* Posts by john.jones.name

261 publicly visible posts • joined 1 Aug 2017

Page:

Sci-fi author Neal Stephenson wants AIs fighting AIs so those most fit to live with us survive

john.jones.name
Mushroom

Re: imagination - what some people are better at than others...

"I mean, think of the LLMs, poor things."

damn them

john.jones.name
Mushroom

imagination - what some people are better at than others...

some people have more than others

Variety can help but not always...

frankly when someone who wrote cryptonomicon

you listen

you learn

or your dog food

JJ

If Google is forced to give up Chrome, what happens next?

john.jones.name
Mushroom

SVG - hard and relevant

SVG is hard to implement and browsers still have not implemented it 100%

so any "owner" of the end viewing software gets to dictate how things are "rendered" so what the servers (those sending adverts or pretty pictures) gets to say, use and track

use standards like SVG (secure version) rather than canvas where google/bing/yahoo/cloudflare/Fastly/PageCDN can not track track you...

https://www.ietf.org/archive/id/draft-svg-tiny-ps-abrotman-04.html

UK's biggest mobile operator starts 3G switchoff, hopes it won't catch out April fools

john.jones.name
Mushroom

YEAH NAH

actually ACMA did a awesome job

the telco's all 3.... did what ever they could to delay and not upgrade...

Australia has the same emergency service as MODERN european WITHOUT anything legacy... what does that mean ? 100%, (consider how hard it is to get 100% of anything) of the phones will when they phone 000 / 112 / 911 / 999 actually send a SMS (after 3 seconds) of their GPS fix and all the towers will triangulate as well to give the emergency services the best possible chance

fall down in a creek and your watch detects a fall it will give them the best chance of saving you

get bitten by a snake and phone for help they dont need to ask for directions

go the wrong way down the highway and phone for help... they dont need a translator to find you

FAARRK how many lives saved and your worrying about being forced to buy a phone that is not offshore model and not supported anymore vs the amount of money spent saving people spent by the tax payers

Visitors who turn up need a phone that works and need a modern version to get service and make calls so its one rule for all

ironically emergency is still supported for legacy bands for some time they just don't say that...

Australia is living in the future with regards bands allocation and LTE and 5G NSA / SA announced on their networks and we should be proud to save actual lives...

Need cash? Your IPv4 stash can now be collateral for $100M loans

john.jones.name
Facepalm

they dont have to "work" on it... theregister.com is cloudflare and they can do it...

dont get me started on HSTS policy but for IPv6

Log in to your Cloudflare account and go to a specific domain.

Go to Network.

For IPv6 Compatibility, switch the toggle to ON

its called dual stack

you dont need ipv6 on your webservers cloudflare will sort that out and the statistics remain the same...

this is pure lazy

101 fun things to do with a locked Kindle e-reader

john.jones.name
Mushroom

If only someone actually did a A4 device

having something that actually is useful for the majority of publications would be nice

where is the A4 sized screen

first device that has A4 sized screen gets a truckload of money

Ampere bets on Arm to muscle into Intel's telco territory

john.jones.name
Mushroom

heard of fpga ?

FFS

telco is full of DSP, compression and backhaul

if AMD finally got it together instead of copying intel (and doing it better right now) then they could kill

AMD could dominate since they have FPGA with DSP heritage and ARM license...

but hey they are too focused on X86-64 which they only have to be marginally better than intel towin so why bother...

Tech jobs are now white-collar trades that need apprentices, not a career crawl

john.jones.name
Mushroom

dont worry they cant configure DNS

they do not configure DNS correctly - its always DNS

https://internet.nl/site/www.megaport.com/3172853/

all you have to do is sign it they use godaddy for registration and AWS for a DNS server so its one click... brilliant...

be better maybe also have a security reporting schema

regards

John Jones

Backup software vendor Veeam deleted forum data after restoration SNAFU

john.jones.name
Mushroom

otherwise known as hobsons choice

you have none

get over it

press relations matter

get a clue

Google: How to make any AMD Zen CPU always generate 4 as a random number

john.jones.name
Mushroom

This is HUGE TPM certs need to be changed

I dont think everyone has thought this through

they need to blow a efuse

change certificates

EVERYTHING is over for the AMD64 / X86-64 they need to change and update all the root of trust

far out this is what happens when you have HARDWARE that is MODIFIABLE (which most is now) you need a way of changing certificates and verifying them...

good luck

John Jones

Linus Torvalds offers to build guitar effects pedal for kernel developer

john.jones.name
Mushroom

principles of circuit different from tracing the circuit

when you send a PCB to manufacture,

you send artwork, a mask.

If they copied the artwork by tracing the PCB.

thats a problem

first of all ethically you don't understand whats going on or why, second you literally copied an artwork.

I can understand that its going to be a problem legally even if both are grey areas

Is that a bird’s nest, a wireless broadband base station, or both?

john.jones.name
Mushroom

nah buddy they dont care

they created access/easement (laying a road)

laid concrete

erected a tower of steel

laid fibre optics or linked up microware

NONE of which is good for environment or wildlife,

they literally cant electrocute the wildlife or shoot it with AI... or they would...

nature finds a way (do your freaking research on that phrase) Australia will screw you (the sun/radiation down here burns bad steel)

study a complex system for long enough and you will understand

john.jones.name
Go

Project managers hate them so a australian solution was found....

yeah nah...

they don't care for the wildlife

the wildlife eats their budgets and time... basically no crews would approach because well do you want to argue with a mother eagle on a tower next to its chicks

F that

build them a nest... note that there is no lightning protection surrounding the nest infrastructure that the built

now cockatoos they are the real freaking danger they eat wires...

see someone who built a nest https://industreegroupstadium.com.au/the-stadium/our-birds/

Chinese RISC-V project teases 2025 debut of freely licensed advanced chip design

john.jones.name
Mushroom

power and influence dear leader

Can 4G feature phones rise again on the back of QVGA, thin clients, and remote browsers?

john.jones.name
Holmes

exactly

there used to be an entire TLD .mobi targeted at mobile devices with these spec's

a few sites serve dedicated HTML depending on the user agent which I personally think is a good thing as long as its valid HTML

Interpol wants everyone to stop saying 'pig butchering'

john.jones.name
WTF?

Re: Translation.

we edit press releases - police with no knowledge

WTF

do they think no system saves these ?

Australia moves to drop some cryptography by 2030 – before quantum carves it up

john.jones.name
Thumb Up

already happening

X25519+Kyber

20.7% of TLS 1.3 traffic at cloudflare is using post-quantum encryption in Australia

Google's Chrome 124 enabled it by default this year, starting on April 17, and adoption grew rapidly following that release, including Chrome derivatives. Other browsers are on path as well: Mozilla Firefox has started rolling out post-quantum by default, and cloudflare observed Apple Safari starting initial testing.

whats surprising is I dont see SHA-384 being retired any earlier

Open source router firmware project OpenWrt ships its own entirely repairable hardware

john.jones.name

terribly nice but

I'm not sure buying from aliexpress is the best way to go and it lacks some features that a home network might need....

I ecourage you to look at

https://www.turris.cz/en/products/omnia/

Australia passes law to keep under-16s off social media – good luck with that, mate

john.jones.name
Mushroom

Re: Age Verification - far out telstra / optus etc already do this

FFS STOP

telecoms already do this

they want to get paid for it

screwing around "F*** Telstra" is a lesson learned...

kids will use the "web" scary concept

UK watchdog hints Voda-Three merger will likely pass

john.jones.name
Mushroom

Security ?

how about they apply some security to their domains/websites

no HSTS or DNSSEC

maybe they should care about the security of their executives email... microsoft suddenly does after they got hacked... deploying DANE

Vietnam plans to convert all its networks to IPv6

john.jones.name
FAIL

OPTUS bad network for IPv6

actually Australia is doing quite well due to Telstra... of all companies

what is really holding us back is OPTUS not having a modern network

(they list as Microplex )

AS1221 ASN-TELSTRA Telstra Limited 79.14%

AS4804 MPX-AS Microplex PTY LTD. 0.21%

AS7545 TPG-INTERNET-AP TPG Telecom Limited 13.31%

AS4764 WIDEBAND-AS-AP Aussie Broadband 28.78%

AS9443 VOCUS-RETAIL-AU Vocus Retail 45.11%

if optus just started using their network correctly we could be up there with the best of them...

White House thinks it's time to fix the insecure glue of the internet: Yup, BGP

john.jones.name
Flame

Australia and APAC is pretty bad

while yes the lumbering USA government depts are bad at this the main problem is APAC you know where most people actually live and have ISP's

https://isbgpsafeyet.com/

Optus need to get their network upgraded no IPv6 or RPKI

Green Berets storm building after compromising its Wi-Fi

john.jones.name

already and state of the art...

why do you think range rover insurance is so much...

most organised gangs already pay for wireless tools and have backpacks for clone of keys or relay attacks most camera's rtp server are trivial to overload/crash anything with a rolling keyfob again is trivial.

picking locks digital or otherwise was always done by professionals and criminals better than the Military simply because of motivations

looks like a lot of Teal box's that come from china in there...

UK crimebusters shut down global call-spoofing outfit that claimed 170K-plus victims

john.jones.name
Mushroom

Re: 1) Why is spoofing still possible? - who do you trust

so yes you can have a system that verifies (SHAKEN/STIR attestation)

BUT you have to trust some root authority

BT etc dont want to trust and pay the american certificate providers

they could use DNS and self signed certs...

Satellite phone service could soon become the norm

john.jones.name

PCRF

normally the problem is the User agent (UE) as with so much of networking it depends on the Equipment...

there is QoS applied and you will see this most often when someone is making a call in a train and the rest of the phones trying to consume plain data get bumped down for QoS reasons

the easiest way to get decent calls is to use a mobile/GSM handset that the operator has optimised for which in most of the world in a iPhone... and the best way in modern network is to use a iphone thats 5G capable so the latency can be reduced (if the operator has done their homework)

what you need is decent microphones/speakers and DSP paired with a good packet processing.

when we get standalone networks and full end to end packets then picking the fidelity of the sound wave will be possible right now its up to manufacturers and operators....

Raspberry Pi prepares to boot up a London listing

john.jones.name
Boffin

IPO prospectus

until you read the prospectus its all conjecture and even then its going to be full of weasel lawyer words

if I was being mean I would say they have become a fantastic broadcom VAR, doing very little to add capability beyond adding their own ASIC for what was called the southbridge in old intel terms...

on a positive note hopefully they could use some of the money to fund their own SOC with a full graphics stack (full openGL ES 3.2 and vulkan 1.3 compliance) rather than just broadcom

either way its been a good thing

Nominet to restructure, slash jobs after losing 'major deal'

john.jones.name
Mushroom

Re: Good grief Charlie Brown

yes cloudflare do their website but really they should be able to manage that themselves with a failover to cloudflare...

its still pretty poor that their RPKI has portions that are not signed

dnsa.nominetdns.uk.

... 2001:502:ad09::/48 AS397215 not-found

... 2001:502:ad09::/48 AS397218 not-found

... 2001:502:ad09::/48 AS397220 not-found

there is a HUGE market in SSL certificate authority that they could quite easily setup plus the filtering market

then there is the phone number registry they could get into in a blink of an eye combined with the certificate business you could have SHAKEN/STIR monopoly which would be prefered to BT...

Exchange Online blocked from sending email to AOL and Yahoo

john.jones.name
Mushroom

no the issue is trusting AV/mailware i.e. .trendmicro.eu

the problem is they only have 1 MX server and thats prefilter.emailsecurity.trendmicro.eu.150.70.226.147 its borked

email has failover and preferences for mail exchanging systems only using 1 trendmicro.eu is a bad design it should have a failover on a different domain at the very least...

even Microsoft know better...

Linus Torvalds postpones Linux 6.8 merge window after being taken offline by storms

john.jones.name

Det finnes ikke dårlig vær, bare dårlig klær!

how bad is the insulation ? this is not -40°C like you get in finland

Is it time for 6G already? Traffic analysis says yep

john.jones.name

3g turn off

once everyone turns off 3G and 2G then we will get better signal the amount of energy maintaining old Infrastructure is crazy

for Australia thats after 30 June 2024.

If your mobile device doesn’t have Voice over LTE (VoLTE) technology, even if it uses 4G, it will not be able to make voice calls on our network after 30 June 2024.

Finally we will be in a IP / Packet only network for telstra and Vodafone already is...

Telco CEO quits after admitting she needs to carry rivals' SIM cards to stay in touch

john.jones.name
Mushroom

Filtering and media reports - optus PR said nothing...

this is all because their where media reports theorising that the reason they could not get hold of optus was because Executives used only Optus and had no backup

I will tell you all members of rivals firms e.g. Vodafone carry known backup SIM and are instructed to swap to those as part of a BCP (business continuity plan)

I highly doubt it was a "personal" DR strategy they are just trying to either explain away the fact they did and said nothing for HOURS while the whole network was down

(the NOC will have been actioning and running full stream but the execs where shown to be pointless and did not communicate to their customers )

the real issue was while emergency calls (000 / 999 / 911) on GSM roam to whichever network is available and it that works for Optus as they are rarely the only carrier/provider in a area THEY HAD NO BACKUP solution for all their digital/VoIP lines beyond switching to Optus GSM which was also down - this effected HOSPITALS, doctors and trains

Frankly the Australian Government should be looking at how to regulate firms who are not publicly listed in australia and have responsibility to foreign owners

optus network assets and config has clearly been sweated and lack investment

they should have been filtering their routes and at a minimum using RPKI and investing in IPv6 like other ISP's... they did not and wanted as much money sent back to the parent corp as possible

when we see RPKI and IPv6 on the optus network then we will know the engineers have been given the budget and they actually have had the time to fix this mess...

do not trust them beforehand

Cisco to sell enterprise version of $400 Bang & Olufsen earbuds

john.jones.name
Flame

China DSP and SOC

I'll be none of the code has been vetted or even looked at which SOC are these double rebranded ear pieces based on ?

ServiceNow quietly addresses unauthenticated data exposure flaw from 2015

john.jones.name
Mushroom

good luck

good luck getting incident information unless your a customer...

Getting meshy: BAE scores £89m deal with MoD to build new battlefield network

john.jones.name

no way unless repackaging

unless they are repackaging existing kit there is no way 89M pays for custom radios

all you can do is essentially recenter the frequency around Military frequency allowances and even then 89M wont pay for all the actual engineering to be done...

all they will end up with is supply chain full of china/APAC based vendors rebadged with no clue that the kit is being used for military use...

intresting would be the split in fee's between BAE to Kellogg since those "consultants" don't have any RF experience they just talk a good game

AWS: IPv4 addresses cost too much, so you’re going to pay

john.jones.name
WTF?

reporting without walking

ISSUE: None of your web servers has an IPv6 address.

www.theregister.com IPv6 address = None

SOLUTION:

1/ Login to your Cloudflare account.

2/ Click the Network app.

3/ Toggle IPv6 Compatibility On.

ISSUE: Your domain is insecure, because it is not DNSSEC signed.

Domain Registrar for www.theregister.com = CSC Corporate Domains, Inc.

SOLUTION:

1/ Login to your Cloudflare account.

2/ Go to DNS > Settings.

3/ For DNSSEC, click Enable DNSSEC.

(In the dialog, you have access to several necessary values to help you create a DS record at your registrar CSC.)

ISSUE: Your web server supports TLS versions that should be phased out deliberately, because they are known to be fragile and at risk of becoming insufficiently secure. TLS 1.1 phase out

SOLUTION

1/ Login to your Cloudflare account.

2/ Go to Domain > “Crypto” tab

3/ choose the “Minimum TLS Version” as TLS 1.2

I dont think this is complicated. get on it.

BT hires chartered management accountant and telco veteran as next CEO

john.jones.name
Mushroom

be nice if they got rid of spam on their networks

SHAKEN system, short for Signature-based Handling of Asserted information using toKENs. would help...

if your going to switch people to digital voice and SIP it would be good to actually sign outgoing call's as coming from BT oh and can you sort out RPKI Route Origin Authorization at the same time this is basic stuff

Microsoft's Azure West Europe region blew away in freak summer storm

john.jones.name
Mushroom

Fibre underground is not effected by storms they strung it on poles...

I would bet they cheaped out and used aerial Fibre run

microsoft will have known this and didnt care thinking the other links would be fine until bang they didnt have capacity to balance a failure

1.6Pbps is the addition of all links its practically nothing if you have a lot of DC's with 100Gbps links

maybe just maybe they should have located "west" in more countries and not just the cheapest bandwidth wise...

data and network sovereignty have you heard of it ?

Oracle pours fuel all over Red Hat source code drama

john.jones.name
Mushroom

Re: Opensolaris anyone?

Linux killed Solaris, why buy expensive box's from sun/oracle that funded the spaghetti code maintenance when you could change it yourself or pay someone else cheaper (I'm not saying its better just cheap)

really the whole argument about RedHat/IBM removing src rpms is aimed squarely at Oracle everyone knows that, every time a redhat sales people walk into large accounts Oracle people are there or are going to be there saying they will do it for free and oh can we sell you a database/etl...

CEO sorry after telling staff to 'leave pity city' over bonuses

john.jones.name

where does that 26 million come from ?

do you rape the earth cutting down trees and extracting oil / plastics to achieve that ?

do you feel pity for those that suffer after you ?

maybe just maybe you should consider those that come after you and actually lead... NASDAQ: MLKN needs to be sustainable now not in 2030

Microsoft breaks geolocation, locking users out of Azure and M365

john.jones.name
WTF?

www.theregister.com FAILS by the same rationale

Whoever administrates www.theregister.com is VERY behind the times

ISSUE: None of your web servers has an IPv6 address.

www.theregister.com IPv6 address = None

SOLUTION:

1/ Login to your Cloudflare account.

2/ Click the Network app.

3/ Toggle IPv6 Compatibility On.

ISSUE: Your domain is insecure, because it is not DNSSEC signed.

Domain Registrar for www.theregister.com = CSC Corporate Domains, Inc.

SOLUTION:

1/ Login to your Cloudflare account.

2/ Go to DNS > Settings.

3/ For DNSSEC, click Enable DNSSEC.

(In the dialog, you have access to several necessary values to help you create a DS record at your registrar CSC.)

ISSUE: Your web server supports TLS versions that should be phased out deliberately, because they are known to be fragile and at risk of becoming insufficiently secure. TLS 1.1 phase out

SOLUTION

1/ Login to your Cloudflare account.

2/ Go to Domain > “Crypto” tab

3/ choose the “Minimum TLS Version” as TLS 1.2

I dont think this is complicated. get on it.

Power grid worries force Amazon to run Oregon datacenters using fuel cells

john.jones.name
Flame

generator ?

why don't they just call it what it is a generator powered by LPG

fuel cell implies hydrogen and solar but hey why bother actually constructing any sort of supply chain...

invest in the local supply chain for an alternative fuel... sounds like hard work...

Privacy on the line: Boffins break VoLTE phone security

john.jones.name
Mushroom

radio

this is more a radio attack linked to the fact radio should need to do this and lession is it should ONLY DO IP/data transport and trying to optimise by using specific LCID 4 and LCID 5 is DUMB

note using Wi-Fi Calling (plain SIP call) is not subject to this.

In praise of MIDI, tech's hidden gift to humanity

john.jones.name

Re: MIDI a great idea... on paper

apple...

john.jones.name

Singapore branches out onto internet of trees

john.jones.name
WTF?

Radio and lasts for ?

no where does the article say how the tilt sensor actually works i.e. is it bluetooth or Lora

how long does the battery last approximately

Australia asks FBI to help find attacker who stole data from millions of users

john.jones.name
Mushroom

No...

No we should not put up with this

They stored these details unhashed and allowed employee's to query it

this is exactly like passwords were stored previously before anyone with a clue started to have doubts (think 1970)

they should have been hashed (so you can compare still easily enough) and only unencrypted by a select few i.e. legal when dealing with warrants.

this is exceptionally bad design

its going to cost the government (taxpayers) a lot of pain and money dealing with the fall out of a private companies failure

India reportedly asks smartphone makers to add local satnav silicon

john.jones.name
Go

Re: "reduce dependence on foreign systems while improving accuracy"

Yes it will be more accurate because the Indian Regional Navigational Satellite System (IRNSS) is a regional satellite navigation system and as such designed to reach into Valleys and Streets with tall buildings.

There will be two kinds of services:

1/ Special Positioning Service (SPS)

2/ Precision Service (PS)

This is compatible with GPS devices both services will be carried on L5 (1176.45 MHz) and S band (2492.028 MHz). The navigation signals are transmitted in the S-band frequency and broadcast through a phased array antenna to keep required coverage and signal strength.

The data structure for SPS and PS takes advantage of the fact that the number of satellites is reduced since its not covering the globe and broadcast ionospheric corrections for a grid of 80 points to provide service to single frequency users.

There is no reason why device manufacturers can not update the software to decode these messages if their devices are receiving L5 GPS signals.

iPhone 14 Pro and iPhone 14 Pro Max are the first iPhones to offer dual-frequency GPS they are being exceptionally lazy only doing L1C/A

while ZenFone 6, OnePlus Nord, Galaxy S20, Pixel 4 etc all do L5 today

L5 GPS is something I look for on phones, It makes a huge difference

either way good for India for making Navigation better in their region !

Microsoft finds critical hole in operating system that for once isn't Windows

john.jones.name
Mushroom

it was dbus used for sound...

honestly what were they thinking, kill off all dbus and just use the same API as android

Brit techie shows us life in Ukraine amid Russian invasion

john.jones.name
Go

REDCROSS

while its terribly nice thought, airbnb is one of the worst ways to go aout this between fee's to credit card companies and employee's wages who are accountable to shareholders basically its NOT GOOD

we have a great way to donate time/money/resources to those caught in a warzone (setup specifically for this)

https://www.redcross.org.uk/

please share and donate what you can

Moscow to issue HTTPS certs to Russian websites

john.jones.name

Re: "Z" for zombies

thats false information see the certificate used in transport of this webpage

https://www.gov.uk/government/publications/email-security-standards/transport-layer-security-tls

Page: