Posts by Doctor Syntax

Re: Half solved, you mean

"Don't forget the several billion you'd have to spend retraining everyone"

What do you mean retraining?

Re: The Trust I work for didn't fail...

"The assessor didn't actually understand what InfoSec were telling them."

Been there! The assessor had been drafted in from perimeter security.

Re: How Long?

"Would it not be simpler (and cheaper) to standardise all IT equipment across all NHS trusts directly from Whitehall? Think how Maersk dealt with NotPetya, by replacing all servers and desktops/laptops."

Either (a) Maersk had a very small variety of tasks for their IT estate or (b) they didn't update anything with a very specialised control function.

If you look at the NHS you'll find a lot of machines that could be updated to a current version of W10 and a lot running lab and other diagnostic kit that depend on specific drivers that either aren't going to be available for W10 or possibly not for the H/W on which W10 will run. Identifying those that couldn't be handled like that will not be a trivial project.

But take it a step further. If a lot of PCs are simply running office suites, email and browser why not introduce extra resilience? A monoculture of Windows PCs of any single version could be taken out by an exploit of some zero-day*. So for such tasks add a mixture of Mac, Linux and xBSD, say 25% of each, to minimise that risk. And Linux and BSD for servers.

* This also applies to Maersk of course. They may be protected against the last variant of NotPetya. But what about the next?

"Making what is clearly covered by existing statutes for fraud, perverting the course of justice or other serious criminal offences into something you can get away with using a good lawyer."

I don't see any rush to bring CA to book for deleting data, nor is it clear what basis there may have been under existing law for doing so if the only thing affected is an ICO investigation.

Nor do I see the ICO's remit overlapping much if at all with what's covered by existing law (statue and common) so why should adding provision for prosecuting destruction of evidence for investigations within that remit affect existing criminal provisions.

Re: Work ethic

Then we have to craft an ever-fscking "vision" statement in yet another demented "all-hands" group grope.

Insist on working some - no, make that all - your gripes into the "vision". Even if they're off-topic. Eventually I found manglement got a good idea about what it was best to leave me out of.

Re: Not just immigrants

"That's because UK administration is still stuck into the Doomsday Book era. In other countries were the X century ended many years ago, you need a single ID document."

I assume that you're not from these parts or are very young because a few years back when a previous Home Sec wanted to introduce ID cards it very quickly became clear that this was politically unpopular. Even the disk drives used for the pilot scheme had to be destroyed.

We don't like such things. It smacks too much of population control.

By the way, it's the Domesday Book. Same root as "domestic".

Re: Fuckety bye...

"the poor schmuck in charge of the Home Office?"

"Poor schmuck" seems a reasonable description of the fate of anyone appointed Home Sec but Home Secs are in the charge of the Home Office, not in charge of it.

Re: Diversity in action ...

"At the core is the previous Home Secretary policy, so this will change nothing."

It's not previous Home Secretary policy. It's standard Home Office policy. Home Secs come and go, the Home Office just goes on.

Re: Sajids little helpers

"He did used to run a bank so SHOULD be OK"

There's evidence that that's not a much of a guarantee of competence.

Re: Either a liar or incompent

"There is no scenario where such an individual is suitable for such a position."

The HO would disagree. Someone as deeply ignorant as that could repeat anything they told her without showing any signs of disbelief because she didn't have the knowledge that would have caused her to disbelieve.

Re: What's the IT Angle?

"The IT angle is that there is no effing IT in place that would have avoided this whole fiasco!"

Nor any possibility of one after the data's been destroyed.

Re: "In the world of technology policy, Rudd will be remembered"

"In which case, all of the Remaniacs who would ordinarily be highly critical of the moronic Rudd will suddenly declare her a saint."

Personally I'd have liked to have had David Davis replace Rudd as Home Sec and then Rudd appointed to take his place..

Re: Hitting those notorious targets of illegal immigrants

" letting the ... ladies of negotiable value stay."

Maybe that's the value of negotiation.

Re: "Assuming May lasts that long and we don't have another General Election first."

"She's got the support of that nice Mrs Foster of the DUP, and her other 9 stout hearted Ulstermen."

For as long as it lasts. She's made contradictory promises on the Irish border question. At some point she's going to have to resolve that one way or another. If the DUP don't like the choice she has to make then the No 10 gardeners had better start planting fruit bushes so Corbyn will have something to make jam with.

Re: Diversity in action ...

"They usually last about a year regardless of whether they are from the Blue, Red or Yellow parties."

The HO manages to shed those it can't house-train. Those who are house-trained are usually suspected by the PM. In Rudd's case the last didn't apply as the PM is also a house-trained Home Sec.

Re: It's always fun when organizations pretend that the law doesn't apply to them

"They just decided waste the majority of that time doing nothing"

I don't think they were doing nothing. I think they were actively pretending it didn't exist.

Re: You simply do not understand how EU stuff works

"Guys please come down to us from your EU Olympus and explain how to implement what you've invented."

It's very simple. You do one of two things. One is you look at the rights it says data subjects should have and give the subjects those. The alternative is that you pay the fines.

If you weren't abusing the data subjects in the past option one isn't that onerous. If you find it difficult it says a lot more about the operation you run than it does about the EU being out of touch.

"just exactly how do you use the information to check on anything?"

Big hint: you can whois IP addresses as well as domains.

Re: EU-only root servers

"While that allows EU citizens to look up EU addresses, .eu would cease to exist for the rest of the world"

Who said anything about EU-only root servers? The rest of the world would be free to use them. And why would they set themselves up as just for EU domains? If the rest of the world decided to treat a non-US server as the definitive global root then either the US follows suit or .com etc, as you put it, ceases to exist for the rest of the world.

Re: "Europe is scarcely at the forefront of anything any more,"

"Jet Engine?"

Cough. Frank Whittle. Cough.

Re: Write your damned MP people

"So please write your MP, there is a website and everything that makes it easy, and tell them that you have along memory, so come election time"

I had this conversation with my MP before the last election. He's no longer my MP.

Re: We are currently experiencing large volumes of customers

"unusually high call volumes"

The fact that they thought it worth preparing a recording of that phrase tells you all you need to know about their call centre planning.

Re: We are currently experiencing large volumes of customers

"The pensioners seemed happy enough"

Huh? This is one who wouldn't have been.

Re: Sigh .....

"it wasnt sold off to multiple parties it was just handed everything and left to get on with it"

Unlike the railways where the train operating companies had to run over someone else's rails.