Posts by Doctor Syntax

Re: Bullshit

Only after all that it's too late will companies make a decision. More likely result.

Re: The USA... Well specifically Trump

Could you explain in more detail how everything is going to be taken away (by whom) from the OP (I take it you can explain how you're aware of his circumstances so that that could happen) and how this is dependent on how the economy (the economy of what) works.

Otherwise we just have to treat your comment as a collection of loosely associated words that don't make sense.

Oh, look, an A/C trying to point to something he said earlier.

Re: Moving away from the hyperscalers is not straightforward

"Isn't the point of the cloud that it's totally transparent and so should be easy to move?"

Of course it is. That's what the salesman said so it must be true.

Re: "I think this is a realistic fear nowadays"

"Everything is being taken from ordinary people little by little each year."

Tell ordinary people in the Ukraine that things are only being taken "little by little".

EU & UK don't want to continue war with Russia. They have a war on their doorstep which they don't want, didn't start but presents a real threat to their existence. "Wanting" doesn't come into it. They have no choice. They have to respond. The US has a long and ignominious history of ignoring of such threats until the threat reaches them; they tend to think WWI started in 1917 & WWII in 1941.

Take your head out of the sand, your arse or wherever else it's buried.

Re: "I think this is a realistic fear nowadays"

"You keep company money in someone else's bank"

There have been strict rules for a very long time about bankers not helping themselves to your cash and on the whole banks have a long record in looking after money. In the case of individual investors there's further backing in the form of compensation rules. Even so, if any European country were keeping its money solely in a US-controlled bank I'd expect them to be looking at moving it out.

The equivalent doesn't apply to keeping information in somebody else's computer. Rules are recent and not yet sufficiently well enforced where they exist (GDPR). On the contrary there are rules enabling governments to force the owner of the computer to break any agreements as to confidentiality.

Information and money work differently. Either the money is in your bank or it it not. Although information is spoken of as stolen it usually isn't - it's copied or illegally accessed but still there with no absence visible to the legitimate owner so that "theft" is not readily noticeable.

Going back to banking, there is one aspect which should be looked at for risks arising from actions of the USG: card transactions. To what extent could these be frozen at whim, disrupting the RotW's day-to-day retail transactions?

Re: "the Trump effect"...

In this case all he's done is raise the visibility of the risky nature of the existing situation so that even some boards and governments have noticed it. If things get worse they might even start to do something.

Re: Just do it!

"The migration away from US services should have started when the US Cloud Act was passed."

Given the prior existence of national security letters and all the rest of it that dependence should never have existed. GDPR should have made it illegal and all the fig-leaves that were constructed to allow it to continue despite GDPR were an obvious fail at the time. All the CLOUD Act did was give Microsoft an excuse when they were in a legal bind.

None of those links even mentions the CLOUD act let alone provide an explanation of why it wouldn't apply.

I suppose it would be possible for a US company to come to a franchise model where the company provides the S/W and IP to a franchisee wholly owned and managed by nationals of the territory to which sovereign services are to be provided with the contract signed in and subject only to the laws of that territory and specifying strict hands-off by the franchisor. That would enable them to set up a Google, AWS or Microsoft-branded sovereign cloud.

It would also be possible, I suppose, for a company with experience setting up a generic cloud service to provide consultancy, initial or on-going, to a locally owned and operated sovereign cloud.

Even then, the local operators would have to have some means of verifying S/W from the provider.

What I do not see is how local day-to-day operation and even part ownership of a US corporation's operation is going to be able to prevent against a demand by the USG with its notions of extra-territorial legislation.

Re: Hmmm

Certainly anything written non-portably for Windows is going to have to be rewritten to run anywhere else. That's a fact of life i moving platforms. It's a very long time since I wrote anything for Windows but my experience over a few years was that it was just a perverse system to write for. In reality it might be easier than indicated here* to move stuff based on DotNet over to Linux where is is supported with official Microsoft implementations.

OTOH Pinta, which is based on DotNet, is distinctly crashy here. Admittedly I'm asking it to handle a really large map with multiple layers but Gimp doesn't mind the same material (I use both - some operations are easier on Pinta, others on Gimp, at least for a non-graphics person who's officially been declared by his wife to be "not artistic").

* Note that this isn't really about porting S/W, it's non-Microsoft cloud vendors building a case against Microsoft about pricing differentials so Rice-Davies applies. AIUI Linux is actually a major client OS on Azure.

Word of mouth - best advertising medium of all.

Spending money on good customer services and support staff is likely to do more good than spending it in advertising. It retains existing customers and they will bring in the new ones.

I thought he laid pavements.

Re: Trump administration should have...

Define successful. What you mean is that he left creditors and/or the taxpayer in the lurch. He might have counted that a success or an intent. But it's certainly not a good trait for a successful head of government.

Re: Krasnov

Attempts at combining logical, literal and ad hominem argument don't work well.

Re: Krasnov

"Either a system is democratic in intent and outcome, or it's not "

WHo gets to decide that? You?

Re: Krasnov

"Either a system is democratic in intent and outcome, or it's not."

Let's see:

Direct vote by all citizens on every issue.

First past the post voting for representatives

Proportional representation of various arrangements

The same population at any given type might have different outcomes from the various systems. All are democratic in intent but does this mean that only one - or none - are democratic if they don't produce the saem outcome? Who decides if the outcome was democratic? You? The winners? The losers? Winners and losers might disagree so tho then decides whether it was a democratic outcome?

Direct vote doesn't, of course, scale well so we might have to modify it for anything larger than a city state by combining it with some other form.

Different parts of the polity may vote in different ways. If one voted much differently to the rest but are nevertheless bound by the decisions of the rest is the outcome democratic? Should the exceptional area be spun out into a completely separate polity? Would various levels of local or devolved government be a more democratic arrangement - oops, we can't have "more democratic" can we if it either is or isn't democratic.

Seemed simple when you wrote it, but welcome to reality.

He's expecting a deal. But probably recognises a master land more experienced kleptocrat when he sees one and is prepared to keep in with nim to learn.

Re: How long will the appeasement of Trump and his supporters continue?

What the world needs is an "America Last" program

AFAICS it's already getting it, organised (pauses --- possibly not best word) by Trump himself.

Re: Examine the goddamm headers!

The Foreign Affairs also have a limited circulation.

On a more serious note, the people who are going to click on such links aren't going to check the headers.

Re: Just wine?

The victims are cheesed off.

Re: Ported

A full-bodied red but the bitter after-taste makes it unacceptable.

I think it's the good chaps rule in operation. If, for instance, some good chaps running a bank have a bit of a misfortune and have to pay out a few million $CURRENCY to get it sorted out that's no reason why a good chap in government would want to see them having to go to prison, not when it's been sorted so easily.

What's more a good chap in government has to look at the bigger picture. For instance in 5 years' time he might be in banking himself and it would be a rum do if he had a bit of misfortune and couldn't get it sorted without his old legislation sending him to prison. A good chap wouldn't want to see that sort of thing happening, would he?

Re: What people are willing to pay to avoid ...

We're dealing here at a level of INSERTs, DELETEs, UPDATEs and COMMITs or ROLLBACKs on the actual data of the commercial transaction as it's being processed. If the order for 3 pairs of socks get s encrypted to 287 in the course of the transaction the user might notice and if key fields get encrypted to different values in the tables that they joins there's liable to be an error thrown PDQ as the indexes become corrupted. OTOH there might be an argument that some product names at Ikea and vendors names on Amazon have already been.

The objective, really would be to keep the database sufficiently isolated from anywhere where a marketroid might click on a phishing email, a dodgy but of javascript downloaded onto a server on the fly or whatever. I get the impression that we have businesses set up with networks of machines with storage shared at file system level so that malware introduced through one is readily written to another if there's an escalation of privilege. That becomes a lot harder if the only traffic to some node is through a single protocol that doesn't deal with file systems. On reflection I suppose it would be possible, given an escalation of privilege to introduce a malware stored procedure but even then change control would help - something like the DBA granting and then dropping the required privilege required to upload SPs. Basically you connect the server to the outside world through a very narrow (in functionality) terms.

I suppose as a sometime DBA I take a paranoid approach but the data which represents the real business needs to be separated from all the wielders of spreadsheets and powerpoint presenters.

Right now I'm chasing a UK financial institution as to why I've been sent a click to confirm email to an address that should be part of my customer ID when the email wasn't intended for me and, of course, only a small number of customers were affected. Clearly that information hasn't been kept where it should as it should.

Re: What people are willing to pay to avoid ...

"However, they aren't going to work so well for online businesses because all the transactions between the last backup and its time of reload will have vanished into cyberspace."

What sort of online business runs on an RDBMS that doesn't use transaction backups?

Unfortunately I suppose the answer is an ordinary one.

Let's think of what seems an overly old-fashioned concept. A physical server that runs nothing but a basic OS and the RDBMS service. it has a network connection on which only the RDBMS service port is open. It is controlled solely by the console - either a directly connected monitor and keyboard or a serial terminal plugged into tty0 and located next to it. It has its own directly attached media drives for backup and for installing upgrades over trusted media. It's not somebody else's computer.

Before the mutterings of Stuxnet let's remember that we're wanting to proof the system against ransomware, not a nation-state attacker.

Re: What people are willing to pay to avoid ...

"Although they can be hard to test without a spare machine to test them on."

If you have a DR contract this should include provision for testing. You can test a full recovery that way. I found this to be ... instructional. The first test led to changes in the order on which the files were put onto tape. Moving some closer to the start of the tape meant that it was quicker to get some functionality in place so that database restoration could proceed from another tape drive before the file system had been fully backed up.

Testing tells you much more than the simple fact of whether you can restore your system.

It's painful to read DNA being traditional as it came into use after I left although the Jefferies paper was out. I think of blood grouping and enzyme polymorphisms as traditional.

Re: Not over yet

"many of the innocent Post office staff have yet to agree, let alone receive, compensation"

It's difficult to not believe that TPTB are hoping that more of them die before a payout happens.

Re: Ouch

Fait accompli is strong medicine. A shell company in an off-shore tax haven probably wouldn't register with Trump, just SOP for his kind. Requires far fewer corporate lawyers than building a new hi-tech plant needs engineers even if they are paid more.

Re: Ouch

Yes, of course it was a failure to distinguish between grams & mg. I'd hope that most readers of this site would know that. You'd maybe expect that the editors of a site called healthdigest.com would notice. You don't need to refer to DoA listings to see that they're nonsense. But at least twice - those were the ones which caught my eye, there may have been more. It also wasn't a casual news write-up, it presented itself as being somewhat analytical. Perhaps I should have said would the editors expect him to consume over 3½ kilos of salt a day?