Glad I excommunicated anything Adobe and M$ long ago.
Posts by elvisimprsntr
114 publicly visible posts • joined 2 Mar 2018
Hope you're over that New Year's hangover – there's an Adobe PDF app patch to install
Can't unlock an Android phone? No problem, just take a Skype call: App allows passcode bypass
It's a Christmas miracle: Logitech backs down from Harmony home hub API armageddon
Re: Joy to the World
For example, offering free Hubs to replace their unsupported Link only after customer outrage. Then offering refunds to those who bought a discounted Hub before the free replacement offer, once again only after customer outrage.
Logitech has never published their products APIs. Maybe this will be a step in that direction.
A year after Logitech screwed over Harmony users, it, um, screws over Harmony users: Device API killed off
On the first day of Christmas, Microsoft gave to me... an emergency out-of-band security patch for IE
Home users due for a battering with Microsoft 365 subscription stick
Adobe Flash zero-day exploit... leveraging ActiveX… embedded in Office Doc... BINGO!
Surface Book 2 afflicted by mystery Blue Screen Of Death errors
Sacked NCC Group grad trainee emailed 300 coworkers about Kali Linux VM 'playing up'
A classic prank to play on someone who forgets to screen lock their computer before walking away was to:
1. Take a screen cap of the desktop
2. Replace the background image with the screen cap
3. Move all the desktop icons off screen and hide the task bar.
Then wait for the comedy to ensue when the individual exclaims none of the menus/icons worked. It was even more hilarious when even IT was stumped.
Groundhog Day comes early as Intel Display Drivers give Windows 10 the silent treatment
Cyber-crooks think small biz is easy prey. Here's a simple checklist to avoid becoming an easy victim
1. Start with a good enterprise class firewall (pfSense) - Done
2. Configure firewall to route ALL DNS requests through OpenDNS, even if the host manually enters a DNS IP - Done
3. Configure OpenDNS to filter traffic you don't want clients accessing - Done
4. Use a professional mail hosting provider which which employs virus scanning and filtering. - Done
5. Disable USB interfaces on ALL clients - Done
6. Have a company policy which prohibits use of company resources for personal use which can result in suspension or termination. - Done
7. Mandatory employee training - Done
8. On site backup strategy (GF,F,S) with offsite/remote for disaster recovery - Done
Facebook's new always-listening home appliance kit Portal doesn't do Facebook
Facebook, Google sued for 'secretly' slurping people's whereabouts – while Feds lap it up
Kudos to Apple for holding on to their principals, but timing of Tim's public speech and the these lawsuits seems like more than a coincidence.
https://www.dailydot.com/debug/tim-cook-data-weaponization-speech/
It's a war between Apple and everyone else for your wallet. Apple makes money on products and services. G and FB make money off advertising.
Someone's in hot water: Tea party super PAC group 'spilled 500,000+ voters' info' all over web
Add this to the growing list of reasons I actually de-registered to vote
* All politicians are corrupt and conflicts of interest don't seem to bother them
* All politicians will lie and tell you what you want to hear in order to get your vote
* All politicians will break their campaign promises once elected to office
* All politicians pass laws/bills to ensure their pockets are lined with cash
On the third day of Windows Microsoft gave to me: A file-munching run of DELTREE
Haven't updated your Adobe PDF software lately? Here's 85 new reasons to do it now
Facebook monetizes 2FA, Singapore monetizes hacker, and ransomware creeps monetize US Democrats
Twitter: Don't panic, but we may have leaked your DMs to rando devs
Voting machine maker claims vote machine hack-fests a 'green light' for foreign hackers
Don't some of the voting machine manufacturers also make ATM machines which are vulnerable to remote jackpotting and have one key fits all locks? I would not be surprised if they also manufacturer the computer systems in gas pumps. That is all one really needs to know to make an educated guess about security of voting machines.
Well, can't get hacked if your PC doesn't work... McAfee yanks BSoDing Endpoint Security patch
ATT and a number of ISPs offer McAfee for free under the guise of "protecting" the customer. Most IT folks know things like McAfee route all your DNS requests through their servers to filter content, track your requests, and possibly inject ads.
A properly configured firewall (i.e. pfSense) will route DNS requests and filter traffic so ALL clients are protected, not just the clients with McAfee installed. Clients already have enough performance degradation due to Spectre and Meltdown mitigation without the additional overhead of McAfee bloatware.
BlackBerry claims it can do to ransomware what Apple did to its phones
Western Digital wonders why enterprise isn't keen on its solid-state drives
How to (slowly) steal secrets over the network from chip security holes: NetSpectre summoned
It's a conspiracy folks! Planned obsolesce!
We already know CPUs are reaching the end of Moore's Law. This will ultimately lead to a decline in sales when all you get is incremental performance increases. It has likely already begun if you believe some of the YoY sales figures. Intel (and others) know these issues exist and let them trickle out to guarantee they will get sufficient press coverage to scare the $hit out of everyone. Future Intel comes to the rescue to save humanity by announcing a new line of hardened processors, future OS distributions require new hardened processors. Profits soar! Everyone wins! Well, except for the consumer and business that are forced to upgrade all computers, severs, networking gear, and anything else with a processor.
Sysadmin trained his offshore replacements, sat back, watched ex-employer's world burn
My job (and many others) were getting relocated to another state. While they were offering a relocation package, it did not come with any cost of living adjustments. If invited, we were required to sign a contract. If you signed to go and subsequently left, you would not get any severance. If you sign you were leaving, you had to train your replacement with no guaranteed date or advance notice.
I found out the name of the recruiting company they hired, sanitized my resume, and applied for my own job. During the course of the recruiter interview, I was able to find out how much they would pay my replacement. It was a lot more than I was currently making. I had to spill the beans when the recruiter picked up on several awards I received from my employer I forgot to sanitize.
The funny part of the story is my sanitized resume still made in the file boxes of resumes management went through. Most of the resumes were junk. One manager picked up my resume, skipped over the name and started reading my experience. Once he realized who's it was, he exclaimed to the other managers in the room, " This is {name withheld} resume!" Which someone else in the room replied, "Now you know he is looking." Disgusted with the quality of the other resumes the recruiting company brought in, the first manager held up my resume and said to the recruiters, "This is the type of person we are looking for!"
I signed I was going to secure my job. The severance package was not very good anyway. I also knew it would be near impossible to time my end date with the start of a new job. I ended up taking a job with a 35% pay increase, signing bonus, paid OT, and full relocation package. I didn't burn any bridges though. After a 200% turn over in the organization, they begged me to come back. I told them my new price, which they met with a relocation package. It wasn't in the most pleasant part of the country, but knew with time I could transfer back to the paradise where I started.
Sen. Ron Wyden: Adobe Flash is doomed, why is Uncle Sam still using it?
Spectre rises from the dead to bite Intel in the return stack buffer
Adobe on internal systems security hole: Panic not. It isn't critical
Another data-leaking Spectre CPU flaw among Intel's dirty dozen of security bug alerts today
No one wants new phones – it's chips that keep Samsung chugging
When phones in US were carrier subsidized with a 2 yr contract, I had no problem shelling out $200 for a new phone every 2 years. Once my last contract ended, I switched to a much lower out of contract plan.
My current iP6+ is almost 4 years old and my battery was just replaced by Apple for $29. My father had been using my old iP4 until last year when I bought a second hand iP6S+ and give it to him.
My new upgrade cycle is when Apple stops providing OS updates for a particular device, which means I can likely get 5-6 years out of a device. Even then, I will likely only buy a second hand device for 1/3rd the original price.
No, it's not Intel's 5G chip Apple is ditching – it's the Sunny Peak Bluetooth, Wi-Fi part
GitLab's move off Azure to Google cloud totally unrelated to Microsoft's GitHub acquisition. Yep
Intel chip flaw: Math unit may spill crypto secrets from apps to malware
Microsoft reveals which Windows bugs it might decide not to fix
"...how about fixing the one that has totally shafted the wifi adapter so it now won't connect to anything whatever steps I take.
M$: Thank you for discovering and reporting a security vulnerability. We pushed a security update to your system to fix the vulnerability. Your computer should no longer be at risk.
June 2018, and Windows Server can be pwned with a DNS request
Comcast's mega-outage 'solution'... Have you tried turning your router off and on again?
While I understand the economics of combining services with a single company, you place your business at risk doing so. Businesses should have a emergency plan in place to forward calls to a different number during a service outage.
There is a lot to be said for having separate service providers and/or redundancy. I have dual WAN (ATT Fiber and TMobile LTE) failover for exactly this type of scenario.
Stop us if you've heard this one: Adobe Flash gets emergency patch for zero-day exploit
VPNFilter router malware is a lot worse than everyone thought
Monday: Intel touts 28-core desktop CPU. Tuesday: AMD turns Threadripper up to 32
Smart bulbs turn dumb: Lights out for Philips as Hue API goes dark
ISP popped router ports, saving customers the trouble of making themselves hackable
About to install the Windows 10 April 2018 Update? You might want to wait a little bit longer
OpenWrt forums lost as hardware failure again crocks open Wi-Fi router
Given how inexpensive NAS servers are these days, there does not seem to be any excuse for this.
1. Two separate RAID servers with geographical separation
2. Real time RSYNC between the two
3. A domain/DNS provider which will automatically fail over to the backup server
4. Grandfather-father-son backup strategy, with periodic checks the backups can be restored.
5. Multiple sys admins
It's 2018, and a webpage can still pwn your Windows PC – and apps can escape Hyper-V
Wanted that Windows 10 update but have an Intel SSD? Computer says no
IBM bans all removable storage, for all staff, everywhere
IBM just started enforcing this policy now?
More than a decade ago, my employer went as far as disabling the USB interfaces on all computers (not including mice and KBs) with a Windows security policy update. If your job absolutely requires you to use an external USB device, you can apply for an exception to policy, signed by immediate supervision, reviewed by IT, and are required to take additional security training in order to get it approved. The goal is to prevent the masses from introducing threats (unintentional or otherwise) from within.