* Posts by john.jones.name

244 publicly visible posts • joined 1 Aug 2017

Page:

Open source router firmware project OpenWrt ships its own entirely repairable hardware

john.jones.name

terribly nice but

I'm not sure buying from aliexpress is the best way to go and it lacks some features that a home network might need....

I ecourage you to look at

https://www.turris.cz/en/products/omnia/

Australia passes law to keep under-16s off social media – good luck with that, mate

john.jones.name
Mushroom

Re: Age Verification - far out telstra / optus etc already do this

FFS STOP

telecoms already do this

they want to get paid for it

screwing around "F*** Telstra" is a lesson learned...

kids will use the "web" scary concept

UK watchdog hints Voda-Three merger will likely pass

john.jones.name
Mushroom

Security ?

how about they apply some security to their domains/websites

no HSTS or DNSSEC

maybe they should care about the security of their executives email... microsoft suddenly does after they got hacked... deploying DANE

Vietnam plans to convert all its networks to IPv6

john.jones.name
FAIL

OPTUS bad network for IPv6

actually Australia is doing quite well due to Telstra... of all companies

what is really holding us back is OPTUS not having a modern network

(they list as Microplex )

AS1221 ASN-TELSTRA Telstra Limited 79.14%

AS4804 MPX-AS Microplex PTY LTD. 0.21%

AS7545 TPG-INTERNET-AP TPG Telecom Limited 13.31%

AS4764 WIDEBAND-AS-AP Aussie Broadband 28.78%

AS9443 VOCUS-RETAIL-AU Vocus Retail 45.11%

if optus just started using their network correctly we could be up there with the best of them...

White House thinks it's time to fix the insecure glue of the internet: Yup, BGP

john.jones.name
Flame

Australia and APAC is pretty bad

while yes the lumbering USA government depts are bad at this the main problem is APAC you know where most people actually live and have ISP's

https://isbgpsafeyet.com/

Optus need to get their network upgraded no IPv6 or RPKI

Green Berets storm building after compromising its Wi-Fi

john.jones.name

already and state of the art...

why do you think range rover insurance is so much...

most organised gangs already pay for wireless tools and have backpacks for clone of keys or relay attacks most camera's rtp server are trivial to overload/crash anything with a rolling keyfob again is trivial.

picking locks digital or otherwise was always done by professionals and criminals better than the Military simply because of motivations

looks like a lot of Teal box's that come from china in there...

UK crimebusters shut down global call-spoofing outfit that claimed 170K-plus victims

john.jones.name
Mushroom

Re: 1) Why is spoofing still possible? - who do you trust

so yes you can have a system that verifies (SHAKEN/STIR attestation)

BUT you have to trust some root authority

BT etc dont want to trust and pay the american certificate providers

they could use DNS and self signed certs...

Satellite phone service could soon become the norm

john.jones.name

PCRF

normally the problem is the User agent (UE) as with so much of networking it depends on the Equipment...

there is QoS applied and you will see this most often when someone is making a call in a train and the rest of the phones trying to consume plain data get bumped down for QoS reasons

the easiest way to get decent calls is to use a mobile/GSM handset that the operator has optimised for which in most of the world in a iPhone... and the best way in modern network is to use a iphone thats 5G capable so the latency can be reduced (if the operator has done their homework)

what you need is decent microphones/speakers and DSP paired with a good packet processing.

when we get standalone networks and full end to end packets then picking the fidelity of the sound wave will be possible right now its up to manufacturers and operators....

Raspberry Pi prepares to boot up a London listing

john.jones.name
Boffin

IPO prospectus

until you read the prospectus its all conjecture and even then its going to be full of weasel lawyer words

if I was being mean I would say they have become a fantastic broadcom VAR, doing very little to add capability beyond adding their own ASIC for what was called the southbridge in old intel terms...

on a positive note hopefully they could use some of the money to fund their own SOC with a full graphics stack (full openGL ES 3.2 and vulkan 1.3 compliance) rather than just broadcom

either way its been a good thing

Nominet to restructure, slash jobs after losing 'major deal'

john.jones.name
Mushroom

Re: Good grief Charlie Brown

yes cloudflare do their website but really they should be able to manage that themselves with a failover to cloudflare...

its still pretty poor that their RPKI has portions that are not signed

dnsa.nominetdns.uk.

... 2001:502:ad09::/48 AS397215 not-found

... 2001:502:ad09::/48 AS397218 not-found

... 2001:502:ad09::/48 AS397220 not-found

there is a HUGE market in SSL certificate authority that they could quite easily setup plus the filtering market

then there is the phone number registry they could get into in a blink of an eye combined with the certificate business you could have SHAKEN/STIR monopoly which would be prefered to BT...

Exchange Online blocked from sending email to AOL and Yahoo

john.jones.name
Mushroom

no the issue is trusting AV/mailware i.e. .trendmicro.eu

the problem is they only have 1 MX server and thats prefilter.emailsecurity.trendmicro.eu.150.70.226.147 its borked

email has failover and preferences for mail exchanging systems only using 1 trendmicro.eu is a bad design it should have a failover on a different domain at the very least...

even Microsoft know better...

Linus Torvalds postpones Linux 6.8 merge window after being taken offline by storms

john.jones.name

Det finnes ikke dårlig vær, bare dårlig klær!

how bad is the insulation ? this is not -40°C like you get in finland

Is it time for 6G already? Traffic analysis says yep

john.jones.name

3g turn off

once everyone turns off 3G and 2G then we will get better signal the amount of energy maintaining old Infrastructure is crazy

for Australia thats after 30 June 2024.

If your mobile device doesn’t have Voice over LTE (VoLTE) technology, even if it uses 4G, it will not be able to make voice calls on our network after 30 June 2024.

Finally we will be in a IP / Packet only network for telstra and Vodafone already is...

Telco CEO quits after admitting she needs to carry rivals' SIM cards to stay in touch

john.jones.name
Mushroom

Filtering and media reports - optus PR said nothing...

this is all because their where media reports theorising that the reason they could not get hold of optus was because Executives used only Optus and had no backup

I will tell you all members of rivals firms e.g. Vodafone carry known backup SIM and are instructed to swap to those as part of a BCP (business continuity plan)

I highly doubt it was a "personal" DR strategy they are just trying to either explain away the fact they did and said nothing for HOURS while the whole network was down

(the NOC will have been actioning and running full stream but the execs where shown to be pointless and did not communicate to their customers )

the real issue was while emergency calls (000 / 999 / 911) on GSM roam to whichever network is available and it that works for Optus as they are rarely the only carrier/provider in a area THEY HAD NO BACKUP solution for all their digital/VoIP lines beyond switching to Optus GSM which was also down - this effected HOSPITALS, doctors and trains

Frankly the Australian Government should be looking at how to regulate firms who are not publicly listed in australia and have responsibility to foreign owners

optus network assets and config has clearly been sweated and lack investment

they should have been filtering their routes and at a minimum using RPKI and investing in IPv6 like other ISP's... they did not and wanted as much money sent back to the parent corp as possible

when we see RPKI and IPv6 on the optus network then we will know the engineers have been given the budget and they actually have had the time to fix this mess...

do not trust them beforehand

Cisco to sell enterprise version of $400 Bang & Olufsen earbuds

john.jones.name
Flame

China DSP and SOC

I'll be none of the code has been vetted or even looked at which SOC are these double rebranded ear pieces based on ?

ServiceNow quietly addresses unauthenticated data exposure flaw from 2015

john.jones.name
Mushroom

good luck

good luck getting incident information unless your a customer...

Getting meshy: BAE scores £89m deal with MoD to build new battlefield network

john.jones.name

no way unless repackaging

unless they are repackaging existing kit there is no way 89M pays for custom radios

all you can do is essentially recenter the frequency around Military frequency allowances and even then 89M wont pay for all the actual engineering to be done...

all they will end up with is supply chain full of china/APAC based vendors rebadged with no clue that the kit is being used for military use...

intresting would be the split in fee's between BAE to Kellogg since those "consultants" don't have any RF experience they just talk a good game

AWS: IPv4 addresses cost too much, so you’re going to pay

john.jones.name
WTF?

reporting without walking

ISSUE: None of your web servers has an IPv6 address.

www.theregister.com IPv6 address = None

SOLUTION:

1/ Login to your Cloudflare account.

2/ Click the Network app.

3/ Toggle IPv6 Compatibility On.

ISSUE: Your domain is insecure, because it is not DNSSEC signed.

Domain Registrar for www.theregister.com = CSC Corporate Domains, Inc.

SOLUTION:

1/ Login to your Cloudflare account.

2/ Go to DNS > Settings.

3/ For DNSSEC, click Enable DNSSEC.

(In the dialog, you have access to several necessary values to help you create a DS record at your registrar CSC.)

ISSUE: Your web server supports TLS versions that should be phased out deliberately, because they are known to be fragile and at risk of becoming insufficiently secure. TLS 1.1 phase out

SOLUTION

1/ Login to your Cloudflare account.

2/ Go to Domain > “Crypto” tab

3/ choose the “Minimum TLS Version” as TLS 1.2

I dont think this is complicated. get on it.

BT hires chartered management accountant and telco veteran as next CEO

john.jones.name
Mushroom

be nice if they got rid of spam on their networks

SHAKEN system, short for Signature-based Handling of Asserted information using toKENs. would help...

if your going to switch people to digital voice and SIP it would be good to actually sign outgoing call's as coming from BT oh and can you sort out RPKI Route Origin Authorization at the same time this is basic stuff

Microsoft's Azure West Europe region blew away in freak summer storm

john.jones.name
Mushroom

Fibre underground is not effected by storms they strung it on poles...

I would bet they cheaped out and used aerial Fibre run

microsoft will have known this and didnt care thinking the other links would be fine until bang they didnt have capacity to balance a failure

1.6Pbps is the addition of all links its practically nothing if you have a lot of DC's with 100Gbps links

maybe just maybe they should have located "west" in more countries and not just the cheapest bandwidth wise...

data and network sovereignty have you heard of it ?

Oracle pours fuel all over Red Hat source code drama

john.jones.name
Mushroom

Re: Opensolaris anyone?

Linux killed Solaris, why buy expensive box's from sun/oracle that funded the spaghetti code maintenance when you could change it yourself or pay someone else cheaper (I'm not saying its better just cheap)

really the whole argument about RedHat/IBM removing src rpms is aimed squarely at Oracle everyone knows that, every time a redhat sales people walk into large accounts Oracle people are there or are going to be there saying they will do it for free and oh can we sell you a database/etl...

CEO sorry after telling staff to 'leave pity city' over bonuses

john.jones.name

where does that 26 million come from ?

do you rape the earth cutting down trees and extracting oil / plastics to achieve that ?

do you feel pity for those that suffer after you ?

maybe just maybe you should consider those that come after you and actually lead... NASDAQ: MLKN needs to be sustainable now not in 2030

Microsoft breaks geolocation, locking users out of Azure and M365

john.jones.name
WTF?

www.theregister.com FAILS by the same rationale

Whoever administrates www.theregister.com is VERY behind the times

ISSUE: None of your web servers has an IPv6 address.

www.theregister.com IPv6 address = None

SOLUTION:

1/ Login to your Cloudflare account.

2/ Click the Network app.

3/ Toggle IPv6 Compatibility On.

ISSUE: Your domain is insecure, because it is not DNSSEC signed.

Domain Registrar for www.theregister.com = CSC Corporate Domains, Inc.

SOLUTION:

1/ Login to your Cloudflare account.

2/ Go to DNS > Settings.

3/ For DNSSEC, click Enable DNSSEC.

(In the dialog, you have access to several necessary values to help you create a DS record at your registrar CSC.)

ISSUE: Your web server supports TLS versions that should be phased out deliberately, because they are known to be fragile and at risk of becoming insufficiently secure. TLS 1.1 phase out

SOLUTION

1/ Login to your Cloudflare account.

2/ Go to Domain > “Crypto” tab

3/ choose the “Minimum TLS Version” as TLS 1.2

I dont think this is complicated. get on it.

Power grid worries force Amazon to run Oregon datacenters using fuel cells

john.jones.name
Flame

generator ?

why don't they just call it what it is a generator powered by LPG

fuel cell implies hydrogen and solar but hey why bother actually constructing any sort of supply chain...

invest in the local supply chain for an alternative fuel... sounds like hard work...

Privacy on the line: Boffins break VoLTE phone security

john.jones.name
Mushroom

radio

this is more a radio attack linked to the fact radio should need to do this and lession is it should ONLY DO IP/data transport and trying to optimise by using specific LCID 4 and LCID 5 is DUMB

note using Wi-Fi Calling (plain SIP call) is not subject to this.

In praise of MIDI, tech's hidden gift to humanity

john.jones.name

Re: MIDI a great idea... on paper

apple...

john.jones.name

Singapore branches out onto internet of trees

john.jones.name
WTF?

Radio and lasts for ?

no where does the article say how the tilt sensor actually works i.e. is it bluetooth or Lora

how long does the battery last approximately

Australia asks FBI to help find attacker who stole data from millions of users

john.jones.name
Mushroom

No...

No we should not put up with this

They stored these details unhashed and allowed employee's to query it

this is exactly like passwords were stored previously before anyone with a clue started to have doubts (think 1970)

they should have been hashed (so you can compare still easily enough) and only unencrypted by a select few i.e. legal when dealing with warrants.

this is exceptionally bad design

its going to cost the government (taxpayers) a lot of pain and money dealing with the fall out of a private companies failure

India reportedly asks smartphone makers to add local satnav silicon

john.jones.name
Go

Re: "reduce dependence on foreign systems while improving accuracy"

Yes it will be more accurate because the Indian Regional Navigational Satellite System (IRNSS) is a regional satellite navigation system and as such designed to reach into Valleys and Streets with tall buildings.

There will be two kinds of services:

1/ Special Positioning Service (SPS)

2/ Precision Service (PS)

This is compatible with GPS devices both services will be carried on L5 (1176.45 MHz) and S band (2492.028 MHz). The navigation signals are transmitted in the S-band frequency and broadcast through a phased array antenna to keep required coverage and signal strength.

The data structure for SPS and PS takes advantage of the fact that the number of satellites is reduced since its not covering the globe and broadcast ionospheric corrections for a grid of 80 points to provide service to single frequency users.

There is no reason why device manufacturers can not update the software to decode these messages if their devices are receiving L5 GPS signals.

iPhone 14 Pro and iPhone 14 Pro Max are the first iPhones to offer dual-frequency GPS they are being exceptionally lazy only doing L1C/A

while ZenFone 6, OnePlus Nord, Galaxy S20, Pixel 4 etc all do L5 today

L5 GPS is something I look for on phones, It makes a huge difference

either way good for India for making Navigation better in their region !

Microsoft finds critical hole in operating system that for once isn't Windows

john.jones.name
Mushroom

it was dbus used for sound...

honestly what were they thinking, kill off all dbus and just use the same API as android

Brit techie shows us life in Ukraine amid Russian invasion

john.jones.name
Go

REDCROSS

while its terribly nice thought, airbnb is one of the worst ways to go aout this between fee's to credit card companies and employee's wages who are accountable to shareholders basically its NOT GOOD

we have a great way to donate time/money/resources to those caught in a warzone (setup specifically for this)

https://www.redcross.org.uk/

please share and donate what you can

Moscow to issue HTTPS certs to Russian websites

john.jones.name

Re: "Z" for zombies

thats false information see the certificate used in transport of this webpage

https://www.gov.uk/government/publications/email-security-standards/transport-layer-security-tls

Apple, Google, Microsoft, Mozilla agree on something: Make web dev lives easier

john.jones.name
Mushroom

just make SVG work so I can see graphs

rendering unreadable graphs is very annoying, vector graphics is the answer but the support despite standards is lacking...

if SVG worked in all the browsers I'm sure developers would use it and data visualisation would be clearer and better all around

Google blocks FOSS Android tool – for asking for donations

john.jones.name
Mushroom

Re: duh!

you would think that someone at OpenStreetMap Foundation would think of a creative way around this:

if you have a android phone install it and help map your neighborhood

on google play:

https://play.google.com/store/apps/details?id=de.westnordost.streetcomplete

on Fdroid

https://f-droid.org/packages/de.westnordost.streetcomplete/

if you would like to sponsor the developer:

https://github.com/sponsors/westnordost

(sadly he has very few and its a amazing bit of kit)

South Korean telco goes down, blames DDoS attack, later admits its BGP broke

john.jones.name
Go

if anyone from KT is reading this

please pretty please sort out your DNS

no DNSSEC security and optionally no IPv6 for

name2.kt.co.kr. None

name.kt.co.kr. None

name3.kt.co.kr. None

your corporate web server still supports MD5 which really should be phased out and indicates maybe lacking some security elsewhere...

You've heard of HTTPS. Now get a load of HTTPA: Web services in verified remote trusted environments?

john.jones.name
Mushroom

all terribly nice now how do you prevent Certificate Authorities screwing up

if anyone tells me there is a certificate transparency log I'll laugh...

basically you need a way to establish trust and frankly that requires a root or offline signing party and expensive safes (you know what they do for DNS party)

this has been rehashed (boom boom) so many times

Indian broadband connections top 800 million … sort of

john.jones.name

average 17.8 Mbps download and 9.65 Mbps upload - real numbers

Huge disparity in the results

even for a region an 2.73 Mbps download and 1.02 Mbps upload average

average was calculated across 5,190,664 samples at https://speed.measurementlab.net/

G7 countries outgun UK in worldwide broadband speed test

john.jones.name
Go

real numbers - Performance - Log Avg Throughput in UK (Mbps)

across 7,301,264 tests in the UK

the Log Avg download speed was 24.1 Mbps

the Log Avg upload speed was 7.21 Mbps

these are from https://speed.measurementlab.net/

which is what the USA used for their updated broadband map... why does the UK not have a broadband map?

go measure your own speed and contribute to the data set. https://speed.measurementlab.net/

john.jones.name
WTF?

Virgin media averages 53.85 over 1,512,184 tests - where are their numbers ?

I would love to know where they are getting those numbers from because the public tests of their network show 53.85 Log Avg (Mbps) over 1,512,184 tests.

wondering if they make false advertising about their speeds then can they be fined ?

Tired: What3Words. Wired: A clone location-tracking service based on FOUR words – and they are all extremely rude

john.jones.name
Mushroom

WHat Three Words - commercial algorithim that cant be shared without license payment

so you want to tie the ability to tell someone where you are to a commercial service?

Brilliant just brilliant didnt we go through this over a hundred years ago and decided it was not optimal

yes yes we did...

dont use what three words, it has errors and is annoying

scarily enough someone at google mapping tried not to be evil and set open location codes free

https://en.wikipedia.org/wiki/Open_Location_Code

if you want an Evaluation of Location Encoding Systems https://github.com/google/open-location-code/wiki/Evaluation-of-Location-Encoding-Systems

Former NASA astronaut and Shuttle boss weigh in on fixing Hubble Space Telescope

john.jones.name
Holmes

the USA have other scopes with same sort of design pointing at earth

I suspect there is a lot of shared systems.

maybe get them on the phone and point out the same things could happen to their equipment...

‘Fasten your seat belts, raise your tray table, and disconnect your Bluetooth headsets from the entertainment unit’

john.jones.name
Holmes

qantas never crash

Qantas gave up on in seat entertainment

they simply equip users who want a screen with a managed iPad and wired headphones

people who already have an iPad/android/windows simply can connect to the Wifi and download the entertainment app

everything is an app...

the App simply is a HTML interface to the onboard server which can stream movies or audio (podcasts)

basically like a netflix in the sky

WTF are United Airlines thinking ?

UK enters negotiations on a digital trade agreement with Singapore

john.jones.name
Thumb Down

yes singapore wash

basically singapore have ZERO tax on things like software so basically lots of software companies setup there and they now want to sell into UK...

this is exactly like ireland only much worse...

UK watchdog blesses Virgin Media and O2's union, says there's no risk of market distortion or competition loss

john.jones.name
Mushroom

ipv6 and gaming

IPv6 why use it ? its faster, it makes your game response times faster, xbox/playstation recommend and say this.

Western Australia rushes out legislation after cops access contact-tracing data to investigate serious crimes

john.jones.name
Mushroom

WA gov incompetance

the WA government proved themselves incompetent when they went with a checkin that was not private

the testing rates are terrible and so it spreads and no one is aware...

They could have stood up and used this on apple and google

https://covid19.apple.com/contacttracing combined with a private QR check in log that only gets sent when requested

oh I dont know much like New Zealand... so WA gov is worse than NZ...

let that sink in...

Snakes on a Plane meets The Simpsons as airline creates ‘whacker’ to scare reptiles away from parked A380s

john.jones.name
Mushroom

yeah but Africa just got hippo's and wild dogs

Australia has far more deadly animals and we dont go round hitting the bush we just walk to school and worry about magpies

Page: