* Posts by Julian 8

77 posts • joined 24 Jul 2015

Page:

Forget BYOD, this is BYOVM: Ransomware tries to evade antivirus by hiding in a virtual machine on infected systems

Julian 8

Wonder if it would work on an existing vbox installation ?

Stopping apps from running from %appdata% maybe useful in this respect, though that on its own is a nightmare (being the family IT guy and trying to convince them all not to be admins and then stopping crap apps from installing and running from %appdata% anyway - even MS kills me on this and a non domain does not make this easy to work)

Still waiting for your Atari retro gaming console? You're not alone: Its architect has just sued the biz for 'non-payment'

Julian 8

Re: best retro consoles

retropie and picade - though not hand held

Samsung's Galaxy S7 line has had a good run with four years of security updates – but you'll want to trade yours in now

Julian 8

I know HSBC has inbuilt security in their apps, which is much more secure than many of the other banks that send a text to a mobile for verification

All that Samsung users found on UK website after weird Find my Mobile push notification was... other people's details

Julian 8

Package Disabler Pro to disable some of this bloatware without root

Remember that Sonos speaker you bought a few years back that works perfectly? It's about to be screwed for... reasons

Julian 8

Squeezebox

OK, so the company is dead and Logitech killed off the range after the buyout, but those of us who have these can sitll use them as the server software is available.

works with spotify (alas, not prime) and if your music is all local they are fantastic.

The DAC's were good or connect via coax/optical to a decent amp and off you go

Still glad I never jumped ship

Privacy activists beg Google to ban un-removable bloatware from Android

Julian 8

Re: "most commonly found on cheap handsets"

Problem then is the banking apps stop working and they are so useful

packagedisabler is pretty decent with a Samsung

Cisco axes hundreds, shares tumble amid China cut-off – but we're winning the trade war, right? So much winning

Julian 8

Re: How can this be?

Just look at the UK motorcycle business - its the same. Let the Japanese look at the small monkey bikes and scooters as it was not profitable all those moons ago and look atwhat happened when the punters switched on and realised the Japanese bikes were better, more reliable and cheaper.

Industry reps told the UK taxman everything wrong with extending IR35. What happened next will astound you

Julian 8

gig ecomony

Makes me wonder what happens with the gig ecomonmy too.

Uber drviers - clealy doing the same job as other "drivers"

Agency nurses - cleany doing the same jobs as permenant nurses

Cover teachers - just another teacher

etc.

Nurses worry me more. We have lost a lot through brexit already, so those who are agency nurses will take a pay cut of just leave and do something else

Same with teachers, schools have x teachers and for whatever reason they need cover. Potentially removing more teachers where we need more

User, while you may or may not use them, they will fall under this affecting the Generation Z from eating and Generation X from travelling around

DRAM, that's cold: Overclockers squeeze out extra Micron DDR4 performance with liquid nitrogen system

Julian 8

Amazing the lengths we have to go to now to get our performance back due to HT being switched off due to the latest bugs in their processors

Hold horror stories: Chief, we've got a f*cking idiot on line 1. Oh, you heard all that

Julian 8

id10t

ID Ten T is far safer

Users fail to squeak through basic computer skills test. Well, it was the '90s

Julian 8

When I used to do desktop support we had many a drink end up in a keyboard and mouse. After getting to the its a Tea/Coffee the first question was "did you have sugar" which always threw the user. If thney did we directed them to take the KB to the sink and flow a lot of water through it. If there was no sugar we were a little more relaxed as the sugar is what caused the sticky damage. (soft drinks and hot chocolate were also sink runs)

Going back way before that I did have a user who wanted a "smaller" mouse. When I asked why and went to his desk he promptly showed me the mouse going over the mouse mat and diaganonally corner to corner, but the pointer on the screen not doing quite the same. His thoughts were a smaller mouse would make the journey

Ooh, my machine is SO much faster than yours... Oh, wait, that might be a bit of a problem...

Julian 8

Re: Well that was an invisible problem

Should have had Token Ring :)

Tech support discovers users who buy the 'sh*ttest PCs known to Man' struggle with basics

Julian 8

Re: It's 2018

My misses can use the computers and ipad at her place all day long - as they are only exposed to corporate apps and there are no issues

Problem comes at home when it is just vanilla windows (not even going to head her to the unix devices)

The internet is "google", explorer meant IE and windows explorer

As she had an old imaging app with an old camera, it is no longer called "pictures", but "kodak pictures" (just a sub folder under pictures BTW) - which is even more fun when she talks to her mum (who is even worse) and says to look in "kodak pictures"

Manchester man fined £1,440 after neighbours couldn't open windows for stench of dog toffee

Julian 8

WTF has Type 2 diabetes got to do with it ? - doesn't stop me doing anything.

Gotta try this one at home when I get asked to do work in the garden and see how far that gets me

Once more with feeling: Windows 10 October 2018 Update inches closer to relaunch

Julian 8

Re: I'm just wondering

Depends if you need to have SOX compliance. If you do, you need to be pretty good with all the security updates and that will include builds.

However, running an old OS - as long as it is patched - is fine for compliance which is one of the many reasons it takes some companies time to update from Win7 to Win10

Sure, Europe. Here's our Android suite without Search, Chrome apps. Now pay the Google tax

Julian 8

MS next... again

Please make them remove shit like

Cortana

Edge

IE

xBox crap

OneDrive

Don't mind if MS make me pay as it won't cost me a penny

Microsoft Windows 10 October update giving HP users BSOD

Julian 8

Re: HP keyboards are special?

I think you may have found the bug...... damn acroynms and vowels

Julian 8

Re: Barton Gellman defended auto-updates, arguing they do more good than harm

Businesses would be stupid to allow automated patching like this.

at a minimum TEST -> PILOT -> PROD

While MS are cuplable for a bad patch, the business is responsible for ensuring it does not cause problems for their staff. Very easy to do if you are using WSUS, BigFix, LANDesk

If you follow the minmum of a 3 step cycle and expose more machines each time, your TEST and PILOT phases - if correct - should cover most of your client and server configurations (of course, how you get these phases populated is up for discussion)

Microsoft yanks the document-destroying Windows 10 October 2018 Update

Julian 8

Re: Not Cloudy Here

sounds like me, I wonder if we would loose anything or everything

Julian 8

Re: Why even touch user folders? Onedrive

Even more reason for us to be able to remove this bit of bloatware

HMRC rapped as Brexit looms and customs IT release slips again

Julian 8

TSB

The department's chief executive, Jon Thompson, has been insistent that systems will be able to cope with a no-deal

I 'm sure we heard similar with TSB and look how that is still going on

Rookie almost wipes customer's entire inventory – unbeknownst to sysadmin

Julian 8

Reminds me of a contractor

We had in a company a few years ago. He wrote a routine to clear down a specific folder on a cluster. all fairly simple. I did not find out for 3 weeks, but over the last three weekends one of our team had been in fixing an issue with a cluster node that had failed.

Eventually I was given the script and asked to look over and it all looked OK, nothing obvious, a few commands and a delete command. I then asked why they suspected this script and was told the node's boot drive had been wiped.

The following weekend and again a node went down. I looked at the script again and ran it line by line instead of just looking and when it got to the delete line instead of wanting to delete the intended folder it wanted to delete the C:\ instead.

Looked closer at the line and there was a trailing space after the folder name, so in those days Windows decided to erase the folder where it was (which due to how the task had been created it ran in c:\)

Contractors slam UK taxman's 'aggressive' IR35 tax reforms

Julian 8

Re: Loan Charge?

Remove that last comment, you have no idea who is watching and giving them ideas like that is the last thing we need

London's Gatwick Airport flies back to the future as screens fail

Julian 8

4G

What LGW should have done is go with an an ISP who have a brilliant tie in with a mobile provider and could offer a decent 4G service incase the redundant cables to LGW were cut.

Who was it that hacked Apple? Ozzie Ozzie Ozzie, boy boy boy!

Julian 8

from BBC

In a statement to the BBC, Apple said: "We vigilantly protect our networks and have dedicated teams of information security professionals that work to detect and respond to threats.

dedicate team of sloths maybe if he downloaded 90GB of data over an extended period ?

Fork it! Google fined €4.34bn over Android, has 90 days to behave

Julian 8

Can't wait to see the MS fine then.

They force you to have Edge on your machine and you cannot remove it

They force you to have Cortana on your machine and you cannot remove it

They force Cortana to use Bing

'Facebook takes data from my phone – but I don't have an account!'

Julian 8

I would root my phone and remove this and some of the other "system apps" that I do not want, however I still want to use my banking apps and as soon as I root they stop

I have a 2nd phone which is rooted and has all the various xPosed and cloakers, but while some worked for a bit (except BarclayCard), when I currently try them the all fail.

I have even asked that they add a "I accept this phone is rooted and any losses caused by this phone will not be covered by <name of bank here> and I am responsible"

I also pointed out that on an older phone running an old Android (4.4) it was probably so bad that it being unrooted and running a banking app was possibly worse than a newer root android version

No answers on any of those

Microsoft's latest Windows 10 update downs Chrome, Cortana

Julian 8

Re: Sounds like a useful bug?

Insiders = fanboiz = no chrome - Edge only

Who will fix our Internal Banking Mess? TSB hires IBM amid online banking woes

Julian 8

Now IBM have joined in, it has gone pete tong

Penis pothole protester: Cambridge's 'Wanksy' art shows feted

Julian 8

Spokesmen : We don't know what you are all talking about. we have just looked at the roads on [insert preferred provider]'s satellite and road images and they all look good to us.

Julian 8

If they stopped putting speed bumps in, the same staff / contractors would have both the time and the resources to fill in a lot of pot holes.

Julian 8

Get a couple of cans of spray and spray the biggest cock ever, preferable in a luminous spray so it is easy to see at night

It's April 2018, and we've had to sit on this Windows 10 Spring Creators Update headline for days

Julian 8

Beefed up Cortana

It's being removed or going to use a search engine that can actually search ?

What the @#$%&!? Microsoft bans nudity, swearing in Skype, emails, Office 365 docs

Julian 8

Interesting as Offensive is different for everyone

I have no problems with swearing or most of that list, but I take great offense on other words, phrases that are not covered that some people find comforting.

One person's good is another person's evil

Julian 8

Does that mean that if I tell Cortana to f$ck right off my machine she will ?

Developer mistakenly deleted data - so thoroughly nobody could pin it on him!

Julian 8

Saw similar at a previous job. A contractor had come in and written a few scripts to do some temp folder tidying on a large cluster. Unbeknown to me over the last few weekends said cluster had had some serious problems and a node had been completely vaped each weekend. - Someone else was checking these issues and it was not mentioned in our handovers.

I was asked to look at the scripts (just windows cmd) and they all looked OK - looked.

That weekend, down a node went again, so I took a closer look at the scripts.

In a sandbox I copied the suspect script and ran it line by line. All ran well until it came to a delete and there was an extra space after a wildcard. So instead of deleting the intended folder, it deleted the root of the drive it was running on (and this was the system drive)

When you play this song backwards, you can hear Satan. Play it forwards, and it hijacks Siri, Alexa

Julian 8

Re: Passive ultrasound absorption

Get one, then order all the random items and good toys you want.

When they complain, say their poor choice in music or TV programmes (if your other half is like mine) must be ordering this via the hidden messages

Acronis: Ransomware protection! Get yer free ransomware protection!

Julian 8

Re: I've asked before, but:

My understanding is that some of these ransomware do not change date / time stamps so be interested to see what method you approach to detect changes

One way mirror can be good, but depends on how it detects changes. It may also copy over the encrypted files

Also most of the ransomware so far only works on mounted drives / volumes

I have 2 drives that are on my server. I have a routine that mounts them, unlocks, copies, locks and dismounts. One is weekly, the other monthly and for my data, they have numerous versions

I have a manual copy stored at a remote location

I have my own remote NAS running at a family friend that is constantly updated

I have a couple of online cloud providers that are backing up my key data with various version controls.

I can guarantee that someone will find holes in that too, or I may find I have been hit at some point and not been aware no matter how careful I am, or the creators of this crap get more inventive themselves

The GFS backup is good, but when I used to deal with backups' I'd prefer the Tower Of Hanoi approach often supplemented with additional daily and non overwritten monthly's

Here we go again... UK Prime Minister urges nerds to come up with magic crypto backdoors

Julian 8

Shall we try putting into terms they may understand

you have your secure emails / accounts that only you can see - secured

you have your secure crtypto key

However, you need to give the police and whoever else a crypto bypass so they can go in and look when they feel like it

Now stop anyone else from either accidently getting the crypto bypass or working out how to create their own version and stealing all the emails / money

Of course, that is without there being initial errors in the crypto code making it easy to break (WPA)

translated for politicians

As a government you need to put all your money into a safe location... say a safe

You have your key

However, you need to give the police and whoever else a skeleton key so they can go in and look when they feel like it

Now stop anyone else from either accidently getting the key or working out how to create their own version and stealing all the money

Of course, that is without there being initial errors in the lock making it easy to break / bypass (bumping anyone)

Beyond code PEBCAK lies KMACYOYO, PENCIL and PAFO

Julian 8

Id ten T

Best said in front of a user, "Ah yes, its it an ID ten T issue"

Logitech: We're gonna brick your Harmony Link gizmos next year

Julian 8

Re: Idiots !

Still use mine, though buggered when they go pop.

Sonos scare me, but they are still going strong here and the server code has had a few upgrades

Rejecting Sonos' private data slurp basically bricks bloke's boombox

Julian 8

Squeezebox

Glad I still have this little beauties running even though they sold out to Logitech who dumped the whole shebang.

With the new EUDPA next year you just tell Sonos they have to remove ll the data they have and you do not give consent.

Cal then a week later ask for what they have on you and then if they have anything report them and hope the ICO or whoever use their teeth with the level of fines they can impose with the new act

Cortana, please finish my sentences in Skype texts for me

Julian 8

Cortana

More interested in how to remove Cortana from running on my machines period let alone it hijacking an app and suggesting improvements. I mean, who - besides Yahoo! replies with "I''m fine thanks!"

WTF is the ! for ?

Windows 10 Creators Update will add app-level privacy controls

Julian 8

US Gvt and so on

After they block Kaspersky Antivirus, are they going to do the same to MS Windows with all the crap and sniffing it does ?

Julian 8

Re: Take a Stand...

You can stop automatic updates via gpedit / group policy

I have done so on one of my machines at home as the last time it updated it boots, works for an indeterminate time and then dies.

Waiting for this update to see what it does

Julian 8

%appdata%

Be nice if they stopped apps from installing from %appdata% or provided someway to force the apps to the relevant %programfiles% or %programfiles(x86)%

allowing apps to run form there is a major pain, and it is not always easy to just use security restrictions to block the option as a number of apps want to install there with no alternative option

HASHING is OK to a point and folders are a bit of a pain in a corporate environment

Oracle 'systematically denies' its sales reps their commissions, forces them to work to pay off 'debts', court told

Julian 8

Double Standards

So the employees can only go via arbitration as per their contract, but when Oracle lost that case the first thing they did was go running to the courts.

The Judge should have increased the amount and pointed out to Oracle the double standards and that this extra payment is a warning for them not to do it again

EE!? The sound customers make when the interwebz don't work

Julian 8

@matty

I do like his tweet about changing the DNS.

especially the google it bit

Customer : I have no internet

techie : can you ping 8.8.8.8

Customer: Yes

techie : your internet is fine, DNS is the problem

customer : eh

techie : google it - bye

NHS WannaCrypt postmortem: Outbreak blamed on lack of accountability

Julian 8

That's why you have testing phases and an ability to ensure that if you are asked to stop patch KB1234 as it breaks Product A, you can still push KB1234 to all other devices except those that match the criteria

Also ensure you have an ability to do an emergency push - AKA patch KB1234 to everything NOW, even if it means a percentage of devices crash. What is the best case scenario you are prepared to accept.

Just needs a little planning and agreement

To be honest, I am also surprised with some of these companies that they are hit as certainly in the past I had to prove the patching to internal / external auditors and for SOX compliance.

They would accept small levels of devices not being patched fully or even missing from the relevant systems - especially if at a global / regional level you could prove you were doing all you could and chasing local IT to resolve the issues

Huge ransomware outbreak spreads in Ukraine and beyond

Julian 8

Besides patching

Windows Server: PowerShell method (Remove-WindowsFeature FS-SMB1)

Windows Client: PowerShell method (Disable-WindowsOptionalFeature -Online -FeatureName smb1protocol)

Not surprised about WPP - who are being named on R5 live a lot

IBM and no idea who or what they are doing about patching these days. Used to be good

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020