* Posts by HellDeskJockey

61 posts • joined 27 Jul 2016

Page:

If you miss the happier times of the 2000s, just look up today's SCADA gear which still has Stuxnet-style holes

HellDeskJockey

Re: Not a big deal, as industrial security is almost non-existent anyway.

The big deal as you say is connecting to the internet. I can understand not using passwords and encryption if you have your own ISOLATED network not connected to anything else. If they are close enough to plug in then you have many other problems. The problem comes when the boss wants to connect so he can check on the factory, or the chief engineer want's to be able to reprogram from home without have to get dressed and come in when the off shift calls. Once you hit that point you are trusting every other user on the internet to respect your system. Simply put, that is not going to happen. You need the VPN, strong passwords and encryption. If the software is designed with good security built in then you have defense in depth.

We beg, implore and beseech thee. Stop reusing the same damn password everywhere

HellDeskJockey
Facepalm

Re: A few years back....

Just do what I do and avoid stores at all costs. Walmart grocery and amazon are your friends. It's so unpleasant to shop these days.

The latest idiocy, when you come into a store. Please lower your mask so the camera can ID you. Farewell reason I knew thee well.

Travel advice for the week ahead is just: STOP

HellDeskJockey
Joke

Re: Really?

Hummm,

And here I thought causal Friday was now clothing optional Friday.

At least someone's making out like a bandit: Scammers have pocketed $13m in Coronavirus fraud from the US this year

HellDeskJockey

I'm actually surprised it is so little. But it is early in the game.

Signal sends smoke, er, signal: If Congress cripples anonymous speech with EARN IT Act, we'll shut US ops

HellDeskJockey
Big Brother

Re: EARN IT

Actually there is a pretty huge fight brewing on this. Our Attorney General issued a warning this weekend State and local governments cannot harass citizens for attending Church at Easter as long as the church is practicing social distancing safety. Several local and state government agencies were trying to ban drive in Easter Services. For those who don't know a drive in service is where people stay in their cars 6 ft (2 m) apart much like an old time drive through movie theater. This was lost on these officials who decided that there must be NO gatherings. Though it is perfectly ok to go to the grocery store, liquor store, pot dispensary etc. They were also trying to go after Gun Stores also but again they were shut down.

'Social distancing champ' Linus Torvalds releases Linux 5.6, tells devs to put health before next release

HellDeskJockey
Black Helicopters

On this side of the pond

The coronavirus is sometimes referred to as the "Boomer Remover" FWIW I'm a boomer.

Icon because I'm working in the bunker now.

Fresh virus misery for Illinois: Public health agency taken down by... web ransomware. Great timing, scumbags

HellDeskJockey

Re: There is no circle of hell

Oh yes there is. They could listen to our elected Illinois officials corona-virus self congratulatory news conference yesterday. Five minutes of that and I'm ready to take my chances on getting sick.

Latest bendy phone effort from coke empire spinoff Escobar Inc is a tinfoil-plated Samsung Galaxy Fold 'scam'

HellDeskJockey

Re: The folding phone is only a stopgap...

To snort a line of coke.

GCHQ's infosec arm has 3 simple tips to secure those insecure smart home gadgets

HellDeskJockey
Big Brother

Another thing is to keep things off the Internet unless needed. Everything does not have to connect to the net.

Iowa has already won the worst IT rollout award of 2020: Rap for crap caucus app chaps in vote zap flap

HellDeskJockey
IT Angle

In the US Voting is done by state

So to win the nomination you have to basically win 50 state elections. States especially smaller and more rural ones jealously guard their privileges in this regard.

That is why both Iowa and New Hampshire cling to their traditional status as first in the nation. They get a lot of attention, local politicians are not ignored by national politicians, money from reporters and campaign staff etc.... That also means you have different organizations for each state and party each with their own rules and people. It's a bit of a mess but like an old working program it is not likely to get changed.

If only 3 in 100,000 cyber-crimes are prosecuted, why not train cops to bring these crooks to justice once and for all, suggests think-tank veep

HellDeskJockey
Black Helicopters

Also in the US the number of jurisdictions can make it difficult . Every county has their own police and courts, most of the time cases are not consolidated. Which could result in a large number of court cases. Here is an example. Years ago someone made off with my checkbook and used it to commit fraud. Our friendly law enforcement expected me to pay the checks (or cheques if you prefer) or take 3 days a month off work for about a year to sit in the various county courtrooms. I paid them off to remain employed. They don't care about the many low level problems. They only care if someone can get them headlines(free publicity) or if a large business(taxes/campaign donations) is involved.

I'm not hopeful for any changes.

You can't win.

You can't break even.

You can't quit the game.

Top Euro court advised: Cops, spies yelling 'national security' isn’t enough to force ISPs to hand over massive piles of people's private data

HellDeskJockey
Headmaster

Re: Hold on!

The simple answer is that the president is not elected by popular vote. The electoral college apportions votes to each state based on population. So you basically have 50 state elections to win. If you get an extra million votes in states large population you only get the electoral votes for that state. The Electoral College votes are the same whether you win by 1 vote or by 1 million votes.

The reason for this is that more rural states do not agree with getting ruled by New York, California, Texas and Florida.

Civics class is ended.

PS Yes I know there are territories out there but as of now they are not a significant part of the vote.

Google scolded for depriving the poor of privacy as Chinese malware bundled on phones for hard-up Americans

HellDeskJockey

A Lifeline or "Obama phone" is a program to give low income people access to telecommunications. The rest of us pay a fee on our phone bills to provide this. If you are at or below 135% of poverty line you can get a discount on phone service. Google FCC Lifeline for details.

Bad news: KeyWe Smart Lock is easily bypassed and can't be fixed

HellDeskJockey

As a long time user of keypad smart locks there are a couple of advantages. When you have housemates that loose keys on a regular basis just give them a combination. Most can easily be changed if needed. Also if you have cleaners or health care providers coming to the house give them a separate combination they can easily come in. Not totally secure but since a thief could easily break the window and enter it's good enough.

No radio locks though the advantage you get is not worth the risk.

Den Automation raised millions to 'reinvent' the light switch. Now it's lights out for startup

HellDeskJockey
Big Brother

And that is why

I won't buy a device that requires a remote server I can't control to run. Also it is a good idea to wait 5 years before buying from a new company in the home automation business. Does anyone else remember the IBM X10 devices. I purchased a lot of them on discount.

Some fokken arse has bared the privates of 250,000 users' from Dutch brothel forum

HellDeskJockey

Re: Bah!

More likely. the thinking process was. Hey look, here is a database I can use for free. Why bother with custom code for this. I'll/company will make more money this way.

Holy smokes! Ex-IT admin gets two years prison for trashing Army chaplains' servers

HellDeskJockey
Angel

Re: Where is god when you need him?

They did God sent a prosecutor and a judge.

Dunkin do-nots: Deep-fried cake maker did not warn its sugar addicts that crooks raided web accounts, says NY AG

HellDeskJockey
Joke

NOOOOO!!!!!!!

Not my Donut account. Is nothing sacred to these beasts.

We finally got one! Russian 'fesses up to cracking bank servers, netting big bucks

HellDeskJockey
Pirate

Re: "Hack spee"

Let me add the Graf Spee also didn't work out well.

Welsh police use of facial recog tech – it's so 'lawful', rules High Court

HellDeskJockey
Joke

Re: Would I be right....

Nice Burka. Is that for religious reasons or are you trying to avoid the police cameras?

Dutch cops collar fella accused of crafting and flogging Office macro nasties to cyber-crooks

HellDeskJockey

Some of the messages come with helpful instructions on how to enable macros in them.

Li-ion battery 'price-fixing' case settled with bonus fury over lawyers pocketing eight-figures

HellDeskJockey

Welcome to the world of USA civil jurisprudence. From my experience of being involved in class actions suits you get a few coupons complete with restrictions and not much else. Most of the time I treat class action notices as junk mail. Unless you are offering real money don't expect me to waste my time with it.

Just because you're paranoid doesn't mean Google isn't listening to everything you say

HellDeskJockey
Big Brother

That is why I don't have a voice assistant in my house. I do like my home tech but only on my terms.

White House mulls just banning strong end-to-end crypto. Plus: More bad stuff in infosec land

HellDeskJockey

Re: Yep that will show them

It is actually pretty hard to do in the US as the 8th amendment prohibits excessive punishments. Reasonable bail is also required. Capone in fact served his sentence and then retired mainly due to illness.

HellDeskJockey
Big Brother

Yep that will show them

The scene, arrest of a notorious terrorist.

"All right Baddae. You're under arrest for murder, terrorism, hijacking, armed robbery, and oh yeah using illegal encryption software."

Yep that last one will have them shacking in their boots.

Remember that crypto-exchange boss who mysteriously died after his customers' coins disappeared? Of course he totally stole them

HellDeskJockey
Holmes

That's why I stay away from Cryptocurrency

Too many crooks and too little regulation. The concept is fine but some of the people implementing it are not. I don't believe "Sure I steal from everybody else, but I would never steal from you."

AI systems sieve out catfish from the dating pool in effort to lock away scammers

HellDeskJockey
Holmes

Ahh yes online dating. I learned to have a separate mailing address for all the NSFW photos sent. Then take look at the mail header and find out they are from another continent. At my age it's more trouble than it's worth.

Why telcos 'handed over' people's GPS coords to a bounty hunter: He just had to ask nicely

HellDeskJockey

It's called social engineering and happens all the time. Also some of these folks in the US are ex law enforcement and many are good at implying that they the police without saying the word "police". Basically they imply they are police and when caught up say "Why of course I would never claim I was a police officer."

Sucks, but without proof it's difficult to do anything.

Hey, US taxpayers. Filed your taxes? Good, good. $500m of it is going on an Intel-Cray exascale boffinry supercomputer

HellDeskJockey
FAIL

Re: Watch their lips move

" (the only way he gets a second term with his approval ratings is if the Democrats are complete idiots and nominate one of their lunatic fringe)"

Have you been watching US politics lately?

Fail for obvious reasons.

Sysadmin’s plan to manage system config changes backfires spectacularly

HellDeskJockey

Re: Why use a revision control system?

Ahh paper tape. Worst come to worst you could always read it manually. Though for a backup I would use Mylar. That stuff was darnmed near indestructible. Way too bulky for modern systems though 1 Kilobyte requires about 2.6 meters of tape.

Bruce Schneier: You want real IoT security? Have Uncle Sam start putting boots to asses

HellDeskJockey

He's right security will only be added to IOT products when companies are forced to. But we also have to realize the this stuff does last a long time. I have a 15 year old laser printer. It works why bother replacing. Washer and dryer and fridge are even older. Mom has a 50 year old washer.

For non US readers the only thing class actions suits do is to enrich lawyers and allow companies to get off cheaply. Most class action offers I receive are tossed in the trash. If you are not offering me at least $20 USD cash it's not worth my time.

Six lawsuits against FCC's 5G idiocy – that $2bn windfall for telcos – is bundled into one appeals court sueball

HellDeskJockey

Re: That's rich.

My exact thoughts have an upvote. Gotta love the schadenfreude.

F***=off, Google tells its staff: Any mention of nookie now banned from internal files, URLs

HellDeskJockey

Most are professional in email, especially as in the states they are a legal record. Which can be made public in the event of legal troubles. Most have learned not to say anything in email you would not want said in public.

Now as to %[email protected]^%) phone calls.

Fast food, slow user – techie tears hair out over crashed drive-thru till

HellDeskJockey

Ahh Users

My personal favorite:

Customer: "Hi our equipment lost memory and data could you help us?"

Me: "Do you have a backup."

Customer: "No we've never done one." (On equipment they have had for 5 years or more)

Me: "Ok this will take a bit of time." (Typically 3 to 5 days of phone support)

Well at least every day is a day closer to retirement.

US Democrats call in Feds: There's something phishy going on with our voter database

HellDeskJockey

Re: Left hand .. Right hand

Will Rodgers said it best "I'm not a member of any organized political party. I'm a Democrat."

'Plane Hacker' Roberts: I put a network sniffer on my truck to see what it was sharing. Holy crap!

HellDeskJockey

Re: Insurance Black Boxes and the GDPR

Here in the states they actually have those devices. If you have poor credit you can buy a used car but it comes with a tracker/disabler. Miss a payment and the car can be disabled and tracked then repossessed if you do not make prompt payment. You "consent" to this so it's legal. If you don't consent they will not sell you a car.

A friend has one. Nice guy, but not the best credit risk.

Not OK Google: Massive outage turns smart home kit utterly dumb

HellDeskJockey

Local control. Not everything belongs on the internet.

Don't panic, but your baby monitor can be hacked into a spycam

HellDeskJockey

Re: Why would this need a mothership?

Good point I like my IOT stuff but I keep it local. Also you need to be careful how you communicate. My electronic deadbolts do not communicate wirelessly. I could upgrade to some but why would I add a security hole. Though with my house a good foot would do the trick. When thinking about IOT be sure to look at how they communicate.

You know that silly fear about Alexa recording everything and leaking it online? It just happened

HellDeskJockey

I like my smarthome but keep it off the internet. I have no need of clicking the lights on and off from work. Also while the stuff is getting better you should still have some technical knowledge. You will have to do some maintenance on it periodically. If you don't like tech use a light switch.

Ex-CIA man fingered as prime suspect in Vault 7 spy tool manuals leak

HellDeskJockey

It's possible in the US to be held on a different charge while they build the case against you. For example we have clear proof of a firearms charge. We will hold you on that while we investigate the murder charge.

Admin needed server fast, skipped factory config … then bricked it

HellDeskJockey

Default at 240. Many techs on the other side of the Atlantic would be cursing you. "My new computer doesn't work....."

Furious gunwoman opens fire at YouTube HQ, three people shot

HellDeskJockey

The truth is that if you are posting content on Google Facebook etc you are a digital serf. You are subject to the will of the creator and you can have your earnings cut off at their whim. While a gun was a direct cause of the injuries. The motive was a disagreement about whether the videos should be allowed to make money or not. YouTube decided and basically the creator had no alternative but to accept the result or revolt. There needs to be a way that a creator can appeal a decision and have it adjudged by a neutral third party. Something like a small claims court when the bar to entry is low enough that someone can feel that there is a practical appeals process.

This won't stop everything (crazy is gonna be crazy) but it will help to allow content creators to not feel abused by their digital overlords.

US mulls drafting gray-haired hackers during times of crisis

HellDeskJockey

Then again

A few grumpy oldsters might be just the thing. Listen kid if you try and breach this network once more there is going to be a drone over your house at ...... Now fuck off and let me take my nap.

If this laptop is so portable, where's the keyboard, huh? HUH?

HellDeskJockey

Re: @AC:There's portable... and then there's portable

An IBM 1401 that brings the memories back. I learned to program on one of them in school. It was old then in the 1970's but still worked. I still have a few old porta punch cards in an old box somewhere.

Shopper f-bombed PC shop staff, so they mocked her with too-polite tech tutorial

HellDeskJockey

As you can see from my handle quite a few years at the helldesk. We have durable industrial equipment. The problem with being an abusive customer is that we remember. I'll pretty much ignore your abuse during the encounter. But the next time when you need a favor, "Sorry we can't do that." Be friendly and courteous and I'm wiling to bend a few rules as needed.

Perv raided college girls' online accounts for nude snaps – by cracking their security questions

HellDeskJockey

Re: Everytime I see "Mother's maiden name" on the list of security question...

>Can't say as I keep any nude photos online either, not that anyone would be interested in seeing the >naughty bits of a sixty year old bloke.

You mean those young attractive women on the internet who tell me they like older umm larger men are lying to me? I'm in shock.

Disk drive fired 'Frisbees of death' across data centre after storage admin crossed his wires

HellDeskJockey

Well since I have spent most of my career working on CNC equipment lathes, machining centers mostly. There are quite a few stories one time we were troubleshooting and intermittent spindle problem on a 30 hp lathe. Well it stopped an there was nothing to do but go in the cabinet with lots of kit so you could not move easily and a multi v belt pulley (the better to cut fingers off). Found the problem shortly a micro switch was out of adjustment. All of a sudden the switch clicked it and WHOOSH motor starts at full speed. I scramble out as the operator is doing emergency stop. We both look at each other and he asks "Are you ok?" I respond with "Yes I think so" as I'm counting fingers. Thankfully things are a lot more safe these days. Lost a few friends from the Good Old Days.

Leaky-by-design location services show outsourced security won't ever work

HellDeskJockey

So what. If you were to location track my phone you would have found out the "TOP SECRET" information that my girlfriend and I went out for dinner last night.

However you could have easily found out the same information because; I used my credit card, we are known to the waitstaff, her older children greeted us when we returned to her house.

If I were to be doing something that required it I would take measures including no smart phones. But for my normal life I really don't care.

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2020