmahew

Re: Can you imagine...

Akchley, yes, one important lesson was learned. The middle manager of doom is stupid precisely because they believe that their tinkering is valuable instead of costly.. The cloud is running other people's workloads at profit. If the other people are stupidly inefficient, so much the better. You can kid them that the volume discounts they get for their inefficiency will save them.

Now the middle manager of stupid will run his spreadsheet queries on an unlimited serverless cloud, paying per instruction instead of his hardware limited over-specc'd laptop...

'Business folk often don't understand what developers do...' Twilio boss on the chasm that holds companies back

yoganmahew

Why respect?

When you can buy in scrum teams and they fit neatly into your spreadsheet?

ServiceNow bakes more ML, low code into Quebec release to push itself as all-encompassing workflow layer

yoganmahew

Re: Service now is horrible.

Horrible, terrible, awful, broken, stuck, impenetrable, horrible...

No paste, only attach!

It's like a comments section without formatting.

Oh SITA: Airline IT provider confirms passenger data leaked after major 'cyber-attack'

yoganmahew

Re: Legacy tech

Absolutely, but you forgot the "security is at the heart of everything we do" being in sprint 12 of 11 budgeted for...

yoganmahew

SITA is almost out of the PSS business, it has wound down its multi-host platform and New Horizons seems not to have built much popularity. Based on the damage, I'd say it is alliance frequent flyer datasets that are routinely shared to provide good service. When you fly on one alliance airline (e.g. in Star or Oneworld), you can use your FF card on other members of the alliance and get points, upgrades, use of facilities and the like. Because the datasets are quite large and the systems are globally dispersed, typically they are copied locally and updated, erm, weekly? (It is, erm, 10 or more years since I was involved!). The lookup is to check validity and tier level.

What interests me more is where the breach happened. The legacy systems poo-poohed in the article are difficult to hack by their nature (they are poorly connected, have obtuse internals, and weird data formats - SITA PSS was Unisys), so my guess is it's a modern offload and probably a copy to an unsecured cloud bucket. For all the sneering at legacy, this modern stuff is shite.

LastPass to limit fans of free password manager to one device type only – computer or mobile – from next month

yoganmahew

Re: Classic ploy

@yetanotheraoc

A sharpened quill and a fireproof safe?

This scumbag stole and traded victims' nude pics and vids after guessing their passwords, security answers

yoganmahew

Re: John Kettley is a weatherman

Poor Wincey Willis!

It didn't (sob)... even make it (sniff)... to GA: Microsoft to pull the plug on Azure Service Fabric Mesh

yoganmahew

Re: What?

Do you remember when we brought business value to our customers?

Europe considers making it law that your boss can’t bug you outside of office hours

yoganmahew

Re: Simple approach - wages

I agree, I'm senior tech in a specialised field and have been on call for the last 8 years, 24x7x365.25; I'm in the middle of an extra-special on-call where I have to be at my desk within 5 minutes of a call for a customer activation. Total remuneration for this? Zero.

So not just an hour minimum per call, but also a minimum payment for on-call hours.

Reg reader's XXXbox oddity: The BBC4 topless thumbnail trauma whodunnit

yoganmahew

Re: "Sweaty masses"

Middlesex, Sussex, and Essex.

Naked mole rat.

Nude make-up.

ADT techie admits he peeked into women's home security cams thousands of times to watch them undress, have sex

yoganmahew

You may need proof that you weren't resisting arrest when shot while sleeping.

Dell CTO shares his hottest trends for 2021: Four interesting technologies, one of which is still borderline sci-fi for now

yoganmahew

Re: Put the "Personal" back

The first link returned is https://itsfoss.com/get-linux-laptops/; the first item on it is a Dell XPS... the other links prominently feature Dell, yes, I looked. I'm not sure if you're trying to disagree with @Craig100 or agree with him...

Buggy code, fragile legacy systems, ill-conceived projects cost US businesses $2 trillion in 2020

yoganmahew

Re: The reason I'm only a geek in my private time

I was in the role of A/P, and came to be the only one that understood a critical part of a large system. The large system is being "mainframe offloaded to cloud", so now I'm a cloud architect setting the requirements for a bullshit bingo outsourced vendor to go and rewrite the system in jave framework on cloud vendor for lowest possible cost to a fixed timescale. Oh, and exactly matching function...

What can possibly go wrong? What could possible be a more depressing job vista?

3G ain’t totally dead yet: Verizon pushes back cut-off plans to some unspecified future date

yoganmahew

Re: Reality cheque

@Mike

Yep. A sensible progression would be to retain 3G always as the step down value, and kill off intermediate Gs, so as 5G expands, 4G is deprecated, with 4G phones falling back to 3G.

Slack serves up out-of-order messages, shaky comms as world goes back to work

yoganmahew

Re: Slack is doing a good job pushing people over to MS Teams

Teams has been slooooooooooooooooow today too. Though still up.

Surface Laptop Go: Premium feel for a mid-range price, but Microsoft's Apple-like range once meant more than this

yoganmahew

Re: The price of this is only "cheap"...

While I agree with your definition of monetary value, I'm wondering what you consider will work day in, day out? I have colleagues with Macbooks, they are always broken if you use anything other than an apple stock app. My daughter has a ChromeOS book for school and there was never a more benighted product, neither fish nor fowl. I've used various strands of Linux since forever and it's okay, if clunky, until it no longer works at all and you have to reinstall the whole thing.

I have fond memories of DOS on a 286 where you could magically flick between DW370 and Netmaster, giving you access to VM and MVS, and Keith and Andy only a short walk and a cup of coffee bribe away from any fix. I'm not sure that's what you have in mind though :)

Red Hat defends its CentOS decision, claims Stream version can cover '95% of current user workloads'

yoganmahew

Re: The real issue with the death of CentOS

Add in continuous PCI compliance on a bleeding edge system and components, where a security patch may come with dependencies (since who's going to bother isolating security patches for what's essentially a development OS).

The timing is cynically fabulous too...

Well, on the bright side, the SolarWinds Sunburst attack will spur the cybersecurity field to evolve all over again

yoganmahew

Re: Broken security model

"Tell me how to protect an environment from a monitoring system that, by design and function, has access to every system in the network?"

Absolutely.

Zero trust only 'works' by giving blanket authority to monitoring agents (like Orion). The proliferation of these agents is quite troubling - every container has the same AppD agent, the same Orion agent, the same Qualys agent on the golden container baseline.

PCI DSS gives you a max of 30 days to install critical updates to any of these agents, your external component libraries, and the OS image.

The volume of updates is already well beyond manual review...

US Treasury, Dept of Commerce hacks linked to SolarWinds IT monitoring software supply-chain attack

yoganmahew

Re: Could be scarier than one might expect

Like @sitine, I'm concerned at the blast radius. Solarwinds is inside the VPN, inside the the secure zone. The secure zone where all the deprecated machine instances run, where patching is months behind (because why would you need to patch when you're in the secure zone?).

Jake Williams, Security Analyst, might want to consider the thrill of enterprise security logic before he goes happy clappy.

Google Cloud (over)Run: How a free trial experiment ended with a $72,000 bill overnight

yoganmahew

Email addresses are free... there's no cross verification that I can see.

yoganmahew

Hmmm, when you sign up for a free trial, G a number of times reassures that it will close down the project and look for confirmation before proceeding past the free $300 credit. I have experienced this to be so, though with a spanner cluster server.

So there's a bit not being spoken, maybe it was a company account, not a free-sign-up?

Cisco challenges the tyranny of Outlook with short, self-terminating Webex meetings

yoganmahew

Re: Meetings or chats

Short meetings would entirely be taken by Gary from BizOps introductory remarks about how he and the random vendor he's chosen could do the project and really don't need any IT buy in and anyway IT is insignificant next to the dark side power of being a budget owner. Repeat every 15 minutes for different projects and different Garys...

AWS going AWOL last week is exactly why less is more in cloud server land

yoganmahew

Re: Tradeoffs the punters can't control (and don't have the relevant decision making info anyway)

On average, the cloud providers have very good reliability...

Who knew that hosing a table with copious amounts of cubic metres would trip adult filters?

yoganmahew

I'm old enough to remember when Middlesex and Essex were blocked by spam filters. Made a mess of my fantasy cricket. Hmmm, a quick G, sees it's still an issue: https://www.computerworld.com/article/2767791/spam-filters-blocking-ontario-county-with-a-racy-name.html

It seems we have both much and little to fear from AI...

AWS admits to 'severely impaired' services in US-EAST-1, can't even post updates to Service Health Dashboard

yoganmahew

Re: I learned SRE at Google

And if anything under 5 minutes is not an interruption, then trebles all round!

Tax working from home, says Deutsche Bank, because the economy needs that lunch money you’re not spending

yoganmahew

They say "whataboutery".

Ransomware crims read our bank balance and demanded the lot, reveals Scotland's Dundee and Angus College

yoganmahew

Re: Backups

And what Rabbit shows is that every business that uses IT is in the IT business; it's not a cost centre, it's a central part of the business. It's depressing how few businesses realise this.

Trump administration proposes H-1B visas go to highest-paid workers first

yoganmahew

Re: So what's the catch

"Proposes"

Probably another bung-fishing exercise.

One of the world's most prominent distributed ledger projects has been pushed back by a year

yoganmahew

Scalability not in the specification?

"The pandemic also created market volatility that led to record levels of trading, which means the application needs to be re-scoped to work at larger scale."

Er, what?

Yes, it's down again: Microsoft's Office 365 takes yet another mid-week tumble, Azure also unwell

yoganmahew

Why kill one SRE error budget, when you can kill budgets all over the world?! Of course, companies don't factor that in to their customer experience when they move to the cloud, nor do they care that they are moving from their own DC, limited complexity so good recoverability times (if they staff it) to a complex cloud (the underlying infrastructure is complex) with poor recoverability times (even if they bother staffing it).

The thrill of it all, is a large corporation moving to Salesforce Cloud, Oracle Cloud (or RE), Office364&Azure for desktop, AWS for workloads, F5& Centurylink for networks, you're beholden to all those actors and more doing their jobs; an endless patch cycle (because everything is at least semi-publilc), an endless cycle of EOL mattering.

You cease to be a company in a business sector for your customers and become an operations company for your own inftastructure.

Federal judge temporarily neutralizes President Trump's blockade against visas for foreign techies, other workers

yoganmahew

Hoocudanode

That paid for education wouldn't provide the levels of training required for non-fungible knowledge economy jobs.

Proposed US fix for Boeing 737 Max software woes does not address Ethiopian crash scenario, UK pilot union warns

yoganmahew

Re: Fundamentally flawed

Ah, we're on to software engineers fixes!

Have they thought about having another set of engines behind the first set of engines to balance? It wouldn't do much for the aerodynamics or the fuel efficiency, but it would make the QA tests pass.

Hmmm, make the QA tests pass... that's what MCAS does...

Microsoft leaks 6.5TB in Bing search data via unsecured Elastic server. *Insert 'Wow... that much?' joke here*

yoganmahew

Re: Here's a snippet

You forgot "where's my ducking document gone?"

CenturyLink L3 outage knocks out web giants and 3.5% of all internet traffic

yoganmahew

Re: BGP takes two to untangle

Thank you - that might explain it. A four hour partial outage (flapping at 20-40% of traffic) at my place with the fallback routes not working (customers not able to reach us. Only the timing stopped it being a much bigger incident, so I guess +1 for a weekend change slot versus continuous deployment...

Hidden Windows Terminal goodies to check out: Retro mode that emulates blurry CRT display – and more

yoganmahew

Re: I've used a lot of terminals...

@Nick

"An entire sub-industry"

And what they build can only be changed in timescales measured in eons. So much for a new option to do something different hacked up in a day, now it is weeks of lead time and a release cycle away.

Or do we have to live with that worst of both worlds "enter additional parameters in this box" and then the GUI does a flipping CLI command under the hood :|

IT blunder permanently erases 145,000 users' personal chats in KPMG's Microsoft Teams deployment – memo

yoganmahew

Re: make deletion routine

It's a pain in the ass, though, to have chat ephemeral. My company set it to 30 days after having no retention set. By that point, everyone had stopped using email and were chatting preliminary project design decisions, preliminary functional agreements etc. All lost, and chaos and arguments ensued for some months. Even on a personal level, having to reask who someone is (it's a large company) every time they infrequently ping you is painful.

"Only personal chats were lost, it's claimed, not chats conducted as part of a Teams meeting or Teams channel, and not any files uploaded to personal chat threads."

This is what MS say, but the meeting chats disapper too. Only chats in a channel are safe, but the channels are broken once you have more than six. Files you upload are still there, somewhere, but the link to them is removed, so finding them can be challenging...

yoganmahew

Re: What the . . . ?

No. Even copy/paste is severely limited.

It's on purpose to limit the legal fallout of Teams.

Single-line software bug causes fledgling YAM cryptocurrency to implode just two days after launch

yoganmahew

Re: ???

@Pascal, I think you're missing a step.

Someone stored 100k of tulips in a safe.

Someone else said the tulips were worth 500m

Someone and someone else are rich and looking for suckers to buy some tulips.

Next day...

Leaky AWS S3 buckets are so common, they're being found by the thousands now – with lots of buried secrets

yoganmahew

Re: And the corporate world ...

Well, not really. An on-premises data centre is securted by firewalls and gateways, often provided by external professionals. It takes some work (or F5 :|) to leave exploitable holes and even then those holes have to be exploited.

Much cloud storage is individual, each bucket is a separate piece of infrastructure that needs to be individually secured. Failure to secure = no security. It literally takes no effort to see the contents of an unsecured S3 bucket (for example).

You end up effectlively with hundreds or thousands of datacentres to secure.

Teardown nerds delve into Dell's new XPS 15 laptop to find – fancy that – screws and user-serviceable parts

yoganmahew

Re: Cans of Compressed Air, how quaint!

Lidl portable compressor. Not powerful, so perfect. Cleaning everything from PS4 to laptops to filters on the vacuum.

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021