Posts by Drew Scriver

Could have sold management on a fail-open config at that point, right? ;-)

Re: Criminal to pay Criminals?

I had the opportunity to pursue the role of Director of Cyber Security to form (!) a security team at a large regional utility in the west of the USA a few years ago.

The utility fell under city government.

Took one look at their public-facing web site and other city-run web sites (mixed HTTP/HTTPS content, Qualys SSL score of "F") and told the person who contacted me that I was not interested.

Figured the level of support I'd get from management would be close to zero, but whomever got the job would be sacrificed at the first sign of a breach.

Over a decade ago there was a bill in the Massachusetts legislature that would have made executives personally liable for breaches if they had been informed of vulnerabilities but failed to adequately address them.

The bill failed.

Re: Presumably the fuckwits in charge ...

Where's that PR-template again? Google: "press release template for hacked comanies".

Oh, here it is.

"While our [service name] has experienced a limited and temporary reduction in service, [company name] remains committed to the highest standards of security. We are working diligently to resolve the situation and we have no evidence that our core operational systems were compromised."

Why 13? The Cyber world might well be a better place if 'contributing' were limited to those of voting age...

Re: Turn the headline around.

Spot on.

Trouble is that HR and (executive) management tends to attract bubbly extrovert types who thrive on get-togethers and team games on stage.

Notwithstanding the rhetoric about "inclusion and diversity", their ultimate goal seems to be to "fix" the nerds and help (force?) them "reach their full social outgoing potential" so they can be "normal human beings".

For proof one only has to look at the Open Office Floorplan that was foisted on tech workers. It was declared a success even before implementation. Anyone objecting was told "they'd learn to love it" and naysayers were dubbed "saboteurs of true interaction". Answers to survey questions to gauge buy-in tended to be limited to variations of "Love it!" and "Absolutely love it" - and the execs declared that they had been right all along. After all, the survey said so.

Re: Some products are expected to display energy ratings

There's a company that makes high(er) end coffee grinders that puts stickers on the units that read:

"STOP! Don't Dump It - Fix It!"

It's designed to be fixed by the consumer. I'm the very happy owner of one of their grinders.

Re: ...-boffin

One man's hack is another man's release code...

Iterative design. Agile development. Nimble coding.

Unfortunately, those terms are often redefined to function as justification for poor coding, lack of planning, avoidance of testing, and a general disdain for user-focused design. In short - a hack.

An anecdote along the same lines. A number of years ago I found myself having to come up with all kinds of "workarounds" and "creative hosting solutions" to fix poorly coded applications. This lasted for years, until I started calling my 'creative solutions' and 'workarounds' by the happy name of "kludges".

Calling a spade a spade was quite satisfactory, especially in the titles of Change Requests. Oh, the fun I had defending my solutions in CAB-meetings! What do you mean by "Implement kludge to ensure data integrity"?

As expected, it caused quite a bit of consternation among management - especially on the development side of the house. Although I was pressured to refrain from calling my hacks "kludges" in the end it resulted in a focus on quality among the developers.

Your post needs a trigger warning*.

Isn't "house" a privileged term also? Vast numbers of people have no access to houses. At the very least they might be reminded of their plight every time they encounter the word.

*Isn't "trigger warning" problematic in and of itself? After all, triggers tend to refer to implements of war.

The point I am trying to make is that stripping communication of all words that might be deemed offensive by any one individual will soon leave us speechless.

By the way, what I am missing in most of these edicts is whether the people for whom this is done have themselves be consulted on the matter.

Re: Huawei will this end?

Right - all Trump's fault.

But explain how most large companies have had policies in place long before Trump became president that require the use of disposable tech for visits to China. Upon their return the equipment may not be connected to the corporate network and has to be destroyed.

Maybe, just maybe it's because they have due cause to suspect foul play on the part of the People's Republic?

On a related note, why are T-shirts, flags, and the like with Ernesto's likeness so popular among many on the left in the USA?

Even as a non-supporter of Trump that makes me wonder...

Re: As expensive as flagship phones are they should be grateful anybody ever upgrades.

Do those execs really believe it is realistic to expect consumers to spend $10,000 on phones in 10 years? Or even $5,000 in 10 years? For every person in the household?!?!

Even whitegoods don't cost that much - and you only need one of each appliance for the entire household...

Re: Interesting

Maybe tonight. At the moment they're busy interviewing Pai for the new job.

Re: UK Crayon Departments are just as bad

Over the the years I've come across quite a few issues with names. Here are a few gems:

1)

A car manufacturer that wanted to introduce their S5-model in the Netherlands. I was part of the market research team that had been hired. My supervisor told me the project was going to run for several weeks. I predicted it would be abandoned within a few days. S5 is the Dutch military designation for failure to pass the intelligence test...

2)

The Project Management Team at a company I worked for jumped on the bandwagon to call everything "Services". So, PMT naturally became "PMS". A gal in the neighboring cubicle pod worked for this team, and we could never keep a straight face when she answered the phone. "Good morning, PMS, this is Susie."

3)

Another team decided to run a campaign called "No More Lies". It had to be catchy, of course, so they settled on "No Moo Lies". With the domain name "nomoolies.com". Fortunately they dropped that when I pointed out that "moolies" is a derogatory slang term.

4)

Just this year a school district in the US created a new website for their online school. The county name starts with an "H", so add "Online School" and you get "hos"... They did in fact use the subdomain "hos.schooldistrictname.org". A quick online search would have immediately revealed that "hos" is not exactly an appropriate term. Radio talk show hosts have lost their jobs over the use of it...

Re: print-free-for-life plan was "an introductory offer,"

Given the quality of some of their gear, a couple of years truly is a lifetime...

Re: Cars collect some interesting data...

Agreed, but they could have just installed a sensor that triggered above a set force. Turning the seat into an actual scale seems overkill.

But it would be funny to install that LCD and display the actual weight of the passenger. Would be a great conversation starter...

"What's that number in front of me? I've noticed it before, but it used to be below 100. Now it's over a 100."

"Oh, that. It's a metric mass gauge. Came with the car."

The tech companies could do it, but they prefer compliant workers who don't complain, never ask for a raise and can't look for jobs elsewhere.

H1-B is a the best thing since the days that entire villages were built and owned by the company.

Re: Won't work

You forgot ML and the Digital Divide.

"Fifty-two different states with fifty-two different voting systems feed into an electoral college designed in the days of slavery."

There was a candidate once who said "57 states", and he was elected president of the United States of America.

But writing "52 states" in an effort to make the case for online democracy? The remainder of the article is equally challenged. The USA are not a country in the sense of a single European country like Belgium or the Netherlands. It's better compared to the European Union. Any takers to have Brussels dictate how the elections are run in each EU country?

Then there's the misguided premise of "old is by definition bad, new is by definition good" that permeates the article like the scent of President Snow's roses...

But hey, I'll play along. Currently, in order to vote you have to either be 18 (something about wisdom, life experience) or pass a civics test. Don't know how many seats there are in the House? Can't remember the name of the Speaker of the House? The number of Supreme Court Justices? Who wrote the Federalist Papers? No citizenship through naturalization, and no voting.

So, let's drop the age limit and require everyone to take the current civics test for naturalization. Online, of course. If you can't pass the test you won't get to the ballot...

Re: Be careful what you wish for

Agreed to an extent.

However, Starlink won't be a competitor to traditional ISPs. The latter will be quite happy to drop their (pretense of) a commitment to rural broadband if there is an alternative.

At an average of $100 per meter running cable is often cost-prohibitive if there are only a handful of homes on a rural road.

Starlink won't be able to provide service in densely populated areas since each satellite can handle only a relatively small number of subscribers. As such, its complementary and not competitive.

Re: So what's the catch

Another possibility: tariffs on the portion of income that leaves the USA. To be honest, I haven't considered this carefully just yet, but it may prompt companies to pay foreign workers more to offset the tariffs.

Re: A sign of the times

Curious about all the downvotes.

I assume it's because of the portion about Harris' stance on abortion rights and/or the legal rights of a viable fetus in the US vs. some progressive European countries (like the Netherlands). However, those are verifiable facts and not opinions on my part. The reason I added them was to indicate that Harris cannot truly be considered a moderate.

Re: This is just because of Trump

Thank you for providing the link.

I was aware of that ban, but you stated "block companies that do business with the government from having any diversity training". The Executive Order appears to be more limited in nature.

Granted, it does include sex-based sensitivity training, but it does seems that the limitations end there.

From the EO:

“During the performance of this contract, the contractor agrees as follows:

1. The contractor shall not use any workplace training that inculcates in its employees any form of race or sex stereotyping or any form of race or sex scapegoating, including the concepts that (a) one race or sex is inherently superior to another race or sex; (b) an individual, by virtue of his or her race or sex, is inherently racist, sexist, or oppressive, whether consciously or unconsciously; (c) an individual should be discriminated against or receive adverse treatment solely or partly because of his or her race or sex; (d) members of one race or sex cannot and should not attempt to treat others without respect to race or sex; (e) an individual’s moral character is necessarily determined by his or her race or sex; (f) an individual, by virtue of his or her race or sex, bears responsibility for actions committed in the past by other members of the same race or sex; (g) any individual should feel discomfort, guilt, anguish, or any other form of psychological distress on account of his or her race or sex; or (h) meritocracy or traits such as a hard work ethic are racist or sexist, or were created by a particular race to oppress another race. The term “race or sex stereotyping” means ascribing character traits, values, moral and ethical codes, privileges, status, or beliefs to a race or sex, or to an individual because of his or her race or sex, and the term “race or sex scapegoating” means assigning fault, blame, or bias to a race or sex, or to members of a race or sex because of their race or sex.

Full text: https://www.whitehouse.gov/presidential-actions/executive-order-combating-race-sex-stereotyping/

Also, the EO includes quite a few statements underscoring equality. Just a snippet:

From the battlefield of Gettysburg to the bus boycott in Montgomery and the Selma-to-Montgomery marches, heroic Americans have valiantly risked their lives to ensure that their children would grow up in a Nation living out its creed, expressed in the Declaration of Independence: “We hold these truths to be self-evident, that all men are created equal.” It was this belief in the inherent equality of every individual that inspired the Founding generation to risk their lives, their fortunes, and their sacred honor to establish a new Nation, unique among the countries of the world. President Abraham Lincoln understood that this belief is “the electric cord” that “links the hearts of patriotic and liberty-loving” people, no matter their race or country of origin. It is the belief that inspired the heroic black soldiers of the 54th Massachusetts Infantry Regiment to defend that same Union at great cost in the Civil War. And it is what inspired Dr. Martin Luther King, Jr., to dream that his children would one day “not be judged by the color of their skin but by the content of their character.”

Re: "involuntary separation"

Funny story about those euphemisms.

I spent ten years in a state that has a lot of military bases, so we always heard about people being deployed to various conflict zones across the globe. Often this would be their second or third tour, so we were used to redeployments.

Then I moved to another part of the country for a job at a progressive company. Pretty soon we had a major round of lay-offs and people were getting the axe left and right. In the midst of this my boss told me that one of his best friends just got redeployed. Thinking that this meant that this friend had been spared and moved to another department I told him that I was very happy for him...

Turns out that "redeployed" was this company's euphemism for "laid off".