security as default
I wish wordpress would include better security:
CSP
DNSSEC checks
X-XSS-Protection
Referrer-Policy
X-Content-Type
it really is not that hard to fold into the core
235 publicly visible posts • joined 1 Aug 2017
honestly LG you own the premier battery chemistry
make a Flip phone with 3x21700 user replaceable batteries in it out of metal (case) with a SD card and large android touch screen (as well as the physical keypad )
you could afford some great camera's on it as well... it would only have to be 4G
I know it would be HUGE in every way but honestly if it would last a week and people could treat it badly it would sell bucket loads
your welcome
John Jones
actually it will be the camera that changes things...
while most people think they are "good enough" once they see photo's from a penta pixel camera with a good ISP then things change...
( for example a 108 MP (7P lens), f/1.7, 25mm (wide), 1/1.33", 0.8µm, PDAF, Laser AF, OIS)
Samsung knows it and has invested the right way in my opinion by selling the camera sensor to other manufacturers who deal primarily in the largest smartphone markets Sony had better watch out !
8k video with 360 ability in a phone would be a nice selling point and would stop people turning phones around... you just need a front facing 34 Megapixel the same for the back and some nice software...
it is no-longer "a persons" company. Facebook is not Zuckerberg's company...
sorry thats VERY misinformed
in the case of Facebook it has a DUAL class share holding... same for Google
Bob Pisani at CNBC estimated earlier this year that Zuckerberg and the group of insiders control almost 70 percent of all voting shares in Facebook. Zuckerberg alone controls about 60 percent.
for google it has dual-class structure that included class B stock with 10 votes per share for existing investors, and class A stock with one vote per share for the public so guess who controls google...
the same can be said of companies like VW in germany where the workers union has a "golden ticket" so no matter what happens they get an outsized say in what happens
ALWAYS look at the class of share your getting...
great scott you want to access networks and such that are not located on EE and Vodafone ?
these pitiful speeds are to resources inside and close to the networks at EE and Vodafone which mean exactly NOTHING try accessing real world resources that actually CONSUME BACKHAUL bandwidth and this will be a very different number I'll bet
until someone actually does decent testing i.e. a good methodology then I will pass, if they show 100Mbps on a train ride / Commute to actual networks then I'll pay them money...
the problem is that end point (slab or phone or actual so called personal computer ) mostly have terrible resolvers which on a PC is most often down to Microsoft
So firefox decided to bypass the system (in the USA) and setup a TLS connection to cloudflare and send all the traffic to them (effectively over a SSL tunnel).
the BOFH who setup all those internal websites was none to pleased since support calls came in...
the BOFH who monitored for p0rn was none to pleased when everyone bypassed the controls...
solution from networking types was use a standard DoT which phones work with(modern android and MDM'd iPhones)... and respect the BOFH while still giving privacy if the BOFH allowed it... which they wont but then they will block DoH anyway via fancy DPI so that solves nothing either
my issue is that NONE of this infrastructure actually verified the answers they are getting.. how dumb is that ?
VERY
Microsoft realise that they have to do some engineering on their resolver I hope they realise verification is important...
Porsche was making its profits based on Volkswagen shares then the unions woke up and realised they had Volkswagen golden shares...
all a little different primarily because of unions, of which HP and xerox don't have those shareholdings
Xerox could easily get this done on a financial level however the competition watchdogs would understand printing and there is no way the EU would let it happen without heavy concessions which they are not going to make...
easy way would be for HP to say YES put your money in escrow and we want a break up fee...
HP SHAREHOLDER get deal breakup fee and increase in stock price !!! awesome job...
comparing the two 123reg and Mythic Beasts from a technical standpoint
actually 123reg have a valid DMARC record and Mythic beasts do not...
123reg.co.uk do not have IPv6 while Mythic beasts do
123reg do not have DNSSEC while Mythic beasts do
neither have DANE records... which is frustrating, time to fix that ?
VoLTE is IP based i.e. SIP and all phones would switch to 3G for any sort of voice interaction let alone Emergency call so this makes this a non investigation...
unless they somehow managed to make sure the phones never switched to 3G and routed the calls into /dev/null
does anyone know how to tell if a phone sends a SMS when they make an emergency call ?
salesforce hold an enormous amount of data and people are constantly spoofing them... they didnt want to be held to only one provider and did "the right thing"
(salesforce implementing DNSSEC gives me hope that somewhere in the money making machine is a couple of people who know what they are doing its a pity el reg cant flip the cloudflare switch themselves...)
the single vendor who could change everything is microsoft... they only have to implement DNSSEC validation on windows 10 (they do for windows server) and it would improve security and benefit all sorts of places...
Maybe suing them would help...
does nobody else finds it ironic that Mike Lynch made a point of not "storing" his emails on the Autonomy/HP server
Its like he didnt have a backup either...
he founded a discovery company and now in court is relying on the fact Autonomy didnt keep a record... If I was HP barrister I would at least point that out and at the same time be asking for a full transcript of all the emails and backups from Autonomy/HP and putting them into encase etc for a full search...
scary
the mind has adaptable IO...
pity Intel who has to ratchet up their Cache size to achieve good IO
at least they have put the USB-C on chip so that at least means good IO speed to the monitor
personally I wish they would put a radio receiver that is capable of being programmed for AM/FM/DVB-T/AIS/GPS i.e. a decent SDR front end now that would be KILLER !
everyone complaining about their coverage (even in Papworth) is pretty silly
the old GSM phones power requirements where poor and the battery life terrible, get a decent LTE endpoint and you wont those problems... just others...
Yes the commercial providers provision less bandwidth to old networks now since everyone wants more bandwidth on LTE / 3G
Current Emergency Services radio equipment are terrible for long distance. Plenty of evidence of that.
the solution is to get manufacturers to do LTE Device to Device (D2D) so that when your in a hole you can talk to the person 40 meters away from you...
since finland are going to be shifting to LTE for emergency network from Tetra it might be worth finding out what they are doing :
https://www.erillisverkot.fi/en
the sooner we all get Peer to Peer message passing on LTE/5G networks the better
what they are worried about is the spectrum for things like Doppler radar
you know those images that take up the most internet bandwidth on the internet excluding pornography
the problem is that the weather people are frankly useless at making their case because some of it is not really proven and the FCC is calling their bluff
personally I would like a real study conducted into the interference and how the weather radar could be improved with the spectrum rather than using the old "its not broken please do not fix it"
the FCC needs to harmonise with the rest of the world and should worry when NOAA etc turn up at their door
Do you need to run Thread 1.2 router on a seperate RF network or can it be solely IPv6 and Bluetooth ?
the natural place for Thread is the gateway router but you wont be able to upgrade that hardware any time soon however if you can provide a nice software upgrade then it might have a chance... otherwise its DNS Service Discovery and IPv6
any actual benchmarks would show that for server workloads (with security patches applied for Side Channel Attacks) it looks like Intel is toast...
that combined with custom design projects means that AMD is taking most of the data center and embedded design wins so intel is left with laptops and desktops... not much growth there...
they had better build that irish fabrication plant quick...
it actually makes the operators think about their radio frequency and coverage
that means actually planning how they are going to ditch 2G and refarm the frequency... typically 3G gets a slice of the lower frequency (goes further) so those with 3G handsets get more coverage.
the real A-LTE then gets more bandwidth also so again you get more coverage
5G is nothing more and nothing less than a solution for the "last mile" rather than those bell wires that BT rents you can now actually bypass them and connect your house on a multigigabit connection without having to dig the road between you and the exchange up !
plus finally we can ditch all that silly 3G infrastructure and move to a IP based network and everything becomes infinitely easier to manage. 3G becomes legacy and the speed is delivered via LTE and 5G handsets with the network not being forced to have capacity on 3G frequency.
they are two things...
frankly the nest login should die
works with nest api is not fully served by google assistant (by design the nest api leaks private details like when the occupant is home and away useful for a thief)
the problem is that COMPANIES who pay google bill's and have "account managers" complained...
to assume that google cares and deals with feedback is very misinformed...
Brotli can’t quite keep up with faster internet connections. For instance, a fast internet connection can upload several megabytes per second, but Brotli may require up to 20 seconds to compress just 4 megabytes of data. As an alternative to the Zopfli compression, using a greedy algorithm like gzip -9 to do the compression can waste up to 10% of the space but can keep up with almost any line speed.
Zen - actually pretty decent protect visitors to website against attacks with e.g. cross-site scripting (XSS) or framing only failure (and its big) is lack of DNSSEC and DANE to lock in TLS certificates on mail servers
AAisp - pretty decent again but has the advantage of IPv6 however lacks DNSSEC and DANE which is a fail
Talk Talk Failures
Mail :
NO DKIM
NO DMARC policy
insecure SSLv3
insecure RC4-SHA cipher suite
hash algorithm that is not secure on the certificate
NO DNSSEC
NO DANE
Their website has :
NO DNSSEC
NO X-Content-Type value
NO Content-Security-Policy (CSP)
Does not offer Referrer-Policy
Does not offer an HSTS policy
Allows for client-initiated renegotiation
this drives me nuts...
you actually need to test without a VPN and then with using exactly the same traffic
and check the links along the way... https://en.wikipedia.org/wiki/Measuring_network_throughput
basically go and download Wehe: Check Your ISP for Net Neutrality Violations http://bit.ly/2IAdbmD
app's are just a waste of time if your providing a free service
they are only useful if your charging someone....
but what about video conferencing ? have you ever heard of WebRTC... these people have not a clue about how to deliver digital services.
if the NHS or GP's published a web site with video embedded they could bundle it in a app container for those that...
just look at rocketchat they have all the regulations etc...
at least you can control exchange and hide it behind a firewall or inspection service...
e.g. office365 lacks DNSSEC and DMARC (even though Microsoft consume this information themselves customers are not to be trusted with actual security)
why oh why... since you use cloudflare...
how about adding a IPv6 address ?
how about enabling DNSSEC ?
These are simple to enable...
also your web developers could do with getting a better score than a F for Fail
https://observatory.mozilla.org/analyze/www.theregister.co.uk
https://observatory.mozilla.org/analyze/forums.theregister.co.uk
honestly the most important is DNSSEC
1. Log in to your Cloudflare dashboard.
2. Open the DNS app.
3. Scroll down to the DNSSEC module.
4. Click Enable DNSSEC.
5. A pop-up will open with instructions for how to add the DS record to your registrar.
Copy the DS record and paste it into your registrar’s dashboard.
Once your registrar publishes the DS record, your domain will be DNSSEC-enabled.
I bet the team at AWS / Annapurna love this:
"It does poorly benchmarking our website fully deployed on it: Nginx + PHP + MediaWiki, and everything else involved. This is your 'real world' test. All 16 cores can't match even 5 cores of our Xeon E5-2697 v4."
complete and utter garbage...
how many optimizations does the ARM Compiler emit/use vs the number for Xeon ? NONE
same with the geekbench its all garbage... until AWS / Annapurna actually get GCC to emit / optimize for basic things like AES then they don't have a chance and you cant get it into the mainline tree until you want to announce it. so lets see the code...
so the question is how much has it been optimised for floating point and what is the IO bandwidth like
IF and its a BIG IF they have a decent IO speeds that can compete with the Intel Xeon THEN it will be more than a negotiating tactic with Intel
john jones