* Posts by jezza99

50 publicly visible posts • joined 6 Jan 2019

Don't open that 'copyright infringement' email attachment – it's an infostealer

jezza99

Email address displayed?

Of course, no email client would ever hide the email address of the sender, would they? That would be inviting impersonation.

Bank of America app glitch zeroes out people's balances

jezza99

"Checking" account?

I'm amused that Americans still have check (cheque) accounts. I doubt that you could present a personal cheque anywhere in Australia today. The government formally announced the cessation of cheques in this country from 2030, but I don't think it will take that long.

'Right to switch off' initiative aims to boost economy by beating burnout

jezza99

If a business has 24/7 IT requirements it needs to employ people on shifts 24/7. Or at least pay somebody to be on call.

Expecting employees who are paid for 38 hours a week (standard Australian work hours) to respond to work issues 24/7 is absolutely unreasonable in any circumstances.

People on high salaries, well over AUD 100,000 may be an exception to this.

CrowdStrike file update bricks Windows machines around the world

jezza99

Does what it says on the tin…

CloudStrike “blocks access to your system…”

Switzerland to end 2024 with an analog FM broadcast-killing bang

jezza99

Australia uses AM for emergency broadcasts

FM (VHF) does not have the frequency or coverage to be useful for emergencies. I doubt that DAB+ would cut the mustard either.

AM (medium wave/MF) can propagate hundreds of kilometres in the right conditions, over hills and down valleys. The Australian Broadcasting Corporation (ABC) uses this for emergency broadcasts when required, or predominantly talk radio the rest of the time.

If you live in a bushfire or flood prone area it is essential to have a battery powered AM radio. The second service to usually fail is the cellular network and internet, right after the power fails.

Nearly 20% of running Microsoft SQL Servers have passed end of support

jezza99

Whole of industry problem

The whole model of developing and supporting software is broken.

The fact is that as soon as someone can write an application which uses some other piece of software, that other piece of software (the platform) will be used indefinitely. Look at the number of mainframe systems written for the IBM/360 which are still in use, some of which no longer have any source code. The cost of changing the system to run on a new platform is prohibitive for most businesses, even though they may be using a platform which has known security holes.

We need a model of software development and support which acknowledges this, not denies it.

This is a whole of industry problem, not just a Microsoft one.

Tesla self-driving claims parked in court

jezza99

How do they get away with calling it "fully self driving"?

When it clearly isn't!

Apple says if you want to ship your own iOS browser engine in EU, you need to be there

jezza99

This EU law will create unwanted consequences.

If Google's spyware, er, Chrome, runs on the iPhone then web developers will develop apps which only work with Chrome. I know they really want to.

I don't run Chrome because I don't trust Google. I don't use their search engine either except as a last resort. I don't want to be forced to use Chrome because it is the only way to access apps which I use.

The chip that changed my world – and yours

jezza99

Exidy Sorcerer

My first computer was an Exidy Sorcerer. This little known computer was Z80 based, supported full ASCII and, by using RAM chips for the top 128 characters of the character generator, supported programmable graphics.

It was possible to add an S100 (bus) controller via a proprietary expansion connector, and the computer ran CP/M very successfully with the addition of floppy disks. The original, of course, used a cassette interface to record programs and data.

It supported plug-in ROM packs with software, using 8 track cartridge shells which were cheap at the time. While the design limit for RAM was 32K, it was possible to expand to 48K by piggy backing an extra row of RAM chips and connecting the right address lines. Ah, the things I got up to in my younger years!

Exidy was an arcade games manufacturer and didn't know how to market the Sorcerer. Dick Smith in Australia sold more than Exidy did in the US.

Grab a helmet because retired ISS batteries are hurtling back to Earth

jezza99
Happy

Re: Helmet Shelmet!

I know my tinfoil hat will keep me safe!

Grab shrank its superapp by a quarter in order to survive

jezza99

Save disk space?

Good on Grab for making their app more efficient.

But I have yet to find a mobile phone, in Asia or anywhere else, which has a disk drive!

EU takes a bite out of Apple with $2B in-app purchase fine

jezza99

30% is just too much

Both Apple and Google charge 30% commission in their app stores, including for in-app purchases. That is simply way too much.

If they charged something closer to 10% then maybe these lawsuits wouldn't occur.

Spotify are however another tech monopoly. Not any better than the others. They pay tiny fees to the original artists whose material they stream.

FCC Commissioner calls for crackdown on Apple's iMessage gatekeeping

jezza99

iMessage isn't very useful...

Because it only runs on Apple devices.

I'm a fanboi with the best of them, but I hardly use iMessage. Many of my friends use Android. WhatsApp works on any device.

iMessage continues to find ways to route messages to /dev/null also.

That's not the web you're browsing, Microsoft. That's our data

jezza99

Re: If

Not if the data is transferred within the computer, and then encrypted before it hits the wire.

The FCC wants to criminalize AI robocall spam

jezza99

Just hang up!

I always hang up within seconds if I receive a robocall. They are the ultimate in disrespect and I would not want to deal with any organisation which uses them.

Windows boss takes on taskbar turmoil, pledges to 'make Start menu great again'

jezza99

Re: Do what you like but give options

I just use AirPrint, which is well supported by both my old Canon and current HP all-in-one printers. I used the HP iPhone app to get the printer connected to the home WiFi, but after that no special software is required.

All printer and scanner functions work correctly (duplex, scan quality, etc).

Anyone on the home network can print, and it's wireless (except the power cable)!

jezza99
Angel

Re: Do what you like but give options

2024 is the year of Linux on the desktop!

Bad eIDAS: Europe ready to intercept, spy on your encrypted HTTPS connections

jezza99

Re: Never understood certs

Digital certificates and TLS/HTTPS offer two benefits.

1. Traffic is encrypted between yourself and the web server. Only the web server can read your input and only your browser can read the result.

2. Both the client and server are authenticated to each other. This means that if you connect to "https://example.com" then you can be certain that you are in fact connecting to the web server owned by the owner of "example.com" and not some random interloper (a banking site impersonator?) which is intercepting your traffic. This matters, especially for financial sites which lets face it is almost everything nowadays.

For this trust to work, you must be able to trust the "root certificate authority (CA) server". Provided the root CA server is trusted, then all other CAs and certificates down the chain are trustworthy by design.

This is why it is so important that internet software companies, and end users, are able to remove trust from ANY CA server if it is found to be compromised.

The proposed EU law prevents this, making it impossible to trust certificates, and therefore impossible to trust anything on the internet.

Last time I looked, at least one EU member was not a true democracy, and another EU member has only just had democracy restored. You cannot trust a state just because it is a member of the EU.

Chinese meme-makers crown US Commerce Secretary as Huawei brand ambassador

jezza99

China will get there without Western technology if required

America and other Western countries are dreaming if they think they can delay China by more than a few years.

China spends more on science and technology than any other country in the world, by quite a long way. The West may have the best chip manufacturing technology today, but it will surely be surpassed.

China also takes a long view, not the short termism that Western governments are hamstrung by.

Biden: I want standard EV chargers made in America by 2024 – get on it

jezza99

Of course chargers must be standard

Having EV chargers which only charge a particular brand of vehicle is like requiring Ford and Toyota owners to use different, brand specific petrol (gas) stations.

TSMC ramps up 3nm chip baking at Taiwan plants

jezza99

Risk?

Much as I admire Taiwan as an independent, democratic country, it seems unwise for us to be so dependent on a country that Xi Jinping has stated he may invade at any time.

Apple exec confirms iPhones will switch to USB-C because 'we have no choice'

jezza99

Waiting…

I’m waiting for all the Fandroids who have been cheering this on to ditch their device and buy a new Apple phone with USB-C. They were all saying “I don’t buy Apple because they use lightening”.

Or will hell freeze over first?

I’ve never had a problem with a lightening connector, though one cable wore out, replaced with a spare I already had. I’ve used the same charger for all my devices for years.

I guess there will never be a USB-D as they would need to get the EU to update their laws first.

Most Metaverse business projects will be dead by 2025

jezza99

Marketing fluff

Anything which requires me to wear glasses or a headset is out. I’m just not interested.

Likewise, anything which mentions crypto I just regard as a scam.

It all looks like marketing fluff to me.

Apple's grip on iOS browser engines disallowed under latest draft EU rules

jezza99

Re: Swap on monopoly for another?

Precisely. I don't and never have used Chrome. I do not trust Google with my data and try to minimise the use of Google services accordingly. Half the Google ads I see are for scam products.

If native apps go away then we would be in the same situation as in the 2000s, where you in practise had to use IE, only this time it will be Chrome.

I prefer Safari as it protects my identity when I am browsing the web. You have the choice to buy an Android phone if you want to use something that has a different browser engine.

The EU is barking up the wrong tree with this one.

IBM cannot kill this age-discrimination lawsuit linked to CEO

jezza99

Retrenching someone who is 60 is the height of cruelty, unless it is for misconduct.

Realistically he will have very little chance of getting a new job of similar value. An action like this could result in him retiring into poverty rather than having a comfortable retirement.

We need to demand better of companies!

Log4j RCE: Emergency patch issued to plug critical auth-free code execution hole in widely used logging utility

jezza99

Not surprised this is in a Java component.

As a former sys admin I loathed the fact that Java insisted on ignoring all system services, using alternatives which were larger, buggy and absolutely hostile to good systems administration practice.

Story of the creds-leaking Exchange Autodiscover flaw – the one Microsoft wouldn't fix even after 5 years

jezza99

Ignorance of certificate technology

I used to manage certificate services for my then employer, and as I gained skills became aware of how absolutely critical they are to modern IT security. Including the bit that clients must always fully validate any certificate they receive.

Yet knowledge of this technology is known to so few systems admins and application developers.

No wonder practical IT systems, including big name ones, still contain so many security holes.

One-size-fits-all chargers? What a great idea! Of course Apple would hate it

jezza99

Just think, if the EU had brought this in in 2009, when they started considering it, they would have specified an original USB connector, or maybe the round Nokia connector.

In 10 year’s time I’m sure USB-C will look just as dated.

For years now I’ve charged all my devices with a single Apple charger. I just swap cables if I need to charge a non Apple device.

In short, this is a really bad idea which solves a non-problem.

Australia rules Facebook page operators are legally liable for user comments under posts

jezza99

Re: Out of curiosity ...

This case was covered today in the Sydney Morning Herald. It is actually a straightforward extension of existing precedent in defamation law, and so is quite robust from a legal standing.

The High Court has determined that an organisation which publishes pages on Facebook are also publishers of associated comments, from a legal perspective. Note that the publisher is not the same as the author.

The judgement isn't about the defamation per se.

Personally I think it is time that social media platforms were required to identify the posters behind the vile comments that some seem to think are acceptable so that they can be sued directly. But that is a different issue.

30 years of Linux: OS was successful because of how it was licensed, says Red Hat

jezza99

Re: Linux is not an OS

I'd refine that slightly. An OS consists of a kernel and a standardised operating environment that application programs can assume will exist and make use of. So this may include a shell and will almost certainly include a set of libraries and utility programs. Some of the environment may be optional, for instance the X window system and associated libraries is an optional component of the Linux OS. An application which needs a GUI will use X but not all applications may need a GUI.

The utilities/libraries in an OS do not have to be exclusive to that OS, they may be used on a number of different operating systems.

Apple didn't engage with the infosec world on CSAM scanning – so get used to a slow drip feed of revelations

jezza99

Re: Not the problem

Indeed. It would be straightforward to use this technique to match photos against a hash database of, say, faces of people that a government doesn't like instead of a database of CSAM hashes.

The technical details really are irrelevant. It is the fact that Apple will scan your photo library at all which is the issue.

Don't rush to adopt QUIC – it's a slog to make it faster than TCP

jezza99

Re: TCP is wrong for most network transactions

The fact is though that both enterprise network equipment and modern kernels are massively optimised for TCP.

In a LAN environment, NFS was originally written on UDP. Some time later, NFS over TCP was defined, but the TCP overhead made it slower. However, for at least the last 10 years storage vendors have strongly recommended NFS over TCP for performance. The difference is kernel support on both server and client.

In the WAN, if you control both end points there are devices which will optimise TCP to radically increase performance, even with high latency. This means that you can use standard applications such as SFTP to transfer data efficiently between continents. As these devices work by managing error correction it is hard to see how they would work if that were done at the application layer.

I can see the advantage of including encryption as a tier 1 protocol feature though. If TCP were designed today it would surely have that.

FTC approves $61.7m settlement with Amazon for pocketing driver tips

jezza99

I continue to refuse to buy Amazon because I find their employment practises around the world to be abhorrent.

New Zealand hospitals infected by ransomware, cancel some surgeries

jezza99

It really is time that these ransomware outfits are treated like the terrorists they are.

Blessed are the cryptographers, labelling them criminal enablers is just foolish

jezza99

I find ACIC's comment that cryptographic apps on the internet are almost exclusively used by criminals to be criminally wrong!

Any time you use a web site with "HTTPS" you are using a cryptographic application. And almost all web sites (including El Reg) do that. Any that still use plain old HTTP cannot be trusted!

I use encrypted chat apps, because I value my privacy. I have yet to do anything criminal with them. Same for my friends and associates.

If the government breaks cryptography by forcing the use of back doors we will all lose!

Chrome 90 goes HTTPS by default while Firefox injects substitute scripts to foil tracking tech

jezza99

Re: No, this is wrong

Agreed! I would go further and suggest that all unencrypted protocols should be removed from RFCs. It is just too risky, even for intranets.

Implementing HTTPS is trivial.

Bothering to upgrade the iPhone 12 over older models has proven to be worth its weight in gold for Apple

jezza99

Re: "The iPhone – Apple's hottest seller – brought in revenues of $65.597bn"

The last smartphone I owned with a replaceable battery (a low end phone used for travel) had a woeful life. It couldn't even get through a morning without wanting the charger. I never even bothered trying to buy a replacement battery.

Even the last low end travel phone I bought had a non-replaceable battery. And could almost make it from morning to evening!

jezza99

Re: "The iPhone – Apple's hottest seller – brought in revenues of $65.597bn"

It's pretty simple. A replaceable battery is more than twice the volume of a non-replaceable one, as it must have a hard plastic case in order to be safely handled by a non-technical customer.

People prefer smaller phones to replaceable batteries.

Apple worked this out years ago. As usual, everyone complained, but then the other vendors quietly started doing the same, to gain the same advantage. It doesn't cost all that much to get Apple to replace your battery, relative to the price of the phone.

The non-replaceable batteries also save all that hard plastic which would otherwise go to landfill.

Must 'completely free' mean 'hard to install'? Newbie gripe sparks some soul-searching among Debian community

jezza99

I guess from this discussion that 2021 is the year of Linux on the desktop!

Who watches the watchers? Samsung does so it can fling ads at owners of its smart TVs

jezza99

I'll stick with my older, definitely dumb, Panasonic TV thanks. Has great picture quality and acceptable sound for a flat screen TV.

Microsoft sides with Epic over Apple developer ban, supports motion for temporary restraining order

jezza99

Re: Cynical

Indeed. Most of these apps are free to download and install, and only start charging you once you actually use them. Games in particular are notorious for enticing you in for free, then having to purchase things to actually progress in the game.

If Apple can't make a margin from in-app purchases then its platform would not be viable.

Utes gotta be kidding me... University of Utah handed $457K to ransomware creeps

jezza99

Are they kidding? If I were a hacker I know which University I would target next.

I can’t see how paying a ransom is ever a good idea.

You weren't hacked because you lacked space-age network defenses. Nor because cyber-gurus picked on you. It's far simpler than that

jezza99

In a corporate environment this is a hard to solve problem.

At home I patch now and ask questions later, as is best practice.

But in my last employer they were dependent on software by vendors who did not get computer security at all. And some of them are big names in the field. We were forced to run versions of MacOS and others that we knew were insecure as a result.

Then there’s Windows and Active Directory. Do they support dictionary checking passwords out of the box now? If not, why not?

Brit unis hit in Blackbaud hack inform students that their data was nicked, which has gone as well as you might expect

jezza99

Don't do business with them

Personally I would never voluntarily do business with a business which pays ransoms.

I hope that these universities are chasing alternative suppliers right now.

The end really is nigh – for 32-bit Windows 10 on new PCs

jezza99

Wow are Windows users still suffering this 32 or 64 bit rubbish?

Apple resolved that years ago.

If you never thought you'd hear a Microsoftie tell you to stop using Internet Explorer, lap it up: 'I beg you, let it retire to great bitbucket in the sky'

jezza99

I wonder how many “enterprise” apps still need IE6 with old versions of Java and all the security settings switched off? I used to manage fibre channel switches which did this.

Remember that Sonos speaker you bought a few years back that works perfectly? It's about to be screwed for... reasons

jezza99

Better stick with old stuff

My NAD sound system, circa 1985, seems to still play music just fine, and with excellent sound quality. I think I'll stick to it.

Let adware be treated as malware, Canuck boffins declare after breaking open Wajam ad injector

jezza99

I get so many ads for scams served up by both Google ads and Facebook I wouldn’t trust anything advertised on the internet anyway.

Apple, Samsung feel the pain as smartphone market slumps to lowest shipments in 5 YEARS

jezza99

Re: Just one question

Funny my iPhone 6 (4YO) seems to be running the latest iOS and apps. Which phones don't have updates after 12-18 months?

Fake 'U's! Phishing creeps use homebrew fonts as message ciphers to evade filters

jezza99

Since the phish requires a custom font, that must mean that the email client will download and use a font from an unverified source.

Seems like a pretty basic security hole. Which email client(s) suffer from this?