Posts by john.jones.name

No AI is at present a LLM

it repeats

it repeats

it REPEATS

look up black mirror

Humans repeat... the difference is that we apply it in novel sequences

skibidi

finding flaws is frankly a human understanding how a human has used....

Re: Please don't normalize

Australian Antarctic Program is frankly a shizer show...

install some equipment to classify the birds plus a 360 camera and a web link

no so sad just want to go back drink coffee and count the whales...

Australian tax payers money at work doing feck all not science

science is important to Australia try actually doing it

DNSSEC is good DANE is better

this feels like well researched click bait

basically the certificate authority PKI based system is broken

99% use it

Those that do not have advantages of caching and they like that...

Those that do use TLS backed by a CA are susceptible (can be hacked) by a nation state without any trouble at all simply ask your local CA company (there are american and chinese CA's in your browser)

so really its a farce currently the only way out is DNS

if a chinese dissident contacts the americans the chinese have the power and can compel a CA to sign a cert that allows them to intercept all traffic and it appears to be signed by USA equally American dissident contacts the china the americans have the power and can compel a CA to sign a cert that allows them to intercept all traffic

IF we had DNSSEC and DANE then the local gov for that domain is in charge nothing to do with centralised power...

so yeah sign your domain its not hard

Re: imagination - what some people are better at than others...

"I mean, think of the LLMs, poor things."

damn them

SVG - hard and relevant

SVG is hard to implement and browsers still have not implemented it 100%

so any "owner" of the end viewing software gets to dictate how things are "rendered" so what the servers (those sending adverts or pretty pictures) gets to say, use and track

use standards like SVG (secure version) rather than canvas where google/bing/yahoo/cloudflare/Fastly/PageCDN can not track track you...

https://www.ietf.org/archive/id/draft-svg-tiny-ps-abrotman-04.html

YEAH NAH

actually ACMA did a awesome job

the telco's all 3.... did what ever they could to delay and not upgrade...

Australia has the same emergency service as MODERN european WITHOUT anything legacy... what does that mean ? 100%, (consider how hard it is to get 100% of anything) of the phones will when they phone 000 / 112 / 911 / 999 actually send a SMS (after 3 seconds) of their GPS fix and all the towers will triangulate as well to give the emergency services the best possible chance

fall down in a creek and your watch detects a fall it will give them the best chance of saving you

get bitten by a snake and phone for help they dont need to ask for directions

go the wrong way down the highway and phone for help... they dont need a translator to find you

FAARRK how many lives saved and your worrying about being forced to buy a phone that is not offshore model and not supported anymore vs the amount of money spent saving people spent by the tax payers

Visitors who turn up need a phone that works and need a modern version to get service and make calls so its one rule for all

ironically emergency is still supported for legacy bands for some time they just don't say that...

Australia is living in the future with regards bands allocation and LTE and 5G NSA / SA announced on their networks and we should be proud to save actual lives...

they dont have to "work" on it... theregister.com is cloudflare and they can do it...

dont get me started on HSTS policy but for IPv6

Log in to your Cloudflare account and go to a specific domain.

Go to Network.

For IPv6 Compatibility, switch the toggle to ON

its called dual stack

you dont need ipv6 on your webservers cloudflare will sort that out and the statistics remain the same...

this is pure lazy

If only someone actually did a A4 device

having something that actually is useful for the majority of publications would be nice

where is the A4 sized screen

first device that has A4 sized screen gets a truckload of money

dont worry they cant configure DNS

they do not configure DNS correctly - its always DNS

https://internet.nl/site/www.megaport.com/3172853/

all you have to do is sign it they use godaddy for registration and AWS for a DNS server so its one click... brilliant...

be better maybe also have a security reporting schema

regards

John Jones

otherwise known as hobsons choice

you have none

get over it

press relations matter

get a clue

This is HUGE TPM certs need to be changed

I dont think everyone has thought this through

they need to blow a efuse

change certificates

EVERYTHING is over for the AMD64 / X86-64 they need to change and update all the root of trust

far out this is what happens when you have HARDWARE that is MODIFIABLE (which most is now) you need a way of changing certificates and verifying them...

good luck

John Jones

principles of circuit different from tracing the circuit

when you send a PCB to manufacture,

you send artwork, a mask.

If they copied the artwork by tracing the PCB.

thats a problem

first of all ethically you don't understand whats going on or why, second you literally copied an artwork.

I can understand that its going to be a problem legally even if both are grey areas

nah buddy they dont care

they created access/easement (laying a road)

laid concrete

erected a tower of steel

laid fibre optics or linked up microware

NONE of which is good for environment or wildlife,

they literally cant electrocute the wildlife or shoot it with AI... or they would...

nature finds a way (do your freaking research on that phrase) Australia will screw you (the sun/radiation down here burns bad steel)

study a complex system for long enough and you will understand

exactly

there used to be an entire TLD .mobi targeted at mobile devices with these spec's

a few sites serve dedicated HTML depending on the user agent which I personally think is a good thing as long as its valid HTML

Re: Translation.

we edit press releases - police with no knowledge

WTF

do they think no system saves these ?

Re: Age Verification - far out telstra / optus etc already do this

FFS STOP

telecoms already do this

they want to get paid for it

screwing around "F*** Telstra" is a lesson learned...

kids will use the "web" scary concept

Security ?

how about they apply some security to their domains/websites

no HSTS or DNSSEC

maybe they should care about the security of their executives email... microsoft suddenly does after they got hacked... deploying DANE

OPTUS bad network for IPv6

actually Australia is doing quite well due to Telstra... of all companies

what is really holding us back is OPTUS not having a modern network

(they list as Microplex )

AS1221 ASN-TELSTRA Telstra Limited 79.14%

AS4804 MPX-AS Microplex PTY LTD. 0.21%

AS7545 TPG-INTERNET-AP TPG Telecom Limited 13.31%

AS4764 WIDEBAND-AS-AP Aussie Broadband 28.78%

AS9443 VOCUS-RETAIL-AU Vocus Retail 45.11%

if optus just started using their network correctly we could be up there with the best of them...

Re: 1) Why is spoofing still possible? - who do you trust

so yes you can have a system that verifies (SHAKEN/STIR attestation)

BUT you have to trust some root authority

BT etc dont want to trust and pay the american certificate providers

they could use DNS and self signed certs...

IPO prospectus

until you read the prospectus its all conjecture and even then its going to be full of weasel lawyer words

if I was being mean I would say they have become a fantastic broadcom VAR, doing very little to add capability beyond adding their own ASIC for what was called the southbridge in old intel terms...

on a positive note hopefully they could use some of the money to fund their own SOC with a full graphics stack (full openGL ES 3.2 and vulkan 1.3 compliance) rather than just broadcom

either way its been a good thing

Re: Good grief Charlie Brown

yes cloudflare do their website but really they should be able to manage that themselves with a failover to cloudflare...

its still pretty poor that their RPKI has portions that are not signed

dnsa.nominetdns.uk.

... 2001:502:ad09::/48 AS397215 not-found

... 2001:502:ad09::/48 AS397218 not-found

... 2001:502:ad09::/48 AS397220 not-found

there is a HUGE market in SSL certificate authority that they could quite easily setup plus the filtering market

then there is the phone number registry they could get into in a blink of an eye combined with the certificate business you could have SHAKEN/STIR monopoly which would be prefered to BT...

no the issue is trusting AV/mailware i.e. .trendmicro.eu

the problem is they only have 1 MX server and thats prefilter.emailsecurity.trendmicro.eu.150.70.226.147 its borked

email has failover and preferences for mail exchanging systems only using 1 trendmicro.eu is a bad design it should have a failover on a different domain at the very least...

even Microsoft know better...

Filtering and media reports - optus PR said nothing...

this is all because their where media reports theorising that the reason they could not get hold of optus was because Executives used only Optus and had no backup

I will tell you all members of rivals firms e.g. Vodafone carry known backup SIM and are instructed to swap to those as part of a BCP (business continuity plan)

I highly doubt it was a "personal" DR strategy they are just trying to either explain away the fact they did and said nothing for HOURS while the whole network was down

(the NOC will have been actioning and running full stream but the execs where shown to be pointless and did not communicate to their customers )

the real issue was while emergency calls (000 / 999 / 911) on GSM roam to whichever network is available and it that works for Optus as they are rarely the only carrier/provider in a area THEY HAD NO BACKUP solution for all their digital/VoIP lines beyond switching to Optus GSM which was also down - this effected HOSPITALS, doctors and trains

Frankly the Australian Government should be looking at how to regulate firms who are not publicly listed in australia and have responsibility to foreign owners

optus network assets and config has clearly been sweated and lack investment

they should have been filtering their routes and at a minimum using RPKI and investing in IPv6 like other ISP's... they did not and wanted as much money sent back to the parent corp as possible

when we see RPKI and IPv6 on the optus network then we will know the engineers have been given the budget and they actually have had the time to fix this mess...

do not trust them beforehand

reporting without walking

ISSUE: None of your web servers has an IPv6 address.

www.theregister.com IPv6 address = None

SOLUTION:

1/ Login to your Cloudflare account.

2/ Click the Network app.

3/ Toggle IPv6 Compatibility On.

ISSUE: Your domain is insecure, because it is not DNSSEC signed.

Domain Registrar for www.theregister.com = CSC Corporate Domains, Inc.

SOLUTION:

1/ Login to your Cloudflare account.

2/ Go to DNS > Settings.

3/ For DNSSEC, click Enable DNSSEC.

(In the dialog, you have access to several necessary values to help you create a DS record at your registrar CSC.)

ISSUE: Your web server supports TLS versions that should be phased out deliberately, because they are known to be fragile and at risk of becoming insufficiently secure. TLS 1.1 phase out

SOLUTION

1/ Login to your Cloudflare account.

2/ Go to Domain > “Crypto” tab

3/ choose the “Minimum TLS Version” as TLS 1.2

I dont think this is complicated. get on it.

Fibre underground is not effected by storms they strung it on poles...

I would bet they cheaped out and used aerial Fibre run

microsoft will have known this and didnt care thinking the other links would be fine until bang they didnt have capacity to balance a failure

1.6Pbps is the addition of all links its practically nothing if you have a lot of DC's with 100Gbps links

maybe just maybe they should have located "west" in more countries and not just the cheapest bandwidth wise...

data and network sovereignty have you heard of it ?

Re: Opensolaris anyone?

Linux killed Solaris, why buy expensive box's from sun/oracle that funded the spaghetti code maintenance when you could change it yourself or pay someone else cheaper (I'm not saying its better just cheap)

really the whole argument about RedHat/IBM removing src rpms is aimed squarely at Oracle everyone knows that, every time a redhat sales people walk into large accounts Oracle people are there or are going to be there saying they will do it for free and oh can we sell you a database/etl...