They run their own DNS so that, if they so choose, they can exercise control over DNS traffic and potentially monetise it. See VM's obnoxious 'Advanced Error Search' which gives you a search page instead of NXDOMAIN and thereby breaks VPNs.
94 publicly visible posts • joined 14 Aug 2007
Re: Disable CEIP?
I have CEIP switched off, but I can see my laptop still trying to resolve settings-win.data.microsoft.com and vortex-win.data.microsoft.com. I have them in an RPZ on my local resolver so it always gets NXDOMAIN. Haven't tried with the hosts file -- was worried that a future update could just revert my change.
Facial recognition is inherently unreliable
Remember when all plastic cards were going to have the account holder's photo on the back? That idea was trialled and scrapped when it was found that shop staff failed to identify a blatantly different person most of the time. It takes skill and practice to match a (probably bad) photograph to a stranger's face in a second or two. Difficult to see any layer of security here.
 I can't find a reference, sorry... and my memory is crap so this might all be rubbish.
> It's not like the video-part of it adds anything to proceedings that the court can act on ("This witness is obviously lying because he looks a bit shifty", etc.)
Actually that is something the court will take into account. The magistrate (or judge & jury) will often refer to the demeanour and manner of a witness if it goes to the veracity of their evidence. Police officers are witnesses in the same sense as any other witness, and it worries me that permitting them to give evidence behind a veil will give the prosecution a small but significant advantage. Sometimes money is worth spending in the interests of justice.
'professional facilitation of agile elaboration workshops'
I'm willing to bet that no-one, not even the author of that document, knows what that phrase means.
Presumably they just hire people who say 'yeah baby, I'll facilitate the crap out of those agile elaboration workshops, and professionally too'.
> > most people with a bit of brains will do anything to get out of jury service"
> Not sure I'd want my fate to be in the hands of a bunch of self-serving arseholes like that, however clever they might be.
Absolutely. Serving on a jury is a civic duty, and 'getting out of it' is simply selfish and anti-social. Equally so is watching your fellow jurors ignore or abuse the process without informing the judge.
I can't imagine taking a small, delicate effects box made of glass on stage with me. When they were designing the input jack thingy, they should have gone further and enclosed the phone in a gig-proof case, protecting the screen and the 3.5mm plug that's itching to come out at the worst possible moment. If this was properly gig-hardened then I'd definitely go for it.
> I can understand why people would be upset about losing a Final Salary Pension but to strike over it is counter productive, especially in the current economic climate.
I understand what you're saying, and if they had said 'everyone takes a 5% pay cut until things improve, or mass redundancies' then I'd have less sympathy for the dissenters. However, shutting the final salary scheme is permanent. You can bet that CSC won't give it back once the economy swings back to a boom cycle.
Demon don't know privacy
Today I phoned Demon to get them to check the access lists on a router they manage for my employer. All I gave them was the IP address of the router, and they told me everything I asked for. Didn't even give my name or company. More than a bit scary, and makes this story seem entirely expected.
Cat 6 cheaper? Hmm.
To install Cat 6, the average homeowner would have to rip their house apart to bury the cables. Hardly cheaper than PLT, not to mention the millions of tenants that don't have the option.
I have a degree of sympathy for hams being an ex-one myself, but PLT is hardly the same as burning rubbish. Frankly, one of the reasons I let my licence lapse was the high proportion of obnoxious self-important people in the hobby. Ham radio will always be an activity that lives on the margins of 'real' radio users, and something like this will always be round the corner.
Having said all that, if the devices really are in breach of regulations then the authorities must act, although I'm not sure what could be done for the large install base already present.
Keith T: 'IT people are often sent on technical courses as an alternative to giving them pay raises.'
Dead right... but an important factor is that most training courses are rubbish, and the delegates thereon walk away with nothing except an attendance certificate and an expenses claim.
In the last fifteen years I've only attended two training courses where the trainers REALLY knew their subjects, were actually good at teaching, and the material in use wasn't hopelessly out of date.
@Aaron et al -- spoofing hotspots
Having relatively recently implemented a web-capture-portal-type authenticating wireless gateway, I gave this a lot of thought... and came to the conclusion that, unless you know in advance what to expect as the host part of the URL when you get redirected to the login page, there's simply no way around this. It's not a new problem, but it's made worse by the sudden proliferation of BT hotspots, as people will expect to see them everywhere rather than in stations and airports.
Bad man carries pocket computer while walking through a town. Pocket computer advertises "BT OpenZone" (or whatever it is) as SSID, and redirects browser traffic to a domain for which he serves a valid SSL certificate. He presents a copy of the BT login page and collects the credentials. The SSL certificate is optional, as most users wouldn't think to check for an encrypted connection before logging in.
ISTR that there's existing malware that does this, advertising something like a "Free Wireless" SSID from its host.