Posts by tip pc 532 posts • joined 7 Mar 2018
> Samsung said its 3D stacked chips will be used in mobile, wearable, AR/VR, and high-performance computing platforms.
I love the way hitech now days trickles down to consumers pretty much immediately.
Wouldn’t be this way if it wasn’t for phones constantly pushing the boundaries, you’d have been ridiculed for suggesting that 10 years ago.
“ Now, even in formally presidential systems such as France and the US, the president doesn’t have many of those powers. But, more importantly, their presidents are directly elected. Because they have so much power they need the legitimacy of an election.”
Looks like trump is really struggling to get anything passed, which is a good thing, but goes against the amount of power you think they have.
“ In the UK it’s the Government that controls Parliament”
Only when they have enough members in parliament aligned to their party or coalition to ensure that votes by those members support their agenda. Mrs May & BoJo had huge troubles getting their agendas through in the last parliament.
“In the UK the ruling party just decided among themselves that Johnson was going to be the new President and nobody in the country was asked whether they thought it was a good idea to give all this power to him.”
We eventually had an election in December 2019 and the majority of voters voted for MP’s of the party led by BoJo. You can’t say voters didn’t know A vote for their Tory MP wasn’t a vote for BoJo.
Voters who voted for TB last time round didn’t know they get Brown though.
“ The only elected positions in the UK are those of members of the House of Commons. We don’t elect our Head of State. We don’t elect our Prime Minister. ”
Voters voted for BJ at the last election, some of those voters voted for BJ as Tory leader in their party leadership elections just as people voted for Corbyn to lead the Labour Party and also for Corbyn at the last election.
“ @tip pc I have a degree in political science”
Really? Politics science is an oxymoron
“Being an MEP is a directly elected position. Being a UK Prime Minister isn't. Did you see Boris Johnson on your ballot paper? Or Michael Gove? Or Dominic Cummings?”
I’m not sure you’ve understood just how this whole democracy & voting stuff works.
Corbyn, Starmer, Sturgeon etc where not on anyone’s general election ballots as leaders of their parties or as prospective country leaders.
We vote for MP’s / MEP’s who are generally members of a party with a collective view.
That party will then select candidates to represent it in each voting area.
You can join a political party and vote for its leader.
Non of us voted for any EU leaders, they are elected by their MEP peers and EU leaders.
The most direct vote of leadership you will currently get is voting for your PM.
“ Chandra envisioned just-in-time printing of ballot papers for absentee voters, with those papers recorded on a blockchain to assist with verification of their existence and the votes they express.”
Surely they only need to verify that a vote has been made, not who voted for who.
Recording who voted for who will surely lead to some despot in the future sending some voters to re-education camps.
“Sorry? In the "west" our TLS traffic is already being intercepted on an industrial scale?”
That’s not what I wrote.........
I wrote.....
“ I’m surprised China don’t just use a massive transparent proxy and just mim everything, permitting tls1.3 and everyone with nothing to hide being non the wiser.”
Anyway, some research links for you
https://www.gov.uk/government/news/uk-to-introduce-world-first-online-safety-laws
https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/504192/Operational_Case_for_the_Retention_of_Internet_Connection_Records_-_IP_Bill_introduction.pdf
https://www.theverge.com/2016/11/23/13718768/uk-surveillance-laws-explained-investigatory-powers-bill
Spot any similarities in my suggestion and my links?
...............
"How do you know what cert CN/subject alternate name to forge when SNI is encrypted? How do you get your client to not break the connection if they don’t trust your root cert?"
Not Disagreeing with you but ZScaler claim to have that sussed, i suspect their solution requires a trusted root installed on all hosts, but china could do that.
https://www.zscaler.com/blogs/corporate/tls-13-busting-myths-and-debunking-fear-uncertainty-doubt
"The Zscaler advantage
Zscaler is a true inline SSL proxy. It terminates the SSL connection established by the client and establishes a new SSL connection to the server; from a client’s perspective, Zscaler becomes the server and from the original SSL server’s perspective, Zscaler becomes the client. Considering that Zscaler is not just inspecting the SSL traffic on the wire, but terminating the connections, Zscaler has full visibility to the CN (Common Name), and other certificate parameters typically not visible to a passive SSL inspection devices."
I’m surprised China don’t just use a massive transparent proxy and just mim everything, permitting tls1.3 and everyone with nothing to hide being non the wiser.
It’s probably the easiest closest comparison to what currently happens in the west.
At least China are open about their snooping. Most people in the west don’t know they are being snooped on.
£71m a year to charge people to go into central London.
Considering the volumes of traffic still entering and paying to enter the emissions zone clearly the current transport mechanism is lacking functionality to help reduce those numbers further.
The thing is, the more successful at converting journeys to non congestion/ emissions charging alternatives the more the charges need to become to pay for this infrastructure!!!!
Would be interesting if he found a way to send to the satellite too, either for free service or to actually gain access to remote systems.
Serves as a good reminder to people that authentication is not enough, as you never know who is listening.
a CSV is a CSV,
if you need more structure just use xml or if its specifically intended for opening in spreadsheets use the ODF spreadsheet format.
there are solutions. use a acsv for sharing CSV data, if it needs more structure then use ODF & structure as you want and need.
use a CSV then don't complain that there is no standard when there are standards you could use.
Your issue is different to those that want to import data into a sheet or the spreadsheet mangles the data on entry/import.
"Cue dragging the laptop bits to the office , managing to get a USB stick to connect, and downloading the drives data to it.."
in the olden days i'd just swap the hdd / sdd into a non broken spare and be up and running in no time.
If you have kit that needs to be operational its always wise to have spares as keeping offline spares is cheaper than an expensive machine not working for however long it takes to procure a spare.
We have 4 hour maintenance contracts on key primary kit & next day on secondary. Depending on where the kit is it can take 4 hours to get an engineer there anyway so its as good as having our own cold spares.
going after the small guys ensures there is precedence for when they go after the big fish.
The Banks jumped at the notion that they will be responsible for their contractors taxes. The banks are not stupid enough to let the taxman gain obvious advantage over them so have rushed to reduce their exposure.
I'm more concerned by the fact that browser vendors are intentionally modifying the behaviour of some browsers and the users won't necessarily know (even though it may be beta software it should be clear and obvious what the user is getting & not some random or unspecified allocation).
Chrome --> "it's only available for an unspecified subset of users"
FireFox --> "SameSite behavior has been activated for 50 per cent of beta users."
"An on-premises data centre is securted by firewalls and gateways, often provided by external professionals. It takes some work (or F5 :|) to leave exploitable holes and even then those holes have to be exploited."
"firewalls and gateways, often provided by external professionals"
why have you outsourced your firewall & gateway provision & security to external professionals? They may as well be in the cloud.
Many things depend on what your incentive is. Internal IT are incentivised to ensure their operations perform correctly, 3rd parties are generally incentivised to ensure they are billing the customer for as much as possible.
Sad to see the queen of the sky’s go but won’t be flying in a 737 Max. I’ll be checking if the airline has Max’s and will fly an alternate if I have to. I think easy jet is airbus only, Ryan air had a huge order for Max’s. BA’s owners indicated intent to buy Max’s but has none.
I flew tui to menorca the other year, fulfilled by Norwegian in what I think was a Max, comfy for a small commercial jet but I’ll be making sure I know the airframe before booking.
I don’t mind the non Max 737’s.
https://www.independent.co.uk/travel/news-and-advice/boeing-737-max-plane-crash-ethiopian-airlines-lion-air-ryanair-faa-a9261701.html
surely someone would have needed something off a backup in the 3 months so someone should have noted the backups being unencryptable.
Maybe everyone should test a sample restore once a week as an early warning of ransomware. Would be easy to search backup logs for changed extensions though
My weekend rides synced to strava etc, just awaiting relive to ping me. Connect website let me login but then showed the holding page.
I really enjoy Garmin gear, I hope they get through this stronger.
It will make interesting reading as to how they got out of this.
I’d be really surprised if the virus writers managed to write software to also infect Garmin customers via updating the connection software to the Garmin devices, I’d be even more surprised if they also wrote said software for the Mac.
Viruses normally spread when computers have direct connectivity with each other (I accept the original virus may have arrived via email) and this virus seems to be concerned with encrypting stuff and making the business pay to unencrypt and stop rather than alter the target companies software updates.
If this spreads to Garmin customers that’ll be a whole other terrifying story.
Still I think your Mac is safe, for the moment.
"Jon was the IT manager of the whole show and responsible for all the gizmos from the CEO's mobile phone to the receptionist's desktop and everything in between."
"In the end, "I spent a good few hours spinning up new VMs to have all traffic route through a layer of Linux servers running HAProxy." He was able to carve out the application manager traffic and therefore allow a small percentage of requests to succeed and the fixed code gradually rolled out."
He could of just rate limited the inbound traffic to a lower amount or perhaps limited the number of sessions each server could muster, both likely would have been quicker and cheaper than spinning up new gear and deploying extra stuff, assuming the actual bandwidth they where handling required proper network gear that could actually do rate limiting etc.
I'd be really worried if my IT manager started installing & spinning stuff up.
"Or in other words, putting an ethernet cable into a router can put that router into and endless spiral of FAIL. Which given that the whole point of a router is to have cables plugged into it, is a less-than-optimal situation."
Its a sodding SWITCH for gods sake. It may have L3 abilities but its not a ROUTER & don't even think about calling it a HUB.
Flew In many BA & Virgin 747’s
By far the scariest flight was Air India Mumbai to LHR ~2007. It was mainly empty, extremely dated as in it still had what looked like 1970’s decor & the old massive projectors non of which seemed to work. We pulled away from the gate hours late. Stopped at the end of the runway, powered engines up and down ~10 times, engineers onboard lifted access hatches near the stairs and disappeared under the floor, further power ups and downs, pulled off the runway and additional engineers boarded, further power ups and downs, crew seemed happy and the additional engineers got off, pulled to back of runway again, power up down etc, more running downstairs and then hours after we left the gate they kind of decided to just go anyway. The flight was ~20% full but was so hot, I’ve never been in a hotter aircraft, we never seemed to be that high for the duration of the flight, my suspicion being that the air bleed system failed before takeoff and they couldn’t adequately pressurise the thing & over compensated with heat. I was so glad to get home.
so much nonsense in this its hard to know where to start
"However, the truth is the "they" you are referring to are not IPv6 people. "They" are a host of IPv4 advocates trying to make IPv6 behave like IPv4 when such behaviour is counter productive and inefficient."
--this is so not true, ipv6 advocates are constantly telling us ipv6 is as easy and simple to use as ipv4 when its not. It turns out its advantageous for many many reasons to change the apparent source/destination or both IP addresses & even use equipment to break the end to end sessions which is handily easily achievable in IPv4 but IPv6 tries to prevent that in its very design and further anti nat stance.
"The IPv4 core specification defines all IPs as globally routable."
--rfc 1918 provides for a /8 /20 & /24 non internet routable private ip addresses
"IPv4 has the same feature. Its called DHCP static address assignment, and is surprisingly popular with IPV4 admin."
--DHCP is not built into IPv4 its a bolt on. The initial SLAAC is a privacy failure, current versions will now mean domestic users will have their DNS of internal machines that will never connect to the internet suddenly known about and catalogued by their ISP.
"Link-local address allocation is such a popular feature it got back-ported to IPv4 despite major performance loss on allocation, issues with IPv4 not coping with multiple IPs per machine interface, and the 169/8 range being globally routable adding security issues the IPv6 dedicated private range does not have."
-- 169/8 is globally routable but 169.254/16 is not!!! there is no security issue for a machine on 169.254/16 as it can't be routed too across the internet, just like the other rfc1918 addresses can't be routed to.
"You also aware of a little old protocol called ARP? The one which puts the word 'address' in the term "MAC address"."
-- ARP is what a machine does to find the MAC of a machine that can receive traffic for an IP. ARP is links L2 with L3. ARP doesn't put 'the word 'address' in the term "MAC address".' MAC address already has the word Address in it. On LAN 's machines connect via MAC addresses, IP's are needed to route from 1 LAN to another. IP's are an overlay to MAC's & provide a hierarchical method of organising & addressing machines and systems. IPv6 looks like its trying to be both an I & MAC in 1.
IPv4 has shown itself to be extensible and has had a long life far beyond what it should have had because of its extensibility.
IPv6 has not gained wide spread adoption because it has sought to be like IPv4 but better and has proven to be flawed and its proponents picking the wrong fights when it comes to privacy & usability.
IPv6 should be being advertised as greatly different to IPv4 and different toolsets being used to manage it.
if IPv6 is seen as a different thing that can run on the L2 underlay then it will likely gain more adoption.
i've been saying for years that my CV needs to be buzzwordy enough to get through the recruiter & HR and detailed enough for the eventual techie to short list me.
My CV is ~ 3 pages and the only ones who complain are HR droids, techies like to read what i've been through, phrased that way deliberately.
That’s just like rfid, costs pennies and retailers etc use it on labels to track goods, stock check and theft prevention.
Decathlon use it to great effect, place your goods in the Self service till packing area and it’s auto totalled and on the DB for ok to leave the store once paid.
RFID is powered by the signal sent from the antenna, you’d need a lot more than 2000 of those antenna to cover 90+% of the nation.
I hear you.
I suspect the trackers they use will cost far more than pennies, hence why I used a £20 budget.
Especially when they pay home owners £35 a month to host a mast and provide power.
£840k pa for infrastructure hosting on top of staff wages and other costs of running a business suggests they need somewhere near ~£5m turnover.
Charging a business £5 pm per device tracked would leave £40 pa per device (1st year) for mvno and profit. A business that can’t pay £5 pm for a Tracking service is likely on too much a shoe string.
you can get a cheap mobile from amazon for under £20 & sim cards for under £5 a month with ~ 1GB of data usage.
why not coble up some solution that uses cheap lte components and form your own MVNE to support it?
i get that the iot things are to be low power etc etc, but LTE is low power too & if these things are on shipping crates and effectively beacon every so often & this system picks up that beacon, triangulates the position and stores it on a DB, for 2000 to get ~91+% of the nation i'm sure a phone mast would pick up the signal too as there are certainly more than 2000 of them.
The Register - Independent news and views for the tech community. Part of Situation Publishing
Biting the hand that feeds IT © 1998–2020
