That's a good question. Once this little virus thing blows over I'll look into some more local accountants to see if they can use the new app. I guess we are with them because it's who we always had.
314 posts • joined 22 Jan 2015
I hate spreadsheets with a passion.
My business has an outside accountant, who for the most part we just use for verifying our records before submission and the occasional tax questions.
I do most of the accounting myself, I do a full reconciliation report etc.
Anyway, initially they asked me to use Excel to submit it all to them, and after cursing at it getting slow, and having my hair turn gray, getting confused trying to put it all in a spreadsheet, I decided enough was enough.
I found an open source locally run application that was built for accounting and works on any platform, it does everything I need perfectly, I love it.
The biggest complications with the excel format is trying to calculate sales from online, instore and whether that money is cash (most fun is when someone paid a bit cash, and a bit card for the same transaction) , that money is card etc and having it all play nicely and tally up.
Ofc, when cash is deposited, it is usually different to the total sales figure, due to change given and what-not. That's a PITA to calculate in excel, because you cannot do double entry accounting.
So, the new app, can calculate that automatically and it all works great, and even fixed a few common errors in previous submissions, due to confusion in excel.
It can even generate reports that are identical to what the account gives us after reviewing.
After telling all of this to the accountant, guess what they said?
Please submit your records in excel.
They would not even look at it.
At this point my head exploded and splattered all over the room, with bits of brain matter stuck to the walls. So, I just copied and pasted the generated reports into excel.
The only good of excel is that I can use Libreoffice to make the excel files for them.
It sounds like it was a php file that was put or edited on their server, you can easily configure an IDS to detect this.
The website files should be monitored, so that - any - file edited, removed or added is noticed. There is no reason this cannot be done. I do this on my website. Tripwire knows the website paths (along with being tailored to the system files).
Even adding product images trips it in the images category and gives me a list of images added.
If our custom stripe integration is touched in anyway tripwire will see it.
Put bluntly, If someone can upload a file to your site, without your knowledge then your environment is not secure enough to collect card data.
How did they not notice this?
Websites which collect card data (my own incl) deploy many security methods to ensure precisely this does not happen.
One of the many methods that we (and most others) use is an Intrusion Detection System (In my case, as a small business owner, Tripwire on Linux), this monitors for filesytem changes, including monitoring the websites files.
This means, if a PHP file is edited, via an exploit or other hack then that file will immediately flag up on the IDS.
This hack absolutely should have been spotted immediately on their IDS, how did they miss this for so long?
Most of these happen by a staff member opening an email attachment or dodgy website.
It can be almost entirely eliminated by:
- Training staff to not just go ahead and open any old attachment they receive by email
- Show emails as plain text by default
- Train staff tonot open that image that has an exe file extension.
- Train staff to not need to look at adult content at work.
- Train staff to focus on their jobs, not random dogdy websites
- Train staff to treat every email attachment with caution, is this contact really likely to send an attachment? Is it really necessary, is it usual pattern?
- Call BOFH if in doubt about something, before you do something.
- Basically.. just train staff about common sense.
Do you really need fo click that random bit.ly link from a random contact who you assisted months ago? Nope
Targeted attacks may be more tricky to stop, but even this simple measures can go a long way.
Prevention is always better than the cure. Ofc, you should still have offline backups.
Yup, I've replaced that cable on a laptop a few years ago (not a apple).
Simply found a dirt cheap matching laptop that was sold as "Spares or repair" that had a busted from impact LCD on ebay and swapped the cable.
Then noticed the spares one had a pci wifi, grabbed that too (mine didn't, I was using a wifi usb).
So, overall worked out well for me.
You can keep a laptop running for years just by swapping failed parts, I've swapped keyboards, screens, ram, hdds etc
Broken? Fix it!
I use KeePassXC, because:
- Still in active development
- Fully open source (Peace of mind...)
- Fully offline by default - no internet/cloud required
- Includes a built-in password generator which can be adjusted/altered to match a sites particular requirements
- Integrates with your desktop keyring - useful for apps such as evolution storing passwords
- Not owned by a corporation - Your passwords won't be sold...
- No risk of simply "vanishing" if a business stops operating
- Included in pretty much every distro, so installing is quick and simple - no hunting for binaries.
- Mobile applications exist in f-droid for reading your DB on a mobile device.
- Many other reasons - but if I continue I start to sound like a sales bod.
Yup, pretty much my thoughts. I'm sorry but I just can't find it within myself to trust an app which collects data from my phone, sends it off to a central db.
Those of us who stand out and say no to installing the app, will be viewed as risking lives or being selfish.
The argument being you need to think of others.
But I am thinking of others. Except my thinking is long term rather than short term. In fact I would probably consider installing this app if it wasn't storing data on some DB owned by GCHQ. If it was done using the Google API, perhaps I would install it.
But therein lies the problem, this app is not built for the sole purpose of saving lives. It's built to collect as much data as possible and store it on a central DB, if it was built solely for saving lives, then it would use the APIs.
That's a huge chunk of your privacy and freedoms you are giving away. Once you've given up your freedom and privacy, you can never take it back (without war anyway).
You only have to look at what the world has done to privacy within the last 40 years to see the consequences of simply saying "Sure, I'll give up that privacy, for a short term to save X". Every single time, the privacy never returns.
There are methods the government has taken in this pandemic which I do agree with, but this one will never be so.
People can say I'm endangering lives by not installing this, you can even say I'm being selfish.
But for me, it's about preserving what freedom we, as a nation have left. And attempting to make it so that the generations which follow won't be buying devices with contact tracing apps as standard to protect the public from <insert anything here, crime, diseases etc>.
This is a test, a test to see how much privacy you will voluntarily give up. If you allow it once, they will know they can do it whenever they want.
If enough people refuse to install it, then the test fails.
If enough people install it, they can make it mandatory and do it again.
But that's my view anyway, and my decision.
Yup, I'm still not installing this by choice - and there's nothing they can do to change my mind.
I would still rather die by COVID-19 than install. Absolutely nothing will change my mind on that.
- Although, I did get a COVID-19 test on Wednesday - My results were "un clear" apparently, that means "I don't know" and come back in 7 days for another test (I called 111 to verify). Yup, that test was helpful.. thanks guv!
That's true, but I've never agreed to Facebooks terms, I've never registered an account with them.
Yet they attempt collect my info regardless on any website with a Facebook button, or their many other methods.
They also have pictures of me which I never uploaded, and even a fake account with my picture for its main picture.
I have to do everything I can to prevent my web browser sending info off to them.
I don't agree to any of this, but they do it anyway, so how is it any different?
Don't Facebook already do this to their own users? From my understanding Facebook collects tons of information on people, even people who don't use their services. It's also my understanding Facebook collects tons of metadata from Whatsapp chats.
So all in all, effectively spying, although their users and others have agreed to this.
So what's the problem Facebook?
- Although personally, I use Signal instead.
These colours existed long before people defined them for skin colour. It has nothing to do with someones skin.
Seriously just stop with the political correctness BS already.
I will carry on using the terms blacklist and whitelist and carry on wearing black clothes, drinking black coffee, green tea and eating dark chocolate, pork and bacon and other meats from the local butchers*
* I don't care if this offends your beliefs, these are my beliefs, and if you can have yours, I can have mine.
Talking of non-standards, anyone remember Tiny? I still have two of them. If memory serves me well, one is from 1996, and one from 1997. Exterior looks exactly the same, and both have the same archway shape case with the old windows logo as an air vent, that goes covers both sides (PITA to refit without bending). Except when they brought the next years one out, they upgraded the pentium II, and changed the PSU to one that needed a special bracket. That means you also need a psu that fits that bracket. That's great thanks tiny!
Although, last I checked a few years ago they both still worked. Up unfil around 2009 they were still running as a pair of home IRC servers.
For all the faults of the older kit, they maybe slow, they may be old, they may be impossible to get fitting parts for.. but they will run for decades without so much as a complaint!
That may be so, but sometimes it can take too long for those services and someone stopping to help could be the difference between life and death. This will be even more the case as electric cars come more common place that have big batteries which can ignite easily if you have a huge crash. (Ask Richard Hammond). You will want someone to help you get out of that car fast.
Someone simply blocking a wound from bleeding out when your trapped in the car and unconscious can save your life too, there are many instances where stopping can save a life.
If you witness an accident in the UK and stop to help, often once the police arrive they are quite happy you did, because someone who wasn't involved in the accident can be used as a witness, which is a far more reliable source of what happened than the two drivers who will blame each other.
They will take your statement, thank you for helping and send you on your way.
Most humans with any common decency will stop to help, If you have a heart attack on the street, would you say that a passer by shouldn't try to resuscitate you? Wait for a qualified doctor?
I have training to revive people in simple cases (I've revived 3 people so far), as a passer by I would stop to help. But I'm not a doctor, so I should be told to leave you and not help?
And, in this event that occured, a human driver would change lanes to go around the accident.
Not simply plow into someone because "they shouldn't be there".
A child runs into the road chasing a football, by the logic of this car:
Speed up and run the kid down
Slam on breaks and/or swerve.
Unexpected events happen on the road, human drivers take action for those events, and if the car is driving, it should too!
You have to think of someone other than yourself sometimes...
Yeah that's one way to go
Personally I've just got an amp connected directly to my PC with optical as source of audio. On that computer is MPC which I can control with a computer program (gmpc) or from my phone with M.A.L.P (vpn connection between them).
So full collection of music, not Internet dependent, plus remote control plus local music management. All win for me.
And not going to be hacked so easily.
(Although, saying that I did just setup a Bluetooth lightbulb today.. but that's not connected to wifi at all, Bluetooth only, using for dimmable bedside light.)
In my experience, your average buyer doesn't care what CPU brand is in it, or even what a CPU is for that matter.
As long as they see the laptop/desktop switches on and says Microsoft Windows somewhere, they're happy with it.
I mean, they still make laptops with intel celeron...... and people buy them.
There are probably many people who have an AMD based laptop and don't even know what the AMD sticker means. Based on the fact I've seen a lot of new laptops recently that had AMD chips (but no fish) and there was a big influx of laptop sales at the start of COVID.
I can't comment on the canon tank printers (I've never used a canon one)..
But their run-of-the-mill inkjet printers are okay until you simply can't buy ink for it any more. I've had around 4-5 canon printers, with one still in use in our shop for printing online invoices and barcodes/prices (well, before lockdown).
I've had to replace them almost every time simply because I can't find the inks anymore, not in-store, not online - not anywhere (not even third party inks).
The problem with inkjet printers, without ink, they don't print (big shock!). That and sometimes I felt print quality was lacking a little, but they made up for it by working perfectly with CUPS on Linux and being fairly cheap, so I was happy enough.
But in the end I bought a HP Inkjet, with subscription - they just send me cartridges every time it runs out. I don't like being on a subscription, but it's mostly business usage and with a bit of math it seemed viable enough based on frequency of ink purchases and monthly costs.
With all this said, I hope this guy wins his court case - It shouldn't matter what ink is in the printer, so long as it can be used!
Someone still uses this? Does that same person still use SSLv1/3?
Seriously just turn it off. Last year dropped TLSv1.0 and v1.1 leaving just v1.2 running.
This year we enabled TLSv1.3, as such everything is either TLSv1.2 or v1.3.
Good news is, cutting everything pre-TLSv1.2 cut a huge chunk of spam via email.
"Other Android owners will have to rely on their device vendor or carrier to test and release the fixes, a process that can take days or months or never."
Or, install custom firmware that includes the fixes. Not always the easiest option, but it'll do the trick. Everyone seems to forget you can do this.
I'm curious, where does my grandma stand in this? She doesn't have any broadband, she doesn't have a computer and she doesn't have a smart phone. And if you tell her she needs a router, she will ask where she needs to go.
She is 85 years old, so I'm guessing by 2025, at 90 she will almost certainly still not understand broadband.
So, if phones require broadband, this means she will be required to pay for a full broadband package, just to receive and make phone calls on her landline? Will she understand this? Will they try to flog her the most expensive, fastest, broadband package for phone calls only?
User: Hi, I can't print I sent to the printer and it didn't work.
Support: Have you tried turning it on and off again?
User: Yes I turned the computer on and off again, I pressed the button on the screen.
Support: Okay please use the start menu to reboot....
10 minutes later.......
Okay now click print.
User: No page printed.
Support: ... yes it did.
User: I can't see it (looks under frantically printer like a mad man)
Support: No no no, I mean it printed here in India, next to me. Which printer did you click?
User: I clicked the one called Cloud, because my wallpaper has a picture of a cloud on it.
Support: Is that so? That's nice. Now please click the one that says ID 66, 6, which is your building and floor.
User: It worked!
Support: Your welcome, please enjoy your day, live long and prosper.
Firefox has a fairly decent policy json system useful for licking down Firefox in a business environment (for example, completely disabling access to about:config, or disabling Firefox sync etc).
Hopefully they add this to that policy, and if not trusty old mozilla.cfg with lockPref will do the trick.
I'll be disabling this one, I'm a naughty admin* who has an internal VPN running on all systems which hijacks DNS queries to change the IP of some VPN enabled servers (From a public IP to a local VPN 10.* IP), thus changing the access level.
Sadly this will bork access if you don't let me control the DNS servers system wide.
* Yes a hosts file can do this, but ain't nobody got time to set a host file on every VPN client.
That's my fault! My bad! I reduced all my subscriptions to their minimum offers because I found it is now suitable for my printing needs. I've been working on reducing the need to print as much as possible.. So I've dropped from their most expensive subscription, to their cheapest. Sorry guys!
To be honest. I'm guilty of still doing this with every system I manage with their hostnames or other settings, each one has a unique name.
Which is why the store is kicking out two wifi signals named:
From the router who's hostname is "Wednesday"
But there are also some systems running with fun names like Viktor, Lucifer, Dracula, Ophelia, Lurch, Selene etc.
It just makes it easier to instantly know which system In managing and has nothing to do with treating them like my children.
Also makes "ssh dracula" more interesting and easier to remember lol.
With IPv6 now in play, I also get to choose fun IPv6 names like "I feed all dead", "Feels good" etc. :-D
I'm glad to see this.
I had to wait for an 18-Month BT contract to end. As a business line we were paying £40/mo incl a static ip.
Due to moving premesis, and still being bound by said contract the BT increased that price to £80/mo due to according to them, moving premesis cancelled their introductory offer.
Later, the contract auto renewed to £120/mo for 18 months, because I forgot about it. Because we stated we didn't want that contract to auto renew again, it eventually fell to their "out of contract status" for £190/mo.
We've switched to Zen for £45/mo now...
Even if you got all that information correct, the drive would still fail to be detected if it was so new, you might also need to update the BIOS!
Don't forget to set the jumpers correctly if it's a slave drive!
Talking of drives, anyone remember SATAII's early days?
Sometimes, if you got a spanking new SATAII Drive, Your SATA1 board may be entirely unable to use it. Yes, Gigabyte, I'm looking at you with my epic AMD Athlon(tm) 64 4000.
I miss those days.
I still can't help but laugh. It's just so ironic.
The governments complaining about unproven "possible backdoors" in kit are the very same governments who for years have been demanding tech gives them backdoors.
Of course it's totally different right? China is always the bad guy.
Meanwhile when other nations do the exact same thing, it's not bad.
Both of those options still go against the core reasons behind the GPL and open source in general.
Aside from this, they tried to claim defamation, however in this case that was simply not the case. He didn't point out something they were not really doing. He simply wrote about his dislike to something they were actually doing. Thus, because he didn't lie or tell a false story, it is not defamation.
For the most part it was just his opinion about something they are doing. They didn't like that his opinion put them in a bad light, so they attempted legal action which failed.
I believe his judgment was in has favour for two reasons:
1) It's not a valid defamation case
2) He has a right to express his opinion
To be honest, grsecurity didn't stand a chance in this case.
Don't feel a good reason to own most of this "IoT" stuff. I don't own any yet because I've yet to find a valid reason to need it.
Perhaps I'm still too old fashioned. I honestly don't feel there is a huge reason I can't just use a daemon on the wall to start and stop my light builbs.
If I wanted to adjust brightness I'm happy to buy an old fashioned dimmer set. As for changing colours of the bomb, can't say I've ever felt I wanted to randomly change the colour of my lights.
Seriously. Get a pocket WiFi in your destination country.
I get one of these in Japan every year, hook your laptop's, phone's etc too it.
Use something like signal, and no extra text charges. Generally quite cheap, and saves me a ton of money!
I stay in Japan for 3-4 weeks at a time, so it's definitely financially viable!
Sadly. I have to agree, even as a die-hard tuxer. We had an EPOS system which ran Arch Linux, at the time it seemed like a great idea because the hardware wasn't very well supported in older kernels and the OS was stable, and it meant we didn't need to reinstall the OS to upgrade it.
It worked well for around 3 years. Without any problems. Then sadly things started crashing for unexplained reasons after updates (Desktop panel for one).
That's also bad for a system that needs to run on-demand and not stop.
Luckily by this time Debian 10 had been released, so that system is now running Debian 10 stable (w/ XFCE), smooth as butter. Sadly this also means we no longer have any Arch systems.
I've also had to switch distros in the past with Fedora on my Desktop, temporarily switching to CentOS 6 which had just been released because at that time Fedora was going through some drastic changes and stability wasn't even a word you could say. Now back to FC31 though :-).
With all this said though, for all the many times Linux has indeed made me wonder what the hell is going on, or why a particular update has to change the entire way you need to configure something that causes you to disable it. (Hello NetworkManager, yes I remember you entering Fedora for the first time)
It has also given me much stress relief and a decent stable OS in most cases and saved me a ton of money and I haven't needed to use Windows for many years.
tl;dr; Linux can be both stable and reliable, but also entirely unstable and not so reliable. But as long as you're happy to switch distros when required, no big deal.
I've also switched a couple of years ago in 2003.
The downside with being Windows-free is that if I'm given a Windows system these days, I've no idea what to do with it. I just get lost in menus trying to find the simplest of things.
But on topic here, a newer cpu technology could indeed boost hardware sales if that technology was good enough to truly warrant the upgrade.
Article doesn't specify what he intended to use these records for?
Did anyone ask what purpose he had intended for these records?
This would be my first question. Second question, had he already used them for his intended purpose? I hope they got more information out lf him about this.
Clearly the purpose is not to help his patients, seeing as he was no longer working for the NHS...
I'm not entirely sure that is correct, because while that is true had I bricked it through my own actions (aka it bricked while I was flashing it)
It also remains true from the manufacturers point of view (I voided the warranty).
However, if the phone is fully functional prior to the police having performed their actions, then it is not me who has caused the device to brick. In addition, there is no law which specifies you cannot alter your devices firmware or bootloader. The only exception being that you lose your warranty.
This responsibility would entirely rest with the police for causing that device to brick at that time, on the basis had they not altered the bootloader (They are also voiding your warranty btw) your device would still be fully functional.
Serious question. The article states they attempt to bypass encryption by several methods, one of those methods being flashing the bootloader.
They also state that they will return a device back to its owner of it's deemed "clean".
But. Using my own phone as an example... My device has a custom bootloader (TWRP) and a custom firmware.
After they have flashed their bootloader, they will need to restore the old one.
My device is super picky about its bootloader, at this point if you boot or load the official bootloader, it will be permanently locked.
Which in turn will also cause the firmware to not boot. That also means you can't flash the custom bootloader back either.
Essentially they would have bricked the device.
So, in the event, they give me back my device, bricked because of their actions, where do I stand legally? They have damaged my property.
"comes with our Privacy Promise and we can’t wait for you to try new features like tracking prevention, which is on by default, "
comes with our Privacy Promise and we can't wait to collect your data from our OS! We'll protect you from being tracked by other companies, increasing the value of our collected data about you as it'll only be us who can provide that information to our advertisers.
Biting the hand that feeds IT © 1998–2020