Posts by Doctor Syntax

Re: "E-Mail is a TEXT medium"

"Then what happens when you're told you just lost a big deal because of your paranoia"

And what happens to you when your lack of paranoia has let in malware that's closed down your IT network for a few days or allowed access that's enabled a few million of your favoured currency units to be looted?

Re: "E-Mail is a TEXT medium"

"Email was a text medium. Since then it has grown richer."

Richer for marketing spammers and criminals. I have no wish to indulge such low-lives.

Re: Err,

the flow.

breaks up

Top-posting

Re: remote CSS?

"Outlook and Thunderbird? Both will load remote content if you let them."

Simple solution: don't. And don't use webmail either.

Re: Hmmmm

"Crime recording standards generally only allow crimes to be reported by the victim or an officer."

Clearly things have changed. Back in my day I took part in quite a few murder investigations and I don't think all the victims lived long enough to dial 999 or was stumbled over by an officer who nobody else could call because they weren't the victim.

Re: Meet Mr Three Point Five Millimetre

Completely with you except for the "stream of conciousness" bit. "Purest" wouldn't have been an adjective I'd ever have applied.

Re: Nobody actually read what they said in the blog post...

@Timmy B

It depends on whether your use of the product depends on an ongoing arrangement with the vendor. If it doesn't then you don't need to worry. If it does then you should realise that pretty well anything could go wrong. Even the most stringent T&Cs aren't proof against the vendor going out of business. If it's simply some item you can live without - a sound system for instance - you could just be prepared to write off your investment in hardware. If it's something that's looking after your personal media collection then you need backups or, again be prepared to write it off. But if it's something your livelihood or business depends on then you do need to think seriously about what could happen if things go wrong.

Risk involves both the probabilities and what you stand to lose.

Re: "Couldn't see the point of getting a Sonos. "

Having (in theory) a "plug n play" device to do this is meant to be sooo much simple

"Meant to be" is the critical bit here. Until the vendor's updates render it increasingly tricky.

Re: Nobody actually read what they said in the blog post...

I don't know how much we can trust that but the "never will" part gives me hope.

It makes you hope that the management and ownership will never change?

Re: Choose whether hackers get your data or the vendors

"The majority of hardware and software has security flaws that need patching from time to time."

Mark one piece of wire seems to connect speakers without needing software updates.

Re: Holocene Extinction coated with nano-diamonds !

"Care to describe the physics involved when nature produces a bowling ball sized hail stone?"

A lot of turbulence.

Re: So, in other words..

"I'm shocked, shocked, I tell you by such an astonishing amount of sanity, in politics no less."

Is it too much to hope that this will bring the whole saga to an end? Probably.

Re: Sounds like another management idea - "They are all just IT guys, right?"

"IT Security has three balanced priorities: Confidentiality, Integrity of data, and Availability.

IT and developers and CIO's also have three priorities: Availability, Availability and Availability."

Presumably you've never been a DBA. If you had you should have been aware that integrity of data was your first priority.

You're spot-on about bonus level managers, however.

Re: deregulation

"Would this be just as effective?"

Let's see.

Marketing department decides it's perfectly OK to spam customers irrespective of whether they wanted to be spammed or not. Hands over customer list to "digital marketing company" AKA professional spammer. Together they concoct email which is infested with links except web site managers refuse to host them so the spammer does that as well. Ends up training customers to be phished with customer list in hands of spammer to be re-used for other clients, sold on or both. Do we expect marketing departments to have security functions to make sure this is done properly?

"not my job that one guv'nor!"

Also expressed as "when it's everybody's job it's nobody's job".

"this is the adult world where if someone has potentially committed a crime they need to be investigated."

There's still the question of why, if there was a case to be investigated, it wasn't investigated in the UK where it would appear that the alleged act would have been committed.

"the fact that the crime was committed in the US (allegedly)."

Only in the sense of the US's extraterritorial extension of its criminal justice system. If he lived and worked in the UK it's likely that if he wrote Kronos (& see my response to Gumby) then he would have done so in the UK. However, the CPS would have required something like a proper prima facie case that they could present to a committal hearing. So far we've heard of nothing like that in this instance other than that he wrote an explanation of a technique which wasn't original, posted the code on Github and then, maybe naively, suggested that it had been the source of similar code in Kronos.

TL;DR In the UK it'd have been laughed out of court had it got there.

Re: @The idiot... you really don't get it...

"The real question is why does the FBI think this is their guy?"

They need a guy so anyone will do?

Oh, look, here's a bit of code he posted publicly that he then says was incorporated in Kronos. That'll do.

Incidentally the author of this analysis https://blog.malwarebytes.com/cybercrime/2017/08/inside-kronos-malware/ suggests that the actual code has a longer pedigree than Hutchins publication and that the implementation is more sophisticated concluding "The level of precision lead us to the hypothesis, that Kronos is the work of a mature developer, rather than an experimenting youngster."

"Genuine question - In his line of work is he likely to have anything incriminating he could use as leverage?"

Well, for one thing he could give evidence about the dangers of the malware the USG managed to lose.

Re: Or maybe they still couldn't make a case against him even with Blairs extradition law

"Be interesting to see if he trusts GCHQ ever again."

Or whether anyone else does.

"waiting for the fab new iPhone expected in September! I can't wait!"

So you're buying something else instead?

Re: re: the sky is blue etc

"Who will these people blame for their woes after 2019?"

a) The negotiators because they didn't do a good enough job

b) The EU because old habits die hard

Re: Shouting managers

"Then you put in writing why it can't be done and/or your misgivings about why it is a supremely bad idea."

It still leaves you as the man in the middle between sales and customer in a situation which could potentially end up in court. It's still not your job to manage customers' expectations.

In fact, in the case I was thinking of someone must have done that because the product, although ricocheting between a number of software firms seemed to have been successful in its niche market. I had a couple of short testing gigs much later when a client was migrating to bigger and bigger hardware. Because the name had changed I didn't recognising it when the first of these was proposed but hanging around in the front office waiting to meet the client I could see a use screen and thought that it was laid out just the way I'd have done it. Not surprising as I had. I also found that one screen still had place-holder text in the menu produced by my home-made code generator and left unchanged for 11 years.

Re: I am fairly sure

"You could have read the article and realised that he was using the UNIX 'mail' application on a VT (aka dumb terminal) - likely a text only one... Some apps *did* run on VTs and offer the +/- idiom (ISTR trn did that) 'mail' most definitely did not."

The article isn't explicit about this.

All we're told is:

Server: Unstated on Linux -> Exchange on unstated (but a Windows server of some vintage)

Client: Unstated -> Outlook

Desktop: No information

In fact, at the technical level we're not even told half the story. If this is indicative of Newt's communication skills it's no wonder there were problems.

Re: Client support, we've heard about it

"I'll be a damn sight more respectful and will INSIST on learning the tools I need to use rather than just expecting someone else to do it for me."

Again, it needs to be pointed out that the user had learned the tools he needed. He never asked for them to be changed but someone did just that.

Remember that IT exists to help the business as a whole operate. As an IT staffer you can't exist without the operational people* because they earn the money to pay your salary. They, on the other hand, may take the view that they can do without you, especially if you don't appear helpful; they can outsource your job.

*Yes, I know IT can be part of the delivery system. Been there, done that. It was an aspect of being part of the business as a whole.

"Honestly- I reckon these users have to be related to one another!"

Probably not but they do train each other, especially if IT doesn't make the effort to do so themselves.

I can't imagine why they think it's a good idea but it seems to have been something that's happened for years so IT really should be aware of it and try to break the cycle by emphasising that what goes into Deleted can't be assured of coming out again.