Posts by Flightmode

Re: I Really hate printers

> I've got a printer next to me that requires a connection to halfway around the world which means it regularly fails to print..

Tangentially related: In the late nineties I was doing helpdesk duty, and was called upon to check a networked HP LaserJet printer that had been slow and unreliable for months. Since our cabled network was a bit iffy at times (my team didn't own or touch the wiring), I decided to start by moving it to another patch point to see if that made any difference. This was was in our customer service area, which was on a section of raised flooring in an old automobile manufacturing hall (long and narrow). The printer was next to one of the small stairs that led up to the raised floor, and as I started pulling the cable, I realized that it went up the post next to it, then across the stairs (tautly stretched between the poles), down the post on the other side and continued off along the floor (neatly tucked in between the wall partitions and the desks, all the way to the end of the hall and back - SIX TIMES, then patched into an outlet on the post it had just gone down. Having rolled it all up, I found myself holding a mass of partially frayed Cat 5 cable that I couldn't even estimate the length of in meters - it was at least FOUR WEEKS long! I replaced it by a 2 meter drop patch to the outlet right next to it (on the same pole the old cable had gone UP), and after that it worked perfectly again; snappy as anything and completely reliable once more.

When I asked the nearby staff if they knew who'd installed it they said that it'd originally been installed on the other side of the stairs (where it was plugged in), but they'd wanted to move it for some reason and then the cable hadn't been long enough... so they'd found a longer one next to the trash compactor and used that one instead.

Re: Ah, production databases

As some wise person (I think on here) put it - "Everyone has a test environment. Some are fortunate enough to have a separate production environment."

Re: If you screw up, say so and say how

We're interviewing people for a vacant position in my team of network engineers, and I've been helping out as a technical resource. My favourite question to ask candidates is "What's the biggest mistake you've done on a network? At least, that you haven't gotten away with...". That tells you both how honest they can be with their mistakes (because, as Pascal says, they will happen), and also what skill level they're at. "I shut down the wrong interface once" is not quite the same magnitude as "I once tried a regular expression with thirty wildcards on a Cisco 7505 and in doing so brought down all our US peering capacity".

Re: once upon a time at the pub

GNU Sir Terry

Re: that's really cool and

Yeah, this is nothing short of amazing for a first implementation.

Re: I definitely need new glasses

A place I worked for in the late 90's had a CRM application we regularly had to install on agents' PCs. The installation progress bar didn't have a number on it, but it continued a couple of notches past the end of its predrawn box, so when someone had problems we always used to ask if they'd remembered to install the full 107% of the application.

Re: I could only wish my work lasted that long

Every time there's a Voyager thread I feel the need to recommend the 2022 documentary "It's Quieter in the Twilight" about the scientists and engineers that run the Voyager project. It's well worth a watch.

Baah, humbug.

Re: My bank...

The basic authentication rule is very simple: Something you have and something you know. If they want to use voice recognition as the "have" then fair enough. But it shouldn't ever be the only test made.

My suggestion is to agree with everyone you speak to regularly - at least parents, children, your spouse and close friends - on a "vocal handshake" you can perform so that you can always verify that the person asking you for money for a new phone / ticket home / medical bills / whatever is the person they say they are. It is absolutely vital that the information used to complete the handshake is not available anywhere online and can't easily be inferred from your profile. Either make it something you had together Before The Internet that you've never discussed in emails or on social media, or agree on a nonsense question with a deliberately wrong or fake answer - "Q: What's the capital of Bulgaria? A: Mike Dinosaur Junior" - or a favourite movie quote that needs to be responded to with an unrelated line from a song from a band you don't normally listen to. Make it a habit to always ask this question when being asked for money or whatever it is and NEVER volunteer the answer before being asked the question - "Can you please help me transfer 1000 moneys to this offshore account? Oh, and before you ask, the capital of Bulgaria is Mike Dinosaur Junior."

We all love to think that we'd never fall for a scam, but I'm not so sure. Especially not with voice replication technology at this level. Better to have one more safeguard.

Re: Check yourself before you wreck yourself

My dad was cat-sitting for his neighbors for a few weeks a couple of years ago when they were back home in Germany. He went to their house a couple of times per day and usually stayed about half an hour after feeding to give the cat a bit of company should she want it (she rarely did).

I went with him a couple of times when I visited, and on one occasion we sat talking in the living room when I for some reason came to think about this very strip and told him about it (only I misremembered and said 200 rolls of toilet paper).

…only to have a crisp female voice respond from a remote corner of the room ”I’m sorry, but there seems to be something wrong with my Internet connection so I can’t process your order”. Luckily they’d powered off their router before hearing out. (The fact that she said it on German somehow made it worse…)

Re: CEOs rewarded for failure, peasants told to collect their P45s on their way out

"We'll make sure you'll never work in this business again" is supposed to be a threat, not a promise...

Re: Opportunities for error

Ah, the Cisco wildcard mask.

I once had to write a classic IOS extended access list which allowed certain traffic from every fourth /28 network out of a /22 - meaning for example 10.10.0.48/28, 10.10.0.112/28, 10.10.0.176/28, 10.10.0.240/28. 10.10.1.48/28 all the way up to 10.10.3.240/28. Rather than one line for each subnet, totalling 16 lines per TCP/UDP port, I experimentally discovered that a single line per destination port with the source range 10.10.0.0 0.0.3.207 worked just fine. I'm still proud of that one, even though more than a decade has passed.

Re: If you can see it from the ground it's avoidable.

Could it be that we've all had the wrong idea about Asteroids all these years? Perhaps it's NOT a game, but a training exercise in making space junk smaller and smaller until it's negligible?

This was actually covered in the documentary (which is worth a casual watch, but nothing amazing).

Bitfinex has apparently given their affected customers one "token" for each dollar-equivalent that their customers had in their account at the time of the heist, with the promise that they would "redeem that token into actual dollars as soon as they can". Their head of communications and marketing, who was interviewed in the documentary was very proud of the fact that they had "fulfilled all their obligations to their customers" through this. It is envisioned that the seized Bitcoin will (eventually) be sent back to Bitfinex, meaning that Bitfinex will end up with the net gain between the customer compensation tokens and today's BTC value. Since the hack itself apparently didn't kill Bitfinex as an exchange/wallet company, that comment from their representative in the documentary surely will... (Lawsuits are in progress by former customers.)

Also, there's still about USD 1bn worth of BTC still not accounted for.

Re: Keyboard layout

hash bang slash bin slash bash does have a nice rhythmic feel to it.

always do "copy run start" then "reload in" [or its platform equivalent] before starting your work

"Copy run start" - what kind of new-fangled talk is that? It's "wr mem", everyone knows that! :-)

But I'll attest to being saved by Juniper's "commit confirmed 5" command ("If I don't type commit[0] again within 5 minutes, roll back my last config changes, please") many times. No reboot required.

[0] If you don't want to add another commit state to your history (only the last 50 commits are stored on-box for easy comparison and rollback! ;-)) a "commit check" will do nicely.

Darknet Diaries and, to a lesser extent, Malicious Life have both done multiple episodes on using social engineering to bypass both physical and logical barriers put up by companies with huge security budgets. Jenny Radcliffe (who wrote the book Nifty linked to above) was on Darknet Diaries ep #90 (simply called "Jenny"), and there have been many others. Anything with Rachel Tobac is worth listening to, as is Alethe Denis; but pretty much all of them are fascinating. (There are occasional exceptions where you can tell that the person being interviewed is CLEARLY exaggerating what happened to them and don't get challenged by the interviewer.)

Some ploys used by social engineers are extremely elaborate, but in many cases the old trope of people always stopping to let a person wearing a high-viz vest and carrying a clipboard through any door still seems to hold scarily true.

Re: Firewall configuration

Many employers ago, we were having issues with a serial link between two offices (the same link that eventually had a hotel built in the line-of-sight that I've mentioned in a comment here before). The issues usually cleared up after a quick shut/no shut on the router ports, something we had to do every other week or so.

We'd recently moved the technical staff to new office on the other side of that link. As the link started to act up again, one of our senior hotshots did what he usually did when this happened: He logged on to the router, typed the shutdown command, hit Enter ...and then his face turned from healthy pink to pale to puce in a few seconds. He of course didn't factor into the equation that we'd moved, so he'd shut down the INSIDE of the link, the way he usually did. Though, of course, since we were now on the OUTSIDE of said link, he'd cut himself (and all the rest of the office) off from the network. It wasn't too far (it was line-of-sight, after all) but long enough that he'd have to drive between the sites. That's when I flipped open my Nokia 9000 Communicator, logged onto the Cisco AS5300 via the Nokia's built-in modem, hopped to the router terminating the link and opened the interface back up for him.

About a month later, I was promoted to senior myself. Not sure that that situation was the triggering factor, but I'm sure it helped.

Re: Cables

>Almost as bad as discovering I was still the ripe admin (with a valid account) for the companies public ip range - knowing them I probably still am 5 years later.

In all seriousness:

If you think this is likely (and from what I've seen of the world, it probably is), do yourself a favour: log on to your RIPE account and enable 2FA for it. With RPKI ROV becoming more and more prevalent in the world (which is a good thing!), it's now possible to cause serious damage from a RIPE account (which is a bad thing, well, depending on which terms you left your ex-employer on). If someone were to do so with an old account of yours, you don't want to get fingered for it.

Re: Brilliant

I'm still convinced that under-keyboard post-its are the number one reason why cellphone cameras were invented.

Re: Cisco switches have a DO NOT TOUCH button on the front too..

Ah, the "password recovery" button. There were even some models where the face plate was so cramped that if you inserted an STP cable with the rubber-covered cap into port 2 (bottom left, that model was 1-indexed if I recall correctly) it would push that button and keep it down simply by clicking into the port...

Re: 6509 was a chassis switch not a router

The main difference between the 6500 and the 5500+RSM (apart from being different generations) was that the 6500 had an integrated RSP and was running IOS natively for BOTH the routing and switching portions. The 5500 (switch portion) ran CatOS, and you would log on to the RSM which ran IOS separately to configure the routing functionality. (Source: Have locked myself out of both models.)

Re: Computer wiped every month ?

> Just look at the number of apps on phones and tablets which have regular updates that says "bug fixes and performance improvements". And by regular, it could be several times a month or even week.

The ones that always make me wonder are the apps that are clearly "done" but keep updating anyway. Like a ten year old game with a set number of levels, no interaction to any external services (like Game Center or such), and no ad platform integration. OK that some things in the back-end might need tweaking along with OS updates, but I have several such "finished" apps that update pretty much, as you say, once per month. What are they changing? Are they just updating unimportant things to stay top-of-mind?

Re: Muppets

It was clearly bork bork borken.

Re: Not facing the real question

Interestingly, one of the authors of the paper referenced in the article - Elizabeth F. Loftus - was the one that came up with the experiment you're referring to. "Reconstruction of Automobile Destruction : An Example of the Interaction Between Language and Memory" was funded by the US Department of Transport and published by Loftus and John C. Palmer in 1974. It's actually pretty interesting - not only did those that were asked using the word "smashed" estimate a higher mean speed of impact, but they were also more than twice as likely as those asked using the word "hit" to give an affirmative answer the question "Did you see any broken glass?".

The five-page clip from the 1974 publishing is at https://webfiles.uci.edu/eloftus/LoftusPalmer74.pdf for those that are interested.

Re: Must see

I cannot recommend watching this movie highly enough. Such a calm and quiet celebration of this incredible project and the people, nay, HUMANS, behind it. Heroes, every single one.

Re: Oh dearie me...

It's funny; with most controversial / polarizing ideas, you always get a faction of people saying "now, hang on; if you look at it from the angle of the ( doctors / unemployed / politicians / shareholders / capitalist elite ), I can see that this proposal make sense, because...". With Recall, however, this is the first such post I've seen in several weeks (excluding comments from Microsoft, of course) - and this story is completely built on a guess. Seems almost poetic, doesn't it.

What is it they say - "If the nicest thing you can say about an idea is that it's not illegal, it's probably not a good idea."? And I'm not even sure you can say THAT about Recall.

Re: "I didn't touch a thing"

We had a colleague who would open all her helpdesk support requests with "Ever since you guys installed Windows 97 on my PC, my life has been hard."

Let me tell you lady, your life was hard before we gave you Office 97 - we just gave you something new to blame.

Re: Trillian

I used Trillian for a while in an open-plan office landscape where it was more or less encouraged to have your speakers turned on and up so that everyone could hear every sound that all computers made. One of my colleagues liked the new-message warble that Trillian did so much that he'd just send me repeated messages that read "bududududu" just to play the notification sound... Not at all annoying.