Posts by Doctor Syntax

Re: Gonna ask what may be a stoopid question here...

"CE-marked"

China Export?

Re: Gonna ask what may be a stoopid question here...

"wiping out DAB signals"

So no harm done.

"More likely, people will just repurpose old computers to be routers and WiFi access points instead of buying commercial gear."

Forget repurposing the computer to be an access point. What about just using it as a computer if it is WiFi capable? Isn't this enough to push it into scope of the directive?

Re: What's the problem....

"avoid the low-level consumer s**t"

Why should it be acceptable to sell consumers shit products?

Re: What's the problem....

"I can't see the EU successfully mandating that every member must have a test lab that follows centrally-defined standards, nor would they have a hope of insisting that everything EU-wide had to be tested by, say, TUV or BSI."

It doesn't need to but it could mandate testing to an approved standard by an accredited lab. The accredited lab doesn't need to be in the member state where the device is made or sold, just that it meets the requirements for accreditation. Neither does the standard need to be specifically BSI, TUV, UL or anything else, just that it be appropriate for the device.

Re: Error control in Making Tax Difficult ???

There's another failure of logic.

"HMRC have underestimated the admin burden and costs to businesses for MTD"

It's the essence of any estimation that the estimator believes it to be the best estimate possible. If it weren't they'd correct it. It represents the entire relevant knowledge of the estimator. If that knowledge is wrong the estimator has no means of knowing that. So if they have underestimated they will have no means of knowing that. Therefore the estimator is the last person on Earth competent to decide whether or not they have underestimated. The Dunning-Kruger effect may well prevent them discovering any error.

"it's"

Aaaargh!

Re: Ah...those naughty Iranians...how dare they!

"Of course they have to have intelligence agencies to defend themselves against tyrannies like Hitler's Germany or Stalin's Russia."

Your clock appears to be several decades slow.

Re: Sensitive Data

"r/woosh?"

Apparently not.

"I disagree - Huawei are a major threat."

This wasn't a Chinese company, it was a US one.

The US needs to get it's own house in order before it starts on others. Crude attempts to deflect attention elsewhere don't cut it.

Re: And, not likely to change...

"unless and until there are significant penalties for such laxity"

There are but they only come into play after the event.

There's need for pro-active inspection. Let's say a scoring system for the types of PII held and a need for audit-requiring certification where the total score over all the data subjects exceeds some minimum. If a business doesn't want to get into certification and the consequent regulation then it can dial down what PII it holds.

Yes, I can imagine the complaints about the cost of regulation but the fact is that far too many have failed to put procedures in place without regulation. It's a requirement that businesses have brought on themselves. I've written here many times that experience is a dear teacher but there are those that will learn by no other. If it was simply the likes of Sony and Citrix having their internal documents raided it wouldn't matter but when it's the likes of Equifax and Verification.io spilling millions of customer or 3rd party details it's too late for such businesses to learn by experience.

"To be fair, it's also harder for a human driver to see a dark skinned pedestrian at night. I'm trying not to be racist here, but I don't see any way around that."

Exactly. Adding the capability for passive IR would be an advantage for autonomous vehicles over a human driver.

Re: You get what you ask for

"Any experience developer knows that exceeding requirements isn't really as good an idea as it seems."

They should also know that taking on a job without adequate requirements also isn't a good idea.

Re: Requirements

"OK, so the study proves the blindingly obvious - if you haven't written down good requirements then you're not necessarily going to get back what you really wanted."

OTOH if you're providing a professional freelance service and you're given a clearly deficient spec then you should raise the issue with the client.

It's true someone who hires in a specialist may be doing so simply because they haven't the capacity to take on the extra work-load. But you can't be sure of that. They may be hiring a specialist because they don't know what they need. Yes, we all know that in that case they should start by hiring someone who can advise them but they don't know that either. It's up to whoever they took on to tell them that the spec isn't appropriate to the job and if the client insists on it being done badly don't take it on.

"Developers on a system like this don't have to, and shouldn't, be developing a cryptographic algorithm at the level of the actual arithmetic."

I doubt they were expected to. OTOH they should have known that they should be using an existing one and should have done so.

Re: Unintended Consequences?

"But one driver for tech innovation is the prospect of being bought out by one of the Usual Suspects."

And quite possibly to kill it. That also dampens innovation.

Re: Reverse Penny-Pinching

"I shared it with ... one Mr N Edmonds of Crinkly Bottom."

Serves you right for being a cheapskate.

Re: Odd version of "cost cutting"

"Second, it was good practice from an environmental point of view (and depending upon the company, this may have been the primary reason)."

If environmental considerations were paramount the job would either have been done remotely or subcontracted to someone local.

Re: Travelling to client sites

"I never figured this out from people who do sales presentations to my workplace. You can literally say what you like in a face-to-face sales meeting, even without the IT guy present, and everybody will believe it."

Let them do the presentation. But it needs to be followed up by a written statement. If it isn't in the written statement it doesn't exist. And be careful that that also applies to stuff they shouldn't do (Microsoft privacy statement - so long, so reasonable looking until you realise that while it might be reasonable for them to keep records of your transactions with them it doesn't actually say they limit their records of transactions to just those).

Have had this happen with a finance software that claimed to pull all the customer info from our original system."

I had a salesman at a business I worked for promise that "our" product would be a drop-in replacement for their existing system. It was a major reason for my quitting. The product was to be based on work done for another customer and I'd spent some time looking at the new customer's system. Although it did the same job the data was structured very differently. No way could it be made to look anything like. There was going to be a long haul in getting separating ithe spaghetti out into discrete modules (any user in the existing customer could see and amend any record irrespective of whether it was part of their job or not). I didn't fancy managing customer expectations to be part of my job as developer.

Re: Travelling to client sites

All because the customer has this "if you want to deal with us, you must have this meeting face-face" rule.

Obligatory Dilberts: https://dilbert.com/strip/1996-06-05 and the one after it.

Re: Bah!

"So then. Why don't we say I rode the train up and drove back and you can send the train fare for the ticket that got lost with an easy mind?"

Alternative version: "Why don't you assume I'm still there and you can pay for another ticket for me to get back?"

"was assigned a task to push a button to test an ISDN backup"

What would happen if the test failed? I'd guess part of the expectation was that you'd be on site to fix the problem/take the flack if it did. What would have been the consequence if it had failed and the trip to fix it only started then?

Re: GDPR down the throat

"More likely that they don't get enough revenue from EU people to make it worth the potential risk of a fine, even if they believe they are doing everything right."

Well, as the article shows, the light's even starting to dawn on your Federal government and some states are ahead of the curve. Such sites need to start thinking about how much revenue they're prepared to cut off as more and more governments wake up to the fact that abusing privacy and lax security aren't desirable.

There's also a network effect. It depends on the sort of site but even if it's not the sort that has user participation the site that allows traffic from the EU is likely to get talked about in other forums than one that doesn't. Positive feedback will then draw more and more traffic away from the refusenik until it gets regarded as a backwater.

I'm sure they'll tell you they are the top.

Re: Stop making sense!

"Yeah, I stopped short of that one for fear of causing more panic."

A lot of the NIMBYism in built-up areas is along the lines of "think of the children", especially when there's a school nearby. Those are the children they're buying phones for in deepest ignorance of the inverse square law and the fact that the phone adapts its power output to the distance from the base station. I suppose the problem is getting past the panic to the point where an explanation is listened to.

"But why would you? A wind farm is hardly likely to have a lot of people in it."

It's not so much the people in it. These days it seems to be getting difficult to find a spot in rural England without line of sight to a wind turbine.

"There are also plenty of upland areas where people only ever traverse a few fairly narrow paths, there being next to no reason to go tramping about on trackless upland moorland."

However, if you cover the paths and the moorland roads you'd find it difficult not to cover most, if not all, the surrounding moorland. The moorland is likely easier to cover than some odd corners of the adjacent valleys.