Posts by yoganmahew

Re: Service now is horrible.

Horrible, terrible, awful, broken, stuck, impenetrable, horrible...

No paste, only attach!

It's like a comments section without formatting.

Re: Legacy tech

Absolutely, but you forgot the "security is at the heart of everything we do" being in sprint 12 of 11 budgeted for...

Re: Classic ploy

@yetanotheraoc

A sharpened quill and a fireproof safe?

Re: John Kettley is a weatherman

Poor Wincey Willis!

Re: What?

Do you remember when we brought business value to our customers?

Re: Simple approach - wages

I agree, I'm senior tech in a specialised field and have been on call for the last 8 years, 24x7x365.25; I'm in the middle of an extra-special on-call where I have to be at my desk within 5 minutes of a call for a customer activation. Total remuneration for this? Zero.

So not just an hour minimum per call, but also a minimum payment for on-call hours.

Re: "Sweaty masses"

Middlesex, Sussex, and Essex.

Naked mole rat.

Nude make-up.

You may need proof that you weren't resisting arrest when shot while sleeping.

Re: Put the "Personal" back

The first link returned is https://itsfoss.com/get-linux-laptops/; the first item on it is a Dell XPS... the other links prominently feature Dell, yes, I looked. I'm not sure if you're trying to disagree with @Craig100 or agree with him...

Re: The reason I'm only a geek in my private time

I was in the role of A/P, and came to be the only one that understood a critical part of a large system. The large system is being "mainframe offloaded to cloud", so now I'm a cloud architect setting the requirements for a bullshit bingo outsourced vendor to go and rewrite the system in jave framework on cloud vendor for lowest possible cost to a fixed timescale. Oh, and exactly matching function...

What can possibly go wrong? What could possible be a more depressing job vista?

Re: Reality cheque

@Mike

Yep. A sensible progression would be to retain 3G always as the step down value, and kill off intermediate Gs, so as 5G expands, 4G is deprecated, with 4G phones falling back to 3G.

Re: Slack is doing a good job pushing people over to MS Teams

Teams has been slooooooooooooooooow today too. Though still up.

Re: The price of this is only "cheap"...

While I agree with your definition of monetary value, I'm wondering what you consider will work day in, day out? I have colleagues with Macbooks, they are always broken if you use anything other than an apple stock app. My daughter has a ChromeOS book for school and there was never a more benighted product, neither fish nor fowl. I've used various strands of Linux since forever and it's okay, if clunky, until it no longer works at all and you have to reinstall the whole thing.

I have fond memories of DOS on a 286 where you could magically flick between DW370 and Netmaster, giving you access to VM and MVS, and Keith and Andy only a short walk and a cup of coffee bribe away from any fix. I'm not sure that's what you have in mind though :)

Re: The real issue with the death of CentOS

Add in continuous PCI compliance on a bleeding edge system and components, where a security patch may come with dependencies (since who's going to bother isolating security patches for what's essentially a development OS).

The timing is cynically fabulous too...

Re: Broken security model

"Tell me how to protect an environment from a monitoring system that, by design and function, has access to every system in the network?"

Absolutely.

Zero trust only 'works' by giving blanket authority to monitoring agents (like Orion). The proliferation of these agents is quite troubling - every container has the same AppD agent, the same Orion agent, the same Qualys agent on the golden container baseline.

PCI DSS gives you a max of 30 days to install critical updates to any of these agents, your external component libraries, and the OS image.

The volume of updates is already well beyond manual review...

Re: Could be scarier than one might expect

Like @sitine, I'm concerned at the blast radius. Solarwinds is inside the VPN, inside the the secure zone. The secure zone where all the deprecated machine instances run, where patching is months behind (because why would you need to patch when you're in the secure zone?).

Jake Williams, Security Analyst, might want to consider the thrill of enterprise security logic before he goes happy clappy.

Email addresses are free... there's no cross verification that I can see.

Re: Meetings or chats

Short meetings would entirely be taken by Gary from BizOps introductory remarks about how he and the random vendor he's chosen could do the project and really don't need any IT buy in and anyway IT is insignificant next to the dark side power of being a budget owner. Repeat every 15 minutes for different projects and different Garys...

Re: Tradeoffs the punters can't control (and don't have the relevant decision making info anyway)

On average, the cloud providers have very good reliability...

I'm old enough to remember when Middlesex and Essex were blocked by spam filters. Made a mess of my fantasy cricket. Hmmm, a quick G, sees it's still an issue: https://www.computerworld.com/article/2767791/spam-filters-blocking-ontario-county-with-a-racy-name.html

It seems we have both much and little to fear from AI...

Re: I learned SRE at Google

And if anything under 5 minutes is not an interruption, then trebles all round!

They say "whataboutery".

Re: Backups

And what Rabbit shows is that every business that uses IT is in the IT business; it's not a cost centre, it's a central part of the business. It's depressing how few businesses realise this.

Re: So what's the catch

"Proposes"

Probably another bung-fishing exercise.

Why kill one SRE error budget, when you can kill budgets all over the world?! Of course, companies don't factor that in to their customer experience when they move to the cloud, nor do they care that they are moving from their own DC, limited complexity so good recoverability times (if they staff it) to a complex cloud (the underlying infrastructure is complex) with poor recoverability times (even if they bother staffing it).

The thrill of it all, is a large corporation moving to Salesforce Cloud, Oracle Cloud (or RE), Office364&Azure for desktop, AWS for workloads, F5& Centurylink for networks, you're beholden to all those actors and more doing their jobs; an endless patch cycle (because everything is at least semi-publilc), an endless cycle of EOL mattering.

You cease to be a company in a business sector for your customers and become an operations company for your own inftastructure.

Re: Fundamentally flawed

Ah, we're on to software engineers fixes!

Have they thought about having another set of engines behind the first set of engines to balance? It wouldn't do much for the aerodynamics or the fuel efficiency, but it would make the QA tests pass.

Hmmm, make the QA tests pass... that's what MCAS does...

Re: Here's a snippet

You forgot "where's my ducking document gone?"

Re: BGP takes two to untangle

Thank you - that might explain it. A four hour partial outage (flapping at 20-40% of traffic) at my place with the fallback routes not working (customers not able to reach us. Only the timing stopped it being a much bigger incident, so I guess +1 for a weekend change slot versus continuous deployment...

Re: I've used a lot of terminals...

@Nick

"An entire sub-industry"

And what they build can only be changed in timescales measured in eons. So much for a new option to do something different hacked up in a day, now it is weeks of lead time and a release cycle away.

Or do we have to live with that worst of both worlds "enter additional parameters in this box" and then the GUI does a flipping CLI command under the hood :|

Re: make deletion routine

It's a pain in the ass, though, to have chat ephemeral. My company set it to 30 days after having no retention set. By that point, everyone had stopped using email and were chatting preliminary project design decisions, preliminary functional agreements etc. All lost, and chaos and arguments ensued for some months. Even on a personal level, having to reask who someone is (it's a large company) every time they infrequently ping you is painful.

"Only personal chats were lost, it's claimed, not chats conducted as part of a Teams meeting or Teams channel, and not any files uploaded to personal chat threads."

This is what MS say, but the meeting chats disapper too. Only chats in a channel are safe, but the channels are broken once you have more than six. Files you upload are still there, somewhere, but the link to them is removed, so finding them can be challenging...

Re: ???

@Pascal, I think you're missing a step.

Someone stored 100k of tulips in a safe.

Someone else said the tulips were worth 500m

Someone and someone else are rich and looking for suckers to buy some tulips.

Next day...

Re: And the corporate world ...

Well, not really. An on-premises data centre is securted by firewalls and gateways, often provided by external professionals. It takes some work (or F5 :|) to leave exploitable holes and even then those holes have to be exploited.

Much cloud storage is individual, each bucket is a separate piece of infrastructure that needs to be individually secured. Failure to secure = no security. It literally takes no effort to see the contents of an unsecured S3 bucket (for example).

You end up effectlively with hundreds or thousands of datacentres to secure.

Re: Cans of Compressed Air, how quaint!

Lidl portable compressor. Not powerful, so perfect. Cleaning everything from PS4 to laptops to filters on the vacuum.

Re: Public services are probably at higher risk

They're all architected to the same shoddy standard, though, lowest common denominator development, make it secure as an afterthought..

Re: How did they learn he was Dalit?

Hi name may give it away or he may have gotten an education or first job leg up due to being scheduled caste or OBC (as part of an affirmative action program).

Re: Trust

Accompanied by "we take our customers security seriously" boilerplate.

Re: @Chris Hills - Are you telling me

Absolutely that's the way it works, with an additional step - between the highest management signing and the finer details, there's a big announcement about how much better the new is going to be and how much will be saved. Then half the workers on the old proceses are ditched and replaced with SNOW customisation 'experts'...

Re: Journalism, Press Releases, and Surveys

@HildyJ

"Unfortunately, in this case, JetBrains had to explain why second place was really first place."

They've chosen the already accepted answer though, that many have to do a bit of Javascript for the front-end and I think they've chosen a good method to expose it by asking what the main language used in the last year was.

Re: not the terminal, the punch card

Still coding to 71 characters, 72nd character the continuation line, and the last 8 the sequence number in IBM assembler, but when I started in 1990, we used 132 column emulators for listings, system dumps etc. Ah, VM (now z/VM), what a wonderful development and test environment!

Indeed, but would you prefer a spoofable computer (it will always be spoofable)? Personally, I'll always want a sack of meat at the pointy end with decision rights.

Re: "XML"

Article still here: https://www.theguardian.com/technology/2020/may/04/amazon-tim-bray-resigns-working-conditions-coronavirus Is it the same one?

Downvote because "Ginni Rommety was a good CEO. But she frittered away a of IBM's technological opportunities and advantages."

As you later put it, morale is in the sh1tter too.

And centralised bureaucracy (a result of large sites methinks) is also bloated.

If this is a good CEO, then goodness me, I don't want to see a bad one.