1104 posts • joined 24 Sep 2007
Re: Front Line Opinion
"Anon Ex-RN IT administrator"
There's a horribly high probability that I trained you :-)
Even Sanctuary is outdated since it's now HEAT.
"Surely this should be filed under "Shipnotes", as a Boat in Navy parlance is a Submarine?"
A submarine is a type of boat, not all boats are submarines.
Re: The Enterprise runs Windows ME?
"Does that mean Captain Kirk & the others were talking to Clippy?"
"I see you are trying to remove Klingons. Would you like more paper?"
Re: Few comments
"Been working on trying to PXE boot to a Linux installation that can image the hard drives. Backups via 2.5" floppy drive are painful in so many ways."
Same advice as before, buy an appropriate adapter card and sidegrade to CF or SD card. You can get adapters designed either to use inside the case or fitted into an ISA card to give external access to the socket, allowing you to backup to a CF card.
Re: Few comments
"The 200-500GB drives I had didn't work and didn't have a jumper for 32GB compatibility..."
For future reference, we had similar problems in the past. It's possible to get CF Card to ATA connectors, which means you can use a 32GB CF card or add another layer of kludge by using a CF card to SD card adapter. Possibly a good idea to get some of the adapters now while they are still available. They cost all of £2 to £4 for the adapters and they are available for 2.5" and 3.5" pin configurations.
Re: Few comments
"You do realise that the flagship of the Royal Navy is a First Rate Line of Battleship, which was laid down in 1759 and predates the formation of the United States of America?"
You forgot to mention it has no headroom and it leaks like a sieve. It's possibly not a great example to wave around.
"I work for the US Navy with coworkers"
How many cows do they ork each day?
What could be more embarrassing for a Russian spy: Their info splashed online – or that they drive a Lada?
Re: @mark i 2
"They were better made than the Ural a friend rather foolishly bought"
The Belgian Lada distributor also sells UAZ trucks, for incredibly high prices. Crash protection, none. Design fossilised about 1947. I can't imagine that they sell many of them.
Re: 6 downvotes and counting
"A friend owns and operates an auto service company here in the States that specializes in Bentleys, Rolls-Royces, Land Rovers, and Jaguars, as well as Mercedes and BMWs. He has often said 'If you know 30 people who own British cars, you've got a reliable monthly income.'"
None of the cars that you list are British. German, German, Indian, Indian, German, German. Now, if he had a Morgan franchise...
I'm thinking of buying a Lada, I wonder if this will instantly identify me as a Russian spy? After what feels like a very long absence from the European market, because they couldn't meet emissions standards, the Lada 4x4 is back on sale in Germany and Belgium. They are are great rough and ready alternative to the Faux by Fours sold by the major manufacturers.
New Zealand border cops warn travelers that without handing over electronic passwords 'You shall not pass!'
And there's another...
... place to add to my list of sh*tholes that I won't travel to.
Not long before I add "The UK" to that list.
Re: 0161 = block
"Although the 'babs from Camel One in Rusholme were supreme"
I did six years at Owens. I can honestly say that I have no idea what you are on about. The salubrious joints of my day were the Conti (New Continental Club), Band on the Wall, the Russell Club and dodgy café behind the medical school that sold suicide specials.
One of the many things that the EU and US FDA did in the past was to introduce "strict liability" for the pharmaceutical industry. This means that directors get to go direct to jail without collecting their pay cheques in the event that the pharma company does something bad, like knowingly selling drugs that cause harm.
The fallout inside the industry was impressive. In the 80s company directors largely were deaf to scientists saying "This drug does very little good, and could actually harm people." If it could clear the FDA hurdle it was going to be sold. After strict liability the directors scrambled to enhance the powers of regulatory compliance within the companies.
The same should apply to all businesses, TBH.
"From a gross profit perspective, Maplin was incredibly profitable (the full accounts made up to 28 December 1996 show gross profit of £15.6m on turnover of £32.6m), a result, perhaps, of its broad appeal to a mix of different clients "
I'd say the reason for the profitability was the ludicrous prices charged in Maplin stores. And there lay the roots of the demise. It wasn't "online" that killed Maplin it was "competition". Maplin had originally, in the catalogue days, been both competitive and extremely helpful. The catalogue was a brilliant source of information and something I looked forward to receiving each year. The many examples, plans and technical info sections in the catalogue encouraged experimenting and that lead to buying components, cases, etc from Maplin. The shops were originally the same, staffed by people with an interest and willing to help. The shops were also well stocked.
The rot set in partway through the 90s. The knowledgeable staff started to drift away, the availability of stock became intermittent. By the 00s that had turned into guaranteed unavailability of almost everything. I recall wanting some aluminium knobs only to be told that they weren't a stock item and the wait for delivery was two weeks. I could buy them online for a tenth of the price and have them delivered next day.
The suits were more interested in pushing very expensive tat and gouging on the price of cables and cards. I suspect that many customers stayed on though inertia but eventually everyone gave in to the fact that you can buy the leads at a fraction of the price in a supermarket / DIY store and any "unusual" components like knobs, resistors, cases, PCBs, etch baths etc. could all be obtained faster and cheaper via eBay/Amazon.
"I used to play chess with one the Bletchley code breakers, John Herivel, as a kid."
The headmaster at my grammar school was a former Bletchley code breaker. Sadly he was a bullying martinet with a short fuse. I respect what he achieved, not what he was.
Re: Support the TNMOC
'Back then you had to wait for the TV set to "boot";'
Heavens no. Your CRT TV did not boot. Like all thermionic valve equipment of the era (RADAR, Radio, Mine detectors etc) it had to "warm up" before it could be used. Which was important for Colossus which had to be kept running 24/7 both to be ready to use when needed and also to improve reliability because components weren't subject to variable thermal loading.
Re: Alien Agilities .... Remote Virtualised AI Facilities with SMARTR Utilities
Can someone reboot amanfromMars1 again? It seems to have a corrupted database.
The announcement doesn't say what people think it says
The announcement refers specifically to the Public services provided by the police. That is, it refers to material that will be OFFICIAL as far as the GSC is concerned. It will be all the tedious garbage about meeting your PCSO, bicycle security stamping, public event policing, traffic, accidents and crime statistics, newsletters and puff pieces about what a wonderful chap the ACC is. It will not be a repository for criminal records, case work, forensic data etc.
Although I haven't worked on this delivery I have seen some of the other stuff heading to AWS and it's largely non-contentious. I hear from "people who know" that AWS is offering a better security model than other providers and the contracts are regarded as less painful than those of other providers. Also it's much cheaper than G-Cloud offerings.
Yes, we need scrutiny of how our money is being spent, but the HO seems to be being responsible, this time around.
Besides, a new DC costs around £25 million does anyone seriously think that an SME will build one of those? SME's just get to provide services to big integrators and in this case there seems more opportunity to work supplying services to/via AWS than expecting on of the big suppliers to let SMEs supply capability via their services. It also offers the real possibility of remote working, something that is very hard to do at present for any government IT. Although even there, attitudes are changing.
Re: How do they send out the new "secure" passwords?
"I admire your security principles but that's how 99.9% of password resets that are not links are sent. Let's not be too anal eh?"
That, with respect, is the old "Eat shit, 17 Quadrillion flies can't be wrong." argument rehashed. There are many more ways of distributing a password than sending them unencrypted in email. I haven't seen the emails in question, but I suspect these were not one-shot passwords based on the content in the article.
I'll even place odds that they did not use the sensible challenge/response approach of password + text message to your phone for a verification code then require password be changed on first use. Because anyone clueless enough to use your name as part of password is not going to use one-shot passwords either.
Anyway, I'm a Security Architect. Being anal about security is what I do.
How do they send out the new "secure" passwords?
My guess is that they send them unencrypted in an email. Because that's what happened to me when the company that I used for domain name registration and email sold its business to a new supplier.
Re: "no redundancy in the internet link"
"maybe look up the gate information on Gatwick's website? "
Have you tried to do that? Good luck trying it. If you're lucky you'll get departure gate information in time to watch your flight depart. If it's working as usual you will get the information 24 hours later.
I have the Gatwick app. It's never told me a gate number before the flight has departed.
Re: "no redundancy in the internet link"
"The question for me is why there was no local cache? It would have grown stale over time"
It's an Arrivals and Departures system. The data grows stale in no more than a couple of minutes. A local cache doesn't really help. What is needed is resilient comms and that is standard provision for systems like this. There should be no SPOFs in a real time system.
"Because oddly enough it doubles the cabling costs and that wouldn't do."
It really doesn't double the cabling costs. Pulling a multi-pair cable is a sensible precaution and if it is combined with the appropriate type of switch failover to an alternative pair is seamless. The switch will even notify that a pair has failed so that action can be taken by the SOA. The only difference in price is the cost of cable + switches which is minimal because labour is the big spend.
This is, quite frankly, poor practice on Vodafone's part.
Re: One of the 98% that give the 2% a bad name
"As in the UK, if the court decides that the bankruptcy was to avoid a court judgement, then it merely exacerbates the penalties."
If only that were true in the UK. Note that in the ACS:Law debacle the SRA accepted Crossley's declaration that he was "bankrupt" at face value and did not question him continuing to live in a home and driving expensive cars bought with the cash that rolled in from his "copyright infringement" activities. Despite there being a body of evidence that showed that all the participants in the "copyright infringement" actions were closely linked and that porn had been seeded to torrents to entrap punters, the SRA took a generous view of Crossley and fined him less than half the purchase cost of one of his Bentleys.
The Prisoner of Prenda?
I'm surprised El Reg didn't got for this headline.
I'm also pleased to see the way this has gone. Contrast this with ACS:Law and the vile Andrew Crossley who leaves a mucus trail behind him wherever he goes. ACS:Law was running a similar scam with evidence from leaked emails that the "copyright holder" claiming infringement of rights was closely linked to ACS:Law and that torrent sites had been seeded with porn that was not selling at all in the market. So of course the trackers were compromised from the beginning.
What's the reaction of Solicitors' Regulation Authority? They found he was guilty of "acting in a way that was likely to diminish the trust the public places in him or in the legal profession" and "using his position as a solicitor to take unfair advantage of the recipients of the letters for his own benefit". The consequence was... a mild slap on the wrist. Crossley pleads bankruptcy, gets to keep his mansion and the cars he boasted about in leaked internal emails, and suffers not at all because he's still able to practice.
The UK really needs to tighten the noose on its professions, lawyers in particular.
Stinking barrel of fish
It became obvious that there was something extremely fishy about RCL last year when, having crashed out of Indiegogo they decided to try to raise money directly via Facebook. Many of the people replying to that "offer" were unaware of the history of RCL and were incredulous when warned that all was not as it seemed. Several declared loudly that they either wanted a console so badly that they would take the risk or that they thought that the warnings were from "trolls" setting out to blacken the names of the noble directors.
I wonder how much dosh they raised through that route?
Re: Data Controller
The position is explained well here:
A link helps when posting URLs.
Re: Simply fit all computers with sundials.
You're under-thinking this. As John Taylor observed, if you are designing something to do a job, it is better to have it doing two things rather than one. Hence in this case, the sundial, excellent as it may be, is second fiddle to a Sumerian Water Clock. We can use the Water Clock for processor cooling as well as a time signal.
It seems typical that just as we got to the point that the emergency services had knocked the bugs out of Airwave that the decision is taken to pull the rug from under the system. Yes it had problems, most of which were due to piss-poor user training. There were people issued with Airwave terminals who didn't even know what the orange button was for, for example. There was also budgetary/contract stupidity that meant the original plan to have a 3g SIM in every handheld terminal so that users could make phone calls as well as receive/transmit via the network was stillborn.
AFAICT there was no awareness among the people negotiating the 4g contract about how Airwave was used. The need for presence, status and position to be transmitted to a control room seemed to be overlooked. As one MP said, 4g sounds great until you're alone in a dark alley facing up to a couple of thugs with knives.
Linux is great, but one has to be rather naïve to think that Linux is "free as in beer". There are cost savings to be had, but the majority of work irrespective of OS is hands-on work that has to be paid for. That's the same in both cases and can be rather more that the cost of implementation of Windows for Linux because Linux takes a bit more work than Windows to configure. Before the Linux weenies, and I'm one of them, have a meltdown, yes, yes, I know but sadly it's true. Windows works mostly in "chimp mode" where people poke large friendly buttons like at McDonalds to get something up and running. Linux admins and installers need to be both smarter and more savvy. That has cost and availability issues.
As I said five months ago
It takes spectacular talent to be in the position that Capita is (was?) and not be coining money hand over fist. They are in the privileged position of being a monopoly supplier to government. Their income is guaranteed and gold plated. They are helped along by a "sympathetic" approach from government ministers who, if one is charitable, one must assume have an eye on becoming a Capita shareholder/director just as soon as they can wriggle free from government.
As an IT contractor I've seen the Capita coalface where they move in and tell the existing contractors to either take a massive, and I mean massive, pay cut, get opted in to IR35 and be handed a complete crock or leave. I looked at the offer and left. I later found out that although payments to contractors had halved the charge to government had increased. Money for nothing.
When one has a client that will collude in increasing profitability how can one lose?
Re: Why do people make this so complicated
"Leave the network as is, change the router at the edge and enact a policy of no device gets internet access without explicit consent."
Perimeter-only security like that is from the last century and has been superseded because it's not effective.
Re: Anoher obvious solution
"is to keep personal data off the devices in the first place."
Yes, because there's no way that you need to be able to link an MRI scan or a clinical chemistry record to the patient that the results refer to. <rolls eyes>
Re: obvious solution ...
"... don't connect your damn hospital's internal system to the damn internet!"
It's a problem that has been solved elsewhere. There are several approaches to transmitting data from inherently insecure systems to secure systems and for managing internet connectivity. However the work involved is rarely considered when purchasing Medical systems, SCADA systems etc. The people controlling finance usually consider security as "something that gets in the way and costs money". Real PHB stuff.
Diagnostic equipment and patient records should be on separate (v)LANs to the user/public/internet systems and each other. There should be a controlled gateway which enforces separation and antique systems that don't get patched should be regarded as being as much of a threat as the Internet.
I think this report seems to be looking at it the wrong way round, indicating that someone thinks that medical systems should be frequently patched/updated. Yes that's one way of doing things but it's not as good a solution as the above and it causes the regulatory headaches mentioned in the article.
"Mediocrity knows nothing higher than itself, but talent instantly recognizes genius."
-- Arthur Conan Doyle
I don't think I dreamed it
But it is surreal enough to be a dream. I'm reasonably sure that earlier this month RCL were attempting to raise more cash from punters outside of Indiegogo, via Facebook. I looked at the offer, sniggered and promptly forgot about it. However a week later I saw people stating that they would be pledging cash support against the promise of receiving discounted Vega+ consoles.
I fear this will not go well
MoJ had to outsource because there were no in-house skills suitable for the delivery that they wanted (needed?). The sort of thing they want to do - secure VTC, secure voice, roaming "secure" end user devices, and plug in access to IT services across the entire Criminal Justice estate is bread and butter for commercial organisations and requires a skill mix not present in the Civil Service to implement.
This is a limited form of "taking back control" and is probably what should have been done from the beginning but it does not address the public sector skills shortages in both technical skills and project management for complex technical programmes. I've moved between commercial and government work quite often over the years and I find that the public sector is always behind in terms of how it manages work. Some of the blame lies at the feet of the CS hierarchical structure, some at the ludicrous policy of preferring arts graduates for all roles, some at the feet of individuals who are unable to stand up to nonsense from either their superiors or systems integrators.
This will only be sorted when a technical education is recognised as essential for delivery of technical programmes and when programme management are empowered to make decisions and reject stupid ideas.
 FSVO "secure".
Re: Jupiter's magnetic fields
"for most astronomers a 'metal' is anything with atomic number greater than 2. E.g. nitrogen, chlorine, etc."
If that is the case then astronomers need to head back to school and learn some chemistry. Metals are electron donors which can share valence electrons between other metallic atoms in a mobile electron cloud which is why they can conduct electricity. Neither nitrogen nor chlorine is a metal.
Re: Jupiter's magnetic fields
"Earth's>molten iron-rich core>moon"
The moon isn't important in this, it's just earth's metallic core that matters.
"What's causing Jupiter's?"
A metallic core. Hydrogen is a metal.
Re: So who's Javid?
"How much of an authoritarian whackjob is he compared to Amber "Hashtags" Rudd?"
I think the evidence about Javis is that these days he's very keen on deporting all those horrible EU citizens from the UK ASAP. He also proposes that the UK should throw open it's borders to let in as many nice, cheap Indian citizens who know something about IT so that the government can escape from having to pay huge contractor wages. Some of these contractors earn more than the Prime Minister you know!
Re: Hitting those notorious targets of illegal immigrants
"So, that means the H.O knows how many (illegal) immigrants it has actually allowed to enter the country."
No it doesn't. The setting of targets by ministers is unrelated to the ability of the civil servants to do the job and certainly takes no account of the possibility that any given department can meet those targets. A target is just something plucked from the air and then used as a stick to beat senior civil servants who do what they have always done, cascade the misery downwards until the problem becomes one for some under-educated under-achiever in some miserable, dank office hundreds of miles from London.
In the case of Home Office targets it will work like this, the Minister sets a target for removal of "immigrants" from the UK. The Minister hopes that this will mean that thousands of people who entered the country illegally will be removed. However the Minister is also careful not to specify that the "immigrants" are proved to be in the country illegally, they leave the definition of an illegal immigrant up to the department.
The department has not a chance of getting this right. It has no data to turn to that will tell it who entered the country illegally because they entered the country illegally and didn't fill in a form saying that they were illegal. It would be far too difficult to go looking for these people, so the department does not bother. What they do is to trawl through all the nice people who in all innocence engage with authority. People applying for a passport, driving licence, NHS treatment, pensioners etc. Then the department demands impossible levels of proof before accepting that someone is legally resident. They refuse to accept documents such as decades of tax payments, school records, mortgage, utility bills etc as proff of residence. They refuse to accept legally issued birth certificates unless, say, the person has the original signed-in-blood birth certificate issued at the moment of birth and handed to someone else who lost it. If they can't comply throw them on an aeroplane to some place they have never seen before then forget about the problem. It's just another step towards that 12,500 a year target.
It's always far easier to use bureaucracy to make life miserable for decent people than it is to find people who have actual criminal intent. There's not even an attempt to find out what the contribution of an individual to the UK is. So we end up throwing out doctors, nurses, teachers, grandmothers, kindergarten assistants (etc.) and letting the drug dealers, pimps and ladies of negotiable value stay.
Re: Batteries in the pocket, eh?
"the most common underestimation made in the design sector of any product is the ingenuity of idiots."
It has been this way probably for as long as Hom. sap. have existed. Two notable SciFi works pointed to this, Cyril M. Kornbluth in 1951 in his novella "The Marching Morons" that described a near future society in which the few "intellectuals" are working themselves to death to stop the morons from harming themselves. H Beam Piper's "Day of the Moron" covers the same ground but from the point of view of a nuclear power station operated by people who will push buttons "just to see what happens". Also written in 1951 which makes me a suspect that some editor sent out a request for stories on a theme. The latter book was prophetic given that it was written 35 years before Chernobyl.
Re: F1 is a Car Crash
"I didn't realize people knew this much about people who drive around in circles"
You're thinking of NASCAR. HTH.
Re: F1 is a Car Crash
"I go back to Sterling Moss"
Was he Stirling's more expensive older brother?
Re: F1 is a Car Crash
"the most exiting was the pit stop"
Well, duh. The only place they can exit in normal circumstances is the pits.
That has to score some sort of record...
... for fastest, most OTT, fanbhoi knee jerk. First world problems or what?
This will fail...
... for the same reasons that it has failed in the past. The Civil Service can't write requirements. They don't even understand the concept. So what happens is that they get the suppliers to write the requirements themselves with some contractual stipulation about "Chinese Walls". This is flawed because it assumes that the supplier's staff will have sufficiently broad knowledge to be able to write an inclusive set of requirements that leads to selection of an optimum design, build, service and support from the supplier. However every supplier, even with good intentions, only favours or understands what they do now. They can only choose from their own menu.
It gets worse when the Civil Service get involved with design reviews and their "new" ideas. When you get the likes of GDS screaming "Agile" and setting up some naïve process which isn't Agile because the government can't do Agile but they put some fairy-dust sprinkling of Agile in place then continue with their old design review boards and four month review periods. Then every decision needs to be signed off by a Minister who doesn't even understand what they are looking at because a PPE degree doesn't cover anything about IT, more delay, more cost, more flighty last-minute design changes.
Still we can fix it now by buying a cloud solution <rolls eyes>.
"I'm going to stick with 'cause they are all greedy a-holes who use possible sales as merely permission to be data fetishists."
It's so broken that, for example, staying at a hotel in Central France because the road was blocked with snow ahead sees me deluged with adverts to return to the same hotel. It's not going to happen guys, it was a distress purchase. I buy, say a DIY item like a drill, I get besieged with advertising for drills. I'm not a site manager, one drill should last me the rest of my life.
It doesn't even work for things I buy often. I'm working on a project where I need several mini PCs. I buy a handful from suppliers to test, I find one I like. I'm now receiving adverts from every single manufacturer tested for their mini PCs. But, the type I want is no longer in stock. So I'm getting ads for stuff I would never buy. So what happens? Yes, I add the names of the advertisers to my list of "Organisations that I will never do business with." Way to go, guys.