* Posts by David 124

5 publicly visible posts • joined 27 Mar 2015

European Parliament rejects amendments to net neut rules, waves through law

David 124
WTF?

So has this made it into UK law yet

Or is the UK GOV ignoring this in light of #Brexit?

The principle of USO is morally correct, however the devil is in the detail.

Have they got it right? Probably not (yet). The principle of a starting point and then review later can be a good approach.

What is going to happen to roaming charges post #Brexit?

I bet given the power of the big commercial interested here and their quiet and persistent lobbying, we (the UK consumer) will get SCREWED !!!

Did you know iOS 10, macOS Sierra has a problem with crappy VPNs? You do now

David 124

Re: WEEKS

I disagree.

Any company and security pro has totally done away with the need for a VPN to secure data.

VPN should only now be in use to bypass geo-blocking.

David 124

Re: WEEKS

Hear Hear..

This will just make us seriously evaluate the huge cost Apple inflicts..

We ONLY use VPN to access Geo-blocked websites.

We base secured all our apps and access behind HTTPS in 2003 and don't need a secure VPN.

PPTP is exactly the correct protocol for us.

David 124

Even more reason to ditch apple

We use PPTP because we want a tunnel, NOT for security.

IKEv2 and L2TP are seriously problematic especially when double-NAT'd or on hotel or Cafe hot-spots.

We secured all our mail and data access behind HTTPS ages ago, so don't need yet another IT support headache with users calling in cos the VPN doesn't work in the crappy hotel they are in.

Occasionally for some web systems you need to 'appear' from your home network. PPTP very nicely achieves this with very little overhead. As the overlaying web connections are HTTPS it's nuts to waste performance and bandwidth adding an un-needed layer of security.

So NO. I think this is a retrograde step and forces adding a layer of security often where one is NOT needed, wasteful and costly in support.

Think.. what do a company want a VPN for..

is it security?

1/ outlook over HTTPS - nope secure by design.

2/ access to intranet sites - nope these use HTTPS

3/ access to internal file data.. - Nope these went over to WebDAV-HTTPS 12 years ago

4/ Access to internal app - Nope these are HTTPS-RDP already secured.

5/ remote access to work desktop - Nope these went HTTPS-RDP in 2003

5/ what else is there?

I would argue that there is very little and the base application access should be default secured without relying on the possible presence of a secured VPN. Fix the security issue AT SOURCE and not rely on the sticky-plaster that a VPN provides. Any admin that states that their security is provided by a VPN is failing to address the fundamental security issues at the base applications.

In my mind a secure VPN is a temporary work-round or patch to briefly use until a proper solution can be found.

So what is a VPN for?

PPTP defines the right usage (in my mind) spot on.

It is a Point-to-Point tunnel, whereby the user appears to egress onto the internet from a known location (IP Address). It is NOT about providing any form of security or encryption.

Where is this useful/needed:

a) accessing a suppliers website (HTTPS) that is locked to IP address block (we have several of these)

b) accessing geo-blocked websites like the BBC

c) accessing google search and getting correct country results for your home country

The geo-block bypass is really the last remaining need for using a VPN and this DOES NOT NEED SECURITY.

#rant over

BOFH: Never mind that old brick, look at this ink-stained BEAUTY

David 124
Go

Oh what a blast

What a lovely end to the week.

ROTFL...!!

Approx. 180db at over 3metres..!!

The bosses toothbrush was always useful to clean the drum before the month end invoice run.. Having replaced it... one hung-over morning the boss didn't notice.. LMAO..!!

Or better still the PFY used one of the directors clothes brush.. No you cannot get the ink out of a white Armani suit...

And with 2 going the print room was so damned loud you could creep up on anyone!! Oh what fun.. Especially when its you 'favourite' bean counter waiting for his URGENT report..

Anyone ever hit the BBS and print the ASCII naked woman... Early porn.. caught the boss at this for his buddies once.. what a laugh...

Well done... what a classic.. !! almost as good as the cattle-prod episode.. My boss used to read CW.. specifically the BOFH to see what I'd been up to.. Coincidentally I'd just wired the helpdesk weirdo's desk with a Taser and remote triggered it after lunch.. Nearly got caught..

Nobby