* Posts by john.jones.name

214 posts • joined 1 Aug 2017

Page:

Brit techie shows us life in Ukraine amid Russian invasion

john.jones.name
Go

REDCROSS

while its terribly nice thought, airbnb is one of the worst ways to go aout this between fee's to credit card companies and employee's wages who are accountable to shareholders basically its NOT GOOD

we have a great way to donate time/money/resources to those caught in a warzone (setup specifically for this)

https://www.redcross.org.uk/

please share and donate what you can

Moscow to issue HTTPS certs to Russian websites

john.jones.name

Re: "Z" for zombies

thats false information see the certificate used in transport of this webpage

https://www.gov.uk/government/publications/email-security-standards/transport-layer-security-tls

Apple, Google, Microsoft, Mozilla agree on something: Make web dev lives easier

john.jones.name
Mushroom

just make SVG work so I can see graphs

rendering unreadable graphs is very annoying, vector graphics is the answer but the support despite standards is lacking...

if SVG worked in all the browsers I'm sure developers would use it and data visualisation would be clearer and better all around

Google blocks FOSS Android tool – for asking for donations

john.jones.name
Mushroom

Re: duh!

you would think that someone at OpenStreetMap Foundation would think of a creative way around this:

if you have a android phone install it and help map your neighborhood

on google play:

https://play.google.com/store/apps/details?id=de.westnordost.streetcomplete

on Fdroid

https://f-droid.org/packages/de.westnordost.streetcomplete/

if you would like to sponsor the developer:

https://github.com/sponsors/westnordost

(sadly he has very few and its a amazing bit of kit)

South Korean telco goes down, blames DDoS attack, later admits its BGP broke

john.jones.name
Go

if anyone from KT is reading this

please pretty please sort out your DNS

no DNSSEC security and optionally no IPv6 for

name2.kt.co.kr. None

name.kt.co.kr. None

name3.kt.co.kr. None

your corporate web server still supports MD5 which really should be phased out and indicates maybe lacking some security elsewhere...

You've heard of HTTPS. Now get a load of HTTPA: Web services in verified remote trusted environments?

john.jones.name
Mushroom

all terribly nice now how do you prevent Certificate Authorities screwing up

if anyone tells me there is a certificate transparency log I'll laugh...

basically you need a way to establish trust and frankly that requires a root or offline signing party and expensive safes (you know what they do for DNS party)

this has been rehashed (boom boom) so many times

Indian broadband connections top 800 million … sort of

john.jones.name

average 17.8 Mbps download and 9.65 Mbps upload - real numbers

Huge disparity in the results

even for a region an 2.73 Mbps download and 1.02 Mbps upload average

average was calculated across 5,190,664 samples at https://speed.measurementlab.net/

G7 countries outgun UK in worldwide broadband speed test

john.jones.name
Go

real numbers - Performance - Log Avg Throughput in UK (Mbps)

across 7,301,264 tests in the UK

the Log Avg download speed was 24.1 Mbps

the Log Avg upload speed was 7.21 Mbps

these are from https://speed.measurementlab.net/

which is what the USA used for their updated broadband map... why does the UK not have a broadband map?

go measure your own speed and contribute to the data set. https://speed.measurementlab.net/

john.jones.name
WTF?

Virgin media averages 53.85 over 1,512,184 tests - where are their numbers ?

I would love to know where they are getting those numbers from because the public tests of their network show 53.85 Log Avg (Mbps) over 1,512,184 tests.

wondering if they make false advertising about their speeds then can they be fined ?

Tired: What3Words. Wired: A clone location-tracking service based on FOUR words – and they are all extremely rude

john.jones.name
Mushroom

WHat Three Words - commercial algorithim that cant be shared without license payment

so you want to tie the ability to tell someone where you are to a commercial service?

Brilliant just brilliant didnt we go through this over a hundred years ago and decided it was not optimal

yes yes we did...

dont use what three words, it has errors and is annoying

scarily enough someone at google mapping tried not to be evil and set open location codes free

https://en.wikipedia.org/wiki/Open_Location_Code

if you want an Evaluation of Location Encoding Systems https://github.com/google/open-location-code/wiki/Evaluation-of-Location-Encoding-Systems

Former NASA astronaut and Shuttle boss weigh in on fixing Hubble Space Telescope

john.jones.name
Holmes

the USA have other scopes with same sort of design pointing at earth

I suspect there is a lot of shared systems.

maybe get them on the phone and point out the same things could happen to their equipment...

‘Fasten your seat belts, raise your tray table, and disconnect your Bluetooth headsets from the entertainment unit’

john.jones.name
Holmes

qantas never crash

Qantas gave up on in seat entertainment

they simply equip users who want a screen with a managed iPad and wired headphones

people who already have an iPad/android/windows simply can connect to the Wifi and download the entertainment app

everything is an app...

the App simply is a HTML interface to the onboard server which can stream movies or audio (podcasts)

basically like a netflix in the sky

WTF are United Airlines thinking ?

UK enters negotiations on a digital trade agreement with Singapore

john.jones.name
Thumb Down

yes singapore wash

basically singapore have ZERO tax on things like software so basically lots of software companies setup there and they now want to sell into UK...

this is exactly like ireland only much worse...

UK watchdog blesses Virgin Media and O2's union, says there's no risk of market distortion or competition loss

john.jones.name
Mushroom

ipv6 and gaming

IPv6 why use it ? its faster, it makes your game response times faster, xbox/playstation recommend and say this.

john.jones.name

network investment

@idiot taxpayer here again

why invest in this DSL thing I already have banks of 56k modems

its not like they are ever going to make bigger web pages or ask my to do meetings on the internet are they ?

oh wait

john.jones.name
Alert

just look at if they do IPv6

Sky yes

BT yes

EE yes

Andrews & Arnold yes

Zen yes

Three yes

Virgin Media no

o2 uk no (while EU o2 does)

talks to the level of investment in their network even if you do not use IPv6

Western Australia rushes out legislation after cops access contact-tracing data to investigate serious crimes

john.jones.name
Mushroom

WA gov incompetance

the WA government proved themselves incompetent when they went with a checkin that was not private

the testing rates are terrible and so it spreads and no one is aware...

They could have stood up and used this on apple and google

https://covid19.apple.com/contacttracing combined with a private QR check in log that only gets sent when requested

oh I dont know much like New Zealand... so WA gov is worse than NZ...

let that sink in...

Snakes on a Plane meets The Simpsons as airline creates ‘whacker’ to scare reptiles away from parked A380s

john.jones.name
Mushroom

yeah but Africa just got hippo's and wild dogs

Australia has far more deadly animals and we dont go round hitting the bush we just walk to school and worry about magpies

If your internet wobbled last weekend, you have Vodafone India to thank for it

john.jones.name
Mushroom

RPKI and DNSSEC....

vodafone idea need to get it sorted ASAP

they have nothing modern

no IPv6

no DNSSEC

no RPKI

no DANE

wonder why everyone is leaving to Reliance...

Spy agency GCHQ told me Gmail's more secure than Microsoft 365, insists British MP as facepalming security bods tell him to zip it

john.jones.name
Mushroom

Some products have DANE

Microsoft Office 365 lacks DANE support yet the feature is coming to Exchange Online servers....

so yes they both are planning to support DANE and not at the same time...

https://techcommunity.microsoft.com/t5/exchange-team-blog/support-of-dane-and-dnssec-in-office-365-exchange-online/ba-p/1275494

GMAIL can support DANE now if you get the MX right and sign your own domain so technically gmail is more secure.

I hope Microsoft product managers might pay attention and follow through...

Lenovo's latest gaming monster: Eight cores, 3.2GHz, giant heat sink, two fans. Oh, and it has a phone bolted on

john.jones.name
Go

APAC will eat this up (inc Australia)

Honestly I see this doing exceptionally well in APAC

what would have been nice is the ability like the Motorola desktop mode to the Edge+ to a display over video-enabled USB-C or USB-C-to-HDMI.

basically allowing Playing mobile games on the big screen as a bonus it allows a controller and big screen...

UK's National Cyber Security Centre recommends password generation idea suggested by El Reg commenter

john.jones.name
Mushroom

passphrase

exactly

Mimecast bins SolarWinds and compromised servers alike in wake of supply chain hack

john.jones.name
FAIL

no DNSSEC and no enforcement of its own cipher preference

their DNS servers still do not have DNSSEC (pretty basic) even though it can be abused and their website enforcement of its own cipher preference is not present.

not exactly a good look.

Fix the DNSSEC ASAP for your customers sake

AWS throws its home-grown Arm CPUs at new memory-intensive instance type

john.jones.name
Stop

type of ram ?

not all RAM is created equal...

How fast is read time and write time for not cached entry ?

How much cache does core have and what is the hit rate ?

Does storage detect Errors ?

UK dev loses ownership claim on forensic software he said he wrote in spare time and licensed to employer

john.jones.name
Stop

teach them how to use dd

anyone can create a clone from a device using dd

I would hope that most forensics teams would know and use dd rather than some commercial toolset that would be trivial to subvert with a aggrieved principle author...

the mind boggles

Snapdragon X65: Qualcomm says its next-gen 5G modem handles up to 10Gbps downloads, knows if you're holding it wrong

john.jones.name
Holmes

I cant see a single Qualcomm 5G modem CPE win

I see Balong 5000 modem everywhere

if they are serious they need to do a Home office modem

(its not like there is a pandemic and people are working from home or anything)

Choc horror: The UK's Information Commisioner probes its own mammoth £6,248 Hotel Chocolat spend

john.jones.name
Mushroom

was it fair ?

if 500 each got a equal share then all power to them

If the directors only got a share...

the Vegan chocolate box is around £12.50

anyone from ICO wants to post as anonymous to say if staff got chocolates ?

Nominet faces showdown with British internet industry: Extraordinary vote called to oust CEO, board members

john.jones.name
Mushroom

security... won't someone think of the webservers...

when someone reefers to security I always want to scream that's your job... The Base not an extra that you should be praised for...

For example the nominet web server does not even enforce its own cipher preference so maybe just maybe you should fix that BASIC thing.

This is a public facing supposedly security conscious root of trust type organisation and it cant even get its website security right... who knows whats going on behind the scenes.

I have no pity

After 11 years, Australia declares its national broadband network is ‘built and fully operational’

john.jones.name
Go

Fibre to the Premises

5G is a joke you only have to look at a coverage map of Australia to understand that they can only install Antenna masts where there is Fibre... your essentially sharing a Fibre connection

Maybe the current bunch of bastards (Australia slang for members of parliament) get in again the NBN might well be sold off to the highest bidder and the highest bidder will maximise the shareholder value by doing what telstra has done for the last years, the bare minimum to keep the money rolling in (nothing but repair and slow upgrades to existing infrastructure) there will be NO INVESTMENT.

if australia wants to be connected then INVESTMENT is the only way things will IMPROVE.

Vote for the bastards that INCREASES investment and provide for a way to EARN money in diverse places rather than just in the city (which has plenty of fibre).

UK firm NOW: Pensions tells some customers a 'service partner' leaked their data all over 'public software forum'

john.jones.name
Stop

Re: 2%...

NOT a great idea... fines impact the organisation BETTER to impact the executives FINE the BOARD members take their house/pension and you will see security and response being prioritised

banks do this when you get a loan why cant regulators...

Expect €5m cloud, says European Centre for Midrange Weather Forecasts

john.jones.name
Mushroom

only JUST in the UK as of December 10th

Dublin tried to entice ECMWF to relocate it was only recently that they renewed the UK Government commitment to build new headquarters and research facilities for ECMWF on the University’s Whiteknights campus, as confirmed by the UK Science Minister, Amanda Solloway, on 10 December.

“We welcome the clear statement from the UK Science Minister Amanda Solloway, which highlights the strong UK commitment to relocate ECMWF’s core work to new premises at the University of Reading.

“Reading is one of the world’s leading scientific centres for weather, climate and environmental science. The combined power of researchers based at the University of Reading, including units of the UK Met Office and the Natural Environment Research Council, plus the core work of the European Centre for Medium-Range Weather Forecasts, will continue to represent a scientific force that benefits the whole world.”

AWS is fed up with tech that wasn’t built for clouds because it has a big 'blast radius' when things go awry

john.jones.name
WTF?

chip looks like the Annapurna Labs

this is general purpose mid range ARM stuff that is cheap hence why they are putting it into a NIC yes it can run linux and do offload for the main general purpose processor.

really this is general purpose processor being pushed into places to replace application specific integrated circuits that used to do offload, basically the complete opposite of what the exec is talking about...

dont let the details get in the way of a good story for the executive...

Pure frustration: What happens when someone uses your email address to sign up for PayPal, car hire, doctors, security systems and more

This post has been deleted by a moderator

Remember when the keyboard was the computer? You can now relive those heady days with the Raspberry Pi 400

john.jones.name
Stop

NO OpenGL ES 3.2 still ?

still no OpenGL ES 3.2 so graphics is a real pain... everything else is nice but OpenGL ES 3.2 would mean it rocked as a games device

Adobe updates Creative Cloud: Pushes out Illustrator for iPad and full sky replacement in Photoshop

john.jones.name

Re: What does "Content Authenticity" even mean?

its the reverse from what you think it is... its not about the ability to remove meta data its about ADDing

if you want to be able to prove that the photo was taken by bob and has not been altered i.e. hash signature preservation even after editing (prove you just altered the white balance and nothing else)

its all meaningless if websites strip the metadata

john.jones.name
Stop

the websites...

until websites support correctly:

http://www.embeddedmetadata.org/social-media-test-results.php

Instagram is the worst offender and could be turned around easily...

make sure your websites correctly attribute images/text and do not strip metadata.

Transport for London data pilot: We want to keep tabs on dockless bikes and e-bikes

john.jones.name
WTF?

dumped - gyro

the operators can easily see if the scooter is lying on its side (they have a gyro in the tracking package) and also can obtain the location via GNSS / Wifi / Bluetooth

they could start to report users or at least warn them to prop it upright in a safe place...

but thats ot really in the companies intrest and they will only do it if regulated to do so...

gbfs is pretty much useless for the regulator and gives no feed of the routes taken nor if it was dumped on its side vs standing upright it has things like android pay which is not really relevant for a regulator...

England's COVID-tracking app finally goes live after 6 months of work – including backpedal on how to handle data

john.jones.name
Go

its how you correct that matters

People make mistakes.

The important thing is how you correct mistakes

Australia are you paying attention.

'Mindset reset' contributes to £1bn extra costs and another delay – 2 years this time – for Emergency Services Network

john.jones.name
WTF?

how is software called Kodiak supposed to work ?

how is software called Kodiak supposed to work if the handsets are all IP ala 5G stand alone and they go out of range then do they create their own network no matter the provider they where using ?

someone clearly does not understand how networks actually work... unless I'm missing something ?

Equinix warns it's infected with ransomware, promises it can carry on regardless

john.jones.name
Stop

customer details ?

Have customer details such as people who are authorised to have access been compromised ?

(i.e. my details )

I have a sneaky suspension they have and the longer they deny it the more customers that will swear never again...

Reputations are everything and this is not the time to fudge or use a play book for a security investigation.

Remember the Titans: Yubico jangles new NFC and USB-C touting security key

john.jones.name
Mushroom

standard = Webauthn

Webauthn :

It is currently supported in Windows 10 and Android platforms, and Google Chrome, Mozilla Firefox, Microsoft Edge and Apple Safari (both mobile and desktop) web browsers.

Nominet backtracks on .uk domain expiration money grab, critics still fear sweetheart deal to come

john.jones.name
FAIL

exactly Not fit for purpose

they have not benefited security

they have not benefited the domain holders

they have not benefited the networks (domain registrar is not a network)

they have benefited themselves.

I would love to see a well thought out legal challenge to their "oversight" I suspect that the legal dept has a greater payroll budget than their technical dept...

payroll say's everything

Palantir: Never made a profit, we do something with family-separating ICE, we just lost $580m – please join our IPO

john.jones.name
Holmes

your right

its a tool built in java to search across information sources... nice but realistically this is what perl was created for, you have to wonder why the gov agencies did not do this themselves if they have that sort of budget but it's the American way... expensive consultants.

If they can spend that sort of money to get into gov contracts then maybe just maybe they can live of the fat of maintenance although with things transitioning it's going to be hard regardless of the politics.

Supreme Court rules against Huawei in long-rolling Unwired Planet patent sueball: Take the licence terms we set or else

john.jones.name
Mushroom

2 things

1/ they are a patent troll and infact boast about it with 16 employees and no products. What it does have is a portfolio of more than 2,000 patents, mostly acquired from Ericsson AB.

2/ I wonder if they paid for the courts time ? otherwise the UK tax payer forked out for exactly nothing...

FYI: Chromium's network probing accounts for about half DNS root server traffic, says APNIC

john.jones.name
Stop

DNSSEC validation

if they validated the DNS response signatures then they could stop doing that...

Arm, Vodafone flex their muscles to show Cisco they’re fighting fit on the edge

john.jones.name
Go

would that be a 16 core machine ?

Features

16 Cortex-A72 CPU cores, running up to 2.2GHz

18MB cache/on-chip memory

Up to 16 Ethernet ports

Supported Ethernet speeds include 1, 2.5, 10, 25, 40, 50, and 100 gigabits per second

114Gbps Layer 2 Ethernet switch

Up to 24 PCIe Gen3 lanes, supporting ports as wide as x8

50Gbps security accelerator

100Gbps data compression/decompression engine

Page:

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2022