* Posts by Dinsdale247

186 publicly visible posts • joined 4 Apr 2014

Page:

Hey girl, what's that behind your Windows task bar? Looks like a hidden crypto-miner...

Dinsdale247

HTTP 2 To The Rescue

Don't worry guys HTTP 2 will fix this. There will be no way for someone know what is running in the browser (hello binary) and no way to block things that are listed as mandatory. Now these pesky users can't turn off your crytpo miners at all.

I love technology. It's not paranoia when everyone really is out to get you.

Dinsdale247

Re: Finally, a reason to move the task bar

They already tried that. It was called Windows 8 and you all complained.

'There has never been a right to absolute privacy' – US Deputy AG slams 'warrant-proof' crypto

Dinsdale247

From the wiki entry linking to The Bernstien case:

'On October 15, 2003, almost nine years after Bernstein first brought the case, the judge dismissed it and asked Bernstein to come back when the government made a "concrete threat".'

I suppose that concrete threat has just happened?

Oracle ZFS man calls for Big Red to let filesystem upstream into Linux

Dinsdale247

Linux people are retar@ds

The Me Toos have it: Linus doesn't like the license so it must be "baaad". "Look," say Linux bashers, " I built an operating system out of spare parts from the GNU project! I can plug anything into it and make my own distro! ZFS? Well unless the filesystems compiled INTO the kernel it's unusable!"

ZFS uptake has NOTHING to do with the license. It's a perception issue. There are "absolutely zero"[1] good resources on ZFS with Linux. The Linux port(s) isn't(aren't) well maintained (or weren't when I was looking), it's WAY behind the other implementations in terms of features and it's buggy. Why won't anyone use it? Because nobody uses it.

Are these instructions to get it working SO onerous that Linux users can't install it? Please...

https://github.com/zfsonlinux/zfs/wiki/Debian

Phone crypto shut FBI out of 7,000 devices, complains chief g-man

Dinsdale247

Re: Hardly

From said article "When an iOS device is turned on, its application processor immediately executes code from read-only memory known as the Boot ROM."

Perfect. So now I know where to start.

Find out what address the bootloader loads to. Then, find it's output (to memory). Once we know what it's confirmation code is, overwrite the executable in memory and return said code. Start debugger, load kernel. Enjoy!

Dinsdale247

Re: Hardly

Thanks for the pdf. I will definitely give it a read. However, all you need to know is the mechanism that grabs the hash off the unit. It's a matter of simply tracing the system calls. If you load something before the OS, (see the article on why Intel ME is so dangerous) then you can read what it's doing to your hearts content. There are still drivers reading things off of NOR and NAND. Uses an AES encryption chip you say? hmmm.. lets check the PCIe system calls, or did they use SPI? No mater what you are doing, the system still uses system calls that make comparisons. If you can read the memory (i.e. debug it) then it's not safe. Once you know the mechanisms, subverting them is trivial if you have physical access.

I'm not saying skiddies are going to do this. But surely the FBI whining that it's unable to get into iphones is rubbish (or more cunningly, subterfuge).

Dinsdale247

Re: Hardly

https://www.theregister.co.uk/2017/10/21/purism_cleanses_laptops_of_intel_management_engine/

In the next article I read... (On why Intel Management Engine is so dangerous)

"The Management Engine executes mystery code that runs below the BIOS level, Weaver explained, and thus has the potential to access everything above it. "The theoretical problems that can expose you to are too numerous to list," said Weaver."

I'm not making this up. If you have physical access to the machine and you keep both the secrets and the mechanisms on the same device, there is no way to stop someone from getting your keys. Arm bootloaders are garbage too. I don't imagine Apples is any better (if it's not using das u-boot).

Dinsdale247

Hardly

I call bulll on all of this. This encryption is nothing a good programmer couldn't overcome with a dummy iphone, jtag and a debugger.

The intrinsic problem with modern computers is that if you have physical access to the hardware, there is little real security.

1) Take dummy iphone, add passkey that you know

2) Interupt boot process and put it on a debugger. iOS is still Unix, this isn't difficult, the bootloader and OS are coming from somewhere on disk...

3) Watch iphone processes/memory on jtag until you see your dummy value. Now you know how the value is extracted.

4) Repeat with real iphone that you want to crack.

Oversimplified? Absolutely; but it's still totally do-able.

'Screaming' man fined $149 for singing 'Everybody Dance Now'

Dinsdale247

Re: singing while non white?

Welcome to Canada. All you have to do is OFFEND someone to be fined or arrested here.

Microsoft's foray into phones was a bumbling, half-hearted fiasco, and Nadella always knew it

Dinsdale247

You also missed a step: Then after launching WP7 they said they weren't going to support "old hardware" (that was still being sold in the stores) and all apps needed to be re-written AGAIN in Windows phone 8. They effectively isolated 75% of the people who *were* running WP and then screwed the developers. So as a developer, you needed to buy a new phone AND re-write all your apps. "B@llz to that" is what I said.

Dinsdale247

Re: Awwww shut up and quit your whining.

There is nothing irrational about it. I once was talking to a developer that worked for one of the largest video games makers in the world. He point blank bragged that the company killed the Sega Genesis. He said they had an exclusive agreement with another company not to port certain games to other platforms.

There was NOTHING that could be done by Microsoft. The hardware makers, cellular networks and the developers had already placed their allegiance. I have used most major phone OSes for the past 15 years and Windows Phone 7.5 was and awesome product. Just not one that anyone wanted to support.

Google's Hollywood 'interventions' made on-screen coders cooler

Dinsdale247

Bring it on

This will be a boon for Universities and Colleges and make no difference to those of us that can do the real work. Rarely is someone interested in being 'cool' anything more than a second year drop out.

It's official: Users navigate flat UI designs 22 per cent slower

Dinsdale247

Re: At last - confirmation of the abundantly obvious

"The 'flat' and related interface principles are utter crap when it comes to usability - there are sadly very few neutral formal assessments of the usability of the more recent elements so this is a refreshing confirmation."

I disagree. The need to "show" a user what constitutes an interactive element can be in itself a failure of user interface design. Metro worked very well because the the user intrinsically knew where to find what they were looking for. Not so in any of the copy cats that took one *minor* element of Metro (flatness) and decided that was enough to make a good clone.

Dinsdale247

Not What It Was Intended For

The flat UI worked well in places where the navigation paradigm was consistent, like a Windows Phone or a Zune (or to a lesser extent on Windows proper). You didn't need to know what a button should look like in Windows Phone because the navigation buttons were in pre-defined spots. It worked well even in unfamiliar applications because placement was consistent enough that you *knew* to click on the title, or look in a submenu.

This is not "Microsofts Fault". It's the fault of unimaginative copy cats getting it wrong. As one of 12 people world wide that bought a Windows Phone, I can tell you that the UI paradigm was leaps and bounds over everything else and nobody has caught up. Unfortunately, Microsoft turned around and watered it down in an attempt to find acceptance and dismantled some of the best features.

Ubuntu 'weaponised' to cure NHS of its addiction to Microsoft Windows

Dinsdale247

Re: Cost is the smaller concern

The local school district recently switch over to an all Linux environment. The results have been a disaster. Week long outages of mail systems. Total lock out of the teachers from being able to use the software on multiple occasions. Rooms full of PCs that nobody can fix.

Open Source software is not free. It costs time and money and requires REAL skill to work with. I hope someone is recording all the hours spent making things work, because the total is going to be staggering.

Five Eyes nations stare menacingly at tech biz and its encryption

Dinsdale247

Re: "we are moving to Canada"

"It'll never happen, because no company is going to sacrifice the world's biggest market in pursuit of some ideological cause."

Corporations are legally not allowed to make an altruistic decision that threatens profitability. A corporation is mandated to peruse profit for it's shareholders. If it is found to be doing otherwise, the shareholders can sue and remove the board of directors and/or any corporate officer.

I'm not saying it couldn't happen, but I am saying getting an activist hedge fund that holds 15% of your shares to agree would probably be well near impossible.

Dinsdale247
FAIL

Re: I need educating

ANDROID IS A TRACKING SERVICE FROM GOOGLE - A US BASED COMPANY.

There are so many security vulnerabilities in Android, it will never ever ever be safe. The simple fact that Google Apps is on your phone will prevent you from ever being a private citizen again. Did you know that your phone is telling google about ALL the wifi access points you come into range of?

You DID know that they are tracking your every single movement to provide you with "more acurate information" and you can't actually turn that off because it's part of the PROPRIETARY Google Apps?

Moreover, 80% of phones can be rooted in a few minutes from instructions on the internet written by a teenager. If that's too hard for the NSA, look at the laundry list of vulnerabilities in the last patch. Android has been around for many years now and you can still be compromised by someone sending you a text that you don't even respond to!!!

More again, the baseband on all phones is intrinsically insecure. All drivers live in the kernel space and have full access to, well everything. Many, many of the drivers your phone relies on are proprietary and are only available as binary blobs and are written by companies that (surprise!) are based in the US.

More again, the radio in your phone usually has a small "operating system" running the chip. Once again, binary blobs from companies based in the US, or even better, China.

Until an entire open source hardware and software solution that is NOT based on GNU/Linux (or any other monolithic kernel) is developed, you will always be at the mercy of those that understand all the things you didn't even know were a problem.

Dinsdale247

Re: I need educating

"Which has meant nothing since the US compelled Switzerland (through threats of sanctions) to break their vaunted bank account anonymity."

The Cayman Islands started working with the US in the last 5 years as well. It's actually pressure on the banks, not the country that causes it. The US says: If you don't play nice we will put you on the no-no list and anyone within US influence is not allowed to do business with you.

It all inevitably comes down to money. Software companies are no different.

Dinsdale247

Re: Open source?

Ha ha ha! Awesome!

What will happen is FOSS projects that don't want back doors will have to move to hosting solutions outside US/Five Eyes control. NSA will inevitably set up honeypots with signatures in the encryption code for tracking. Anyone who really does navigate to a FOSS project will be red-flagged for further tracking. Torr is of limited usefulness when dealing with entities that can monitor ALL input and output from Torr hosts.

Welcome to the new world order.

Telegram chat app founder claims Feds offered backdoor bribe

Dinsdale247
Big Brother

Re: Secure Chats

"What you can't hide - and what spooky agencies should be using - is the metadata. What account you spoke to. When. For how long. How large a message. Who else did that speak to? Can you tie that to another person? That's what'll convict you if you can't provide a reasonable defence, and that's what they'll use to trace the networks (whether or not they bother or can get anything useful, that's subjective)."

https://www.theregister.co.uk/2016/01/27/nsa_loves_it_when_you_use_pgp/

FreeNAS releases version 11, so let us put the unpleasantness of failed V.10 behind us

Dinsdale247

Re: "WTF is a NAS doing hosting virtual machines?" Quite, just because you can...

Then you don't know what you're talking about. Virtualization allow userland processes to be entirely separated from the main kernel. Therefore, you can run Kodi, Samba, or anything else you like without the risk of it crashing the main kernel. Bhyve is a very lightweight hypervisor and is built specifically for the FreeBSD kernel, which makes it particularly efficient.

Maybe that doesn't make sense on an arm board or an old PC, but on the 6-core Xeon with 96GB of ram that I use with FreeNAS 8.3, it's a pretty good idea. I'd upgrade my rig, but it's been running unattended so long, I don't even know if I can find it...

So despite all the cash ploughed into big data, no one knows how to make it profitable

Dinsdale247

Theory, Meet Complexity

As a recovering business analyst I would say this isn't a problem with big data, it's a problem with complexity. Complex solutions to implement, complex links to other systems, complex cleansing/processing systems, complex concepts required to know how to use the data.

Anyone remember Enterprise Data Buses? That was a great idea until everyone realized how hard they were to implement and keep running.

Why a detachable cabin probably won’t save your life in a plane crash

Dinsdale247

Re: Really?

The extra weight to keep the cabin from disintegrating under force alone would make this totally impractical. What happens to the rest of the plane when the cabin is released?. The entire frame and wings would buckle and very likely end up tangled in with the parachutes. Likewise, the weight to keep the separate air-frame/cabin and wings strong would wind up being totally impractical. Plane structures work because the ENTIRE air frame supports the massive amounts of force that are applied to a plane during flight. The balancing act between weight and strength has been very carefully crafted over the years and this proposal pretends like that doesn't exist.

This is clearly manager thinking. It waves it's hand at very complex technical details that are inconvenient.

Firefox Quantum: BIG browser project, huh? I share your concern

Dinsdale247

Re: I don't know about lynx and w3m

And worst, none of the major browser makers have any real incentive to protect the user because they make revenue on the searching and ads. Where do you think Mozilla got all it's money?

Why Microsoft's Windows game plan makes us WannaCry

Dinsdale247

Lolz. The common OS you refer to is called Windows.

Dinsdale247

Until you have an app that's not compatible with systemd. Or requires a kernel feature that doesn't work as advertised anymore. Or has a driver that requires a specific kernel version. Or, or, or...

Oh, your app was compiled against GCC 3.x? Oh, I'm sorry, it won't run unless you rebuild your software from source on the new compiler or support two runtimes.

Oh, the application doesn't support the latest OpenSSL? No problem, I'll just tweak this and add that and oh, wait, I've now spent three developer months maintaining this application that will still only run on THIS instance of GNU/Linux so we need to build a custom image and...

BUT before you even got here you need developers that know what GCC and OpenSSL are and how to maintain the kernel with the correct patches. No problem, I'll just find some senior C++/Linux fellows around... There's lots of those and they should be pretty cheap to come by...

NO FREE LUNCHES

Dinsdale247

Re: Bovine Excrement!

Heartbleed anyone?

Dinsdale247

Sure thing. I dare you to stick that computer in front of a "normal" user and ask them to do their job. I don't care if you put Mate on it (which wouldn't run anyways), you are still going to have a computer that nobody but you can use.

Software requires support. That either comes from the vendor or comes from IT.

Windows = an OS that people can use and is easily supportable for non-technical people.

GNU/Linux = IT hand holding and unproductive users. Just try explaining mount to someone that isn't a developer.

There is no free lunch. Free operating systems just mean the IT department has to maintain the system. Want Linux support, you have to pay for that. Ubuntu and Redhat don't offer anywhere NEAR 15 year support.

Dinsdale247
FAIL

The Real Question

The real question is how much would it have cost to update the software/systems that require Windows XP and was it less than $200 per PC that used it?

Then, to see the real cost of this decision, you can add the lost opportunity cost of updating it to Windows 10 plus the cost of the malware fiasco and the cost of the new PCs that you will need to purchase (because you didn't upgrade to windows 10 for free and the PC isn't worth the $150 per license!).

And for those that would like to say "switch to linux" I would reply that the real costs of switching to Linux are far greater than the costs of the Windows license. I wouldn't want to be the IT guy sitting on the phone for hours explaining sudo and mount to people.

Dinsdale247

Foolish

Show me a GNU/Linux distro that provides 15+ years of long term support?

https://www.kernel.org/category/releases.html

Just because someone is running "Linux" doesn't mean they are able to leave systems unpatched for years and years and years and not suffer the consequences. Moreover, Linux upgrade paths can be an absolute nightmare that include custom kernel patches, custom driver software, new compilers/C libraries and incompatibility in the userland. It's not just as simple as "running Linux". Rolling releases are just as destructive.

Regardless of vendor or operating system, IF YOU DON'T PATCH YOUR SOFTWARE, YOU HAVE UNPATCHED SOFTWARE.

This is not the vendors issue. Microsoft has never promised unending OS support. Everyone was warned, everyone new what to expect. Everyone that ignored is suffering. Not an MS problem. Do you blame lung cancer on a government because someone smoked even though the government told them it was bad for them?

Michael Dell? More like Michael in-Dell-nial: No public cloud, no future

Dinsdale247

Too Big, Too Powerful

The basic issue for companies that provide IT and hardware is that new servers are so big and powerful that you can run most of a SMB needs on a handful of servers. The big boys have seen the writing: Open source software + powerful servers = no more money for them.

But Big Business *can* create a "cloud environment" and tell you that it's the best thing since sliced bread. Big companies can now extract the income they need on a subscription basis for a nice reliable cash flow and they don't have to worry about licensing or anything. Just provision a new instance and off they go. Those services are great for those who can't do IT themselves or don't want to do it themselves.

But Michael Dell sees that too. And he also sees that the next generation of IT infrastructure will come in a single box and provide the same cloud like services without the subscription. Hundreds of unique applications and sever instances on a single machine. Once the "converged infrastructure" becomes mature, expect to see a similar move OFF the cloud as the cost benefit suddenly tips the other way.

Michael Dell is one of the reasons the PC is a commodity now. I completely expect him to do the same thing for private clouds that he did for the PC. I think it's funny that El Reg would go so far to praise his vision and then think that he has suddenly run out of ideas. Dell now has all the pieces - including the hypervisor, networking hardware, deployment software and storage systems - to create something really powerful. Perhaps it is the author who is lacking vision?

Chap 'fixes' Microsoft's Windows 7 and 8 update block on new CPUs

Dinsdale247

Why are you B!tching?

- Apple pushes massive updates to all phones and computers ensuring your old hardware becomes useless

- Android Phones RARELY get any patches at all unless it's a flagship and even then...

- Google only supports two major versions of their own OS. Period.

- Linux kernel changes CONSTANTLY break drivers and board support packages. Try maintaining a GNU/Linux embedded system

Google's Deepmind NHS deal 'inexcusable', says academic paper

Dinsdale247

Re: We know Google does not view its users as its customers (because they are not)

If said patient has an Android phone that information is no longer anonymous.

Dinsdale247

Not only that, they are able to link data that seems un-related through massive predictive analysis engines. Why is that important? Because people with kidney problems are going to have special diets and other considerations that can be used to target advertisements. Because the data is "anonymitized" (I almost typed that without a sarcastic giggle) it just slips into the streams of data they are already collecting. Combine that information with age, race, location and sex and you have a very clear picture of what people are doing. Do you have air miles? Okay, now they also know your exact purchase patterns and can predict your needs to an alarming level of detail.

Dinsdale247

Re: Load of old toss

"Who has a product market demographic they need to aim at people with particular physical ailments, in a country where medical data *isn't* illegal to use like that?"

Insurance companies are one of the largest and most profitable scams... er... business in the world. They are drooling over this for two reasons:

1) Oh, we see you've had kidney issues in the past, your premium will now be $$$ higher per month

2) Oh, we see you've had kidney issues in the past, we can offer you a special competitive package over your current provider for $$$ - 0.5p, and we'll even throw in a free Android phone to track...er... contact you in case of emergencies.

NetBSD adds RPi Zero support with 7.1 release

Dinsdale247

The FreeBSD 12-Current image for RPi B works but not all drivers are compatible. There are a number of people on the FreeBSD-arm mailing list using it. Odriod-C/C2 is also being worked on with a slight uptick in progress in the last few weeks.

I suspect the state of those platforms in FreeBSD had some influence on the NetBSD teams decision to offer support for them.

US tech giants take brave immigration stand that has nothing to do with profit whatsoever

Dinsdale247

"... the sad truth is that the largest and most powerful companies in the world have decided that it is not in their best interests to upset the notoriously petty and thin-skinned Donald Trump, even when his actions go against their and their employees' moral and ethical values.

But hit em where it hurts – the wallet – and Big Tech will do everything it can... to carve out special exceptions for itself. "

I don't get it. That means they ARE acting like people... :P

Is it the beginning of the end for Visual Basic? Microsoft to focus on 'core scenarios'

Dinsdale247

I liked VB

VB6 was a massive improvement and a fantastic platform for Rapid Application Development. I watched people kill themselves in C++ COM programming when I could create an app in a few days and re-use COM classes at will. DCOM components could be written in hours in VB6.

I have worked for a few companys now and have switched back and forth between C# and VB.Net languages regularly. The "too much typing" comment means you'r not using the IDE to it's full potential.

Most people I know switched to C# because it made them feel like they were using a big boy language. I found so little difference between the two I often thought that one or the other should be fazed out. I am however surprised they never replaced "VB" in Office macros with VB.net.

Resistence is futile: HPE must face Oracle over Solaris IP

Dinsdale247

It's done all the time. Oracle sells support for SAP, SAP sells support for JD Edwards (now owned by Oracle) etc, etc, etc. There is no money in actually selling the software. All the profits are in consulting and support. It's why IBM jetisoned everything except it's consulting firm. IBM "Management" had the wrong headed opinion that they don't need a loss-leader hardware business to sell consulting services (and they are finding out how wrong they were).

Stallman's Free Software Foundation says we need a free phone OS

Dinsdale247

Android is a non-starter

Nothing will change while Google is steering the phone OS ship. Google has been able to lock out all other Phone OS comers because:

1) They use a non-standard C library called bionic. It's written specifically with system calls that only work properly with the Linux Kernel, which had to be patched for Android. Now, all drivers are proprietary and written specifically for Bionic. This naturally pushes all ARM based systems towards Android because hardware vendors suck at software. One of the SailfishOS founders wrote a library called libhybris that wraps/translates bionic calls into calls that GNU libc understand so a standard Linux kernel can be used. This is how the KDE Plasma Mobile team can run on the Nexus 5 and Oneplus One.

2) They use a non-standard Java runtime called Davlik that is incorporated directly into the Kernel. While Blackberry and Nokia proved that it could be ported (there also used to be something called Alien Davlik), it's not straightforward. To counter this threat, Google is replacing it with the Android Runtime (ART), which is proprietary and closed. All items are pre-compiled to ONLY work with Google ART, so they can't be re-used on other platforms, and you will no-longer be able to run apps from other stores on Google Android.

3) Google Apps - Google Apps now incorporates all the 'good stuff' from Android. GPS systems, Google integration, Google Assistant, App Store, browser, all of it. It is proprietary and closed and is a binary installation on all platforms. Stock Cyanogen (or whatever it's called now) is nothing but a kernel, userland and UI shell. Sure you can make phone calls, but not much else.

What does this mean? The problem is not consumers or vendors or adoption. The problem is Google manipulating FOSS for it's own gains.

What is the Answer? Start a NEW OS that does not use Android or the Linux kernel and keep it free from corporate money. Everybody seems to have forgotten that both GNU/Linux and Android/Linux were not the popular choice a few years ago but people didn't just stop contributing because it wasn't popular. Who cares about consumer adoption? Build it and they will come.

The rise, fall, and rise (again) of Microsoft's killer People feature

Dinsdale247

Only thing better than BB Hub

The people feature/feed aggregation in Windows 7.5 was the only thing that I have used that was better than BB Hub to organize communications with people. It fell apart in Windows phone 8. I loved Windows Phone. RIP Windows Phone, RIP. <sob sob> :(

IT team sent dirt file to Police as they all bailed from abusive workplace

Dinsdale247

Fiction

Fictional revenge porn for IT geeks. It was a fun read.

Smartphones crashed, Samsung burned: Mobile in 2016

Dinsdale247

Missed some important happenings...

Um, SailfishOS crashed out and was resurrected by Mr. Putin. KDE launched a brand new GNU/Linux based OS. And my Blackberry Passport Silver is STILL an indestructible tank and the best phone ever produced (IMNSHO). Long Live QNX/qt!

Anyway, my wife and kids are all getting i-things for Christmas this year so I've got a big glass of kool-aid ready for my next phone purchase...

Moscow says writing infrastructure attack code is a thought crime

Dinsdale247

hmmm...

In a country known for judicial graft, those in IT should be weary of promotions lest they find themselves in jail on charges of corrupting infrastructure. "Oh, Sasha got the promotion? We'll see about that..."

Raspberry Pi Foundation releases operating system for PCs, Macs

Dinsdale247

Hilarious

GNU/Linux guys are so funny: "Look, I changed an option in Debian, I've made a new distro!"

Debian/Jessie using Mate runs great on 10 year old laptops with Celeron processors. We use two of them here at work for everything except actually building executables.

Who killed Pebble? Easy: The vulture capitalists

Dinsdale247

The way of the world

It's not just Tech. This is the way business is done now. Steel companies, manufacturers, retail chains, everything. The thieves are in control. Buy it cheap, slap on a coat of paint or chop it up for parts. Flip it for twice you paid and move on.

At least once the big companies have made such a mess of it, the rest of us can start profiting on their lack of value. Hopefully people will get smart and turn back to local businesses.

Big Mickey Dell is wrong: Cloud ain't going to eat all of IT

Dinsdale247

Disagree... sort of

The age old problem of core competency in a business vs. out sourcing. Intel has started ramping up the number of cores they can provide for "on-site cloud" per hardware unit which will drive the cost down. If software companies are smart, they'll lower their per instance costs, but MS and Oracle want you in their clouds now too. The truth is many companies shouldn't be doing their own IT because they suck at it.

Google drops a zero-day on Microsoft: Web giant goes public with bug exploited by hackers

Dinsdale247

Did We Mention Chrome is Unaffected?

I'm shocked, *shocked* that a company like Google would throw a zero day hand grenade and have a patch for their browser ready. It must have been for the good of the people because Big Brother... I mean Google, is always working in the interest of the people.

Obey Google, web-masters, or it will say you can't be trusted

Dinsdale247

Moms going to love this

Excellent, one more reason for us to ignore certificate warnings. So now when my mothers favorite sewing site has certificate errors that she learns to ignore, it will make her so much safer when "the bank" that is asking her to verify her user information also has certificate errors.

All those in favour of forking the Internet, raise your hands.

App proves Rowhammer can be exploited to root Android phones – and there's little Google can do to fully kill it

Dinsdale247

Re: ASLR

ASLR is not worth the electrons it was written in:

http://www.cs.ucr.edu/~nael/pubs/micro16.pdf

Conversely, it doesn't help that this is The Linux Kernel Maintainer's attitude towards kernel level security:

http://www.washingtonpost.com/sf/business/2015/11/05/net-of-insecurity-the-kernel-of-the-argument/

Just sayin.

Page: