@returnofthemus Re: The real pain is going to be supporting customers....
Actually the AC's seem to know more about it than you think.
ODPi is a bit of a joke. There's a good reason why MapR and Cloudera passed. ;-)
4454 publicly visible posts • joined 11 Apr 2006
I am familiar with HIPPA and several different countries banking laws.
Its interesting to point out that none of the files shown on the screen shot included code, but were presentations made to different clients.
So while no data was compromised, (No shock there.) there was client specific information. The presentations are work products and should be owned by the client where TATA doesn't have the right to reuse them. (Note: This could be added to the contract, IBM does this all the time with their Type III contracts.)
I have a friend who tossed Mu Sigma from the account because he couldn't trust them to not reuse proprietary algorithms at other clients. The whole point is that many Enterprises are starting to learn that moving offshore may not be the best news. However... it will take many years to right this. Note that if there is another disruptive technology.. it could increase the speed of moving away from offshoring.
Of course if there is a case for a massive lawsuit against a company because there was a massive error done by the offshore team.. It could happen faster.
That has nothing to do with it.
The US already had a large infrastructure in place and they looked at the cost of moving to chip and pin versus the losses (theft) that they had at the time. The cost of moving was higher. So they didn't move.
When there was more data theft and fraud such that the cost of moving was cheaper, the US moved.
That's pretty much the gist of it.
Outsourced teams will and do cut corners to save money - and having worked in India for many years, there is a malaise there - a level of mid-management there that act like feudal lords and treat the programmers / architects / tech resources as serfs.
That's a cultural thing. I've seen it from on-shore Indian managers. While this isn't across the board, its a high percentage.
You do realize that just parking client's material off the client site could be illegal?
If any of the Financial institutions considers the code to be trade secrets... you have a crime of theft.
At a minimum, you most definitely have multiple breaches of the contracts per institution.
This could cost Tata a boatload of money.
Spot on, however I wonder if El Reg actually understood the significance of the following:
The documents related to programming work Tata was carrying out for six big Canadian banks, two well-known American financial organizations, a multinational Japanese bank, and a multibillion dollar financial software company.
Silly me, but shouldn't there be a glass wall between different clients?
Meaning if I were one of those clients, not only would I give Tata the boot, but also would be getting the team of in house counsel lined up to sue the carp [sic] out of them for violating and sort of MSA and NDA.
At the same time, this wasn't the work of a single bad programmer, but a concerted effort to share code.
This also shows not only the lack of professionalism but also calls to question their skills as developers. Which implies Tata is over charging their customers by providing under skilled employees.
Sorry for the flame, but its more about the situation than anything else.
But you can actually train your pallet and can tell the difference.
A friend of mine was a bartender. He had me turn around, and he poured 5 different Vodkas.
He asked me to do two things.
Find the vodka I usually drank, and then which vodka I liked the most.
I was able to do both and as it turned out, they were different.
Some people can tell the difference. And for some, they preferred the cheaper drink
Mate, you're got a bit of a revisionist history...
Bush got the intel from the CIA who's source was actual Iranian.
Bush then took it to Congress which then declared war on Iraq.
Now... the funny part.
Shortly before Saddam was to be hanged, he admitted that he was the source of the WMD information. He spread the news in an effort to keep Iran at bay. (You do remember the Iran/Iraq war, right?) He was surprised that the US fell for it.
There's more, but you get the idea.
Did the US really fall for it, or did they just use it as a pretext (excuse) to take Saddam out?
You'll never know and neither will I.
Have you looked at other countries and their politics? ;-)
South Korea? and then in South America?
I would hope that the US would be better, but unfortunately there's politicians who put partisan politics before what is best for this country.
Trump would be a better president than Obama if given half the chance to get things done. Of course someone would have to take away his twitter account too, but you get the idea. The thought of Trump actually doing a good job scares the Democrats so much that they would rather attack Trump than fix the DNC.
Yeah I get Obstruction is grounds for impeachment.
I was alive during Watergate and the whole Nixon thing.
I also remember Iran/Contra
And of course Billy Boy's amazing verbal skills and aw shucks moments.
The issue is though that Trump didn't commit obstruction. Obama and Lynch committed obstruction.
Clinton committed obstruction. (Of course its hard to impeach since they are all out of office. ) ;-)
Trump?
Sure, let him hang himself. Oh wait. The Democrats are too busy stalling and 'resisting' to let the man and the rest of Congress to get their jobs done.
Personally I would think that the entire DNC party should be rebuilt from the ground up. Too many wackos in the party.
Did Comey take notes during the meeting?
No. He took them afterwards. So even if he showed his notes... there will be questions.
Not sure where you're talking about 'convictions'.
With respect to Comey... both sides agree that a conversation took place. Comey's notes done after the fact are his recollections of what he heard and what he thought the POTUS meant.
Trump doesn't deny that the meeting occurred but does dispute Comey's account of it. So Comey could be correct in that his notes reflects what he thought about the meeting. Trump recalls something different. Since there was no third party to corroborate either. Notes or not... its still he said / she said.
Trump does have credibility.
Comey, on the other hand is damaged goods.
There's more to it of course.
The point of a he said, she said trial is that the person who wins is the one who can tell a better story to the jury.
Comey has his notes, which he admitted to being the leaker. He can be charged over that. Even though they are his work product, under the official records act, they are the property of the Government. And it wasn't just a note by Comey, it was something said between Comey and the POTUS. Classified or not, Comey can be charged. (Already Trump's lawyer(s) are asking for the judiciary committee to look in to the leak.)
You also don't seem to get it. Trump won based on the electoral college. It exists for a reason. Had Trump spent more time in CA he could have taken more of the vote. Clinton lost the midwest because she ignored us.
And in a he said, she said... the courts also put more weight on the context of the situation. Comey leaked his note after he was fired.
At the same time... going in front of congress vs going in front of the special prosecutor are two different things. The special prosecutor can and will grill Comey.
I'm no fan of Trump, but him winning is a fault of the voters and the other politicians for being so shit. Not a fault of the system.
Well I'm not a fan of Trump either and you can blame two things...
1) The DNC party rigged the nomination to be Hillary who was un-electable.
2) The MSM who gushed over Trump and gave him free air time ignoring other candidates.
To Trump's credit... he understood the voters and what they wanted. At least give him credit for attempting to fulfill his campaign promises.
But its also important to note that if it came down to a popular vote, we would end up with a system found in the Hunger Games.
Wow, shiny gold badge... :-)
Ok,
The reality is that there are more ties between Clinton and the Russian government that Trump.
Recently... literally last week I think... there was yet another batch of emails released due to the JW (Judicial Watch) FOIA lawsuit. The major take away was that Clinton didn't want to fly on the same jet as the First Lady Obama. (You can google that ...)
In that same batch... there are a couple of emails that tie Clinton as SoS and the Foundation. One thread ties the threat of an IRS audit in order to stop the investigation by a country in to a CF donor. (You can google it.) In another, there's confirmation that a Russian Investment Group, again CF donors got 'hooked up' with the right people in the US Government (State Dept. )
The Russians wanted to have chaos... and personally, none of the world leaders wanted to deal with Hildabeast and prefered Trump to her. ;-)
Actually it is a leak.
Those notes are official documents and under the law (Official Records Act) while not classified documents, it is a criminal act to leak them. They are work products.
At the same time, there's the issue of executive privilege. Only Trump would be able to release the notes.
Comey's actions are criminal, although I doubt that they would charge him with any crime.
You are mistaken that it has to be classified material for it to be criminal. It does not.
Does Trump have the tapes?
This could be a bluff. If its a bluff then its only as effective as long as you don't know the answer to the question.
If this isn't a bluff and Trump's staff admits to there being tapes... then you have a real problem for Trump. Those tapes could be subpoenaed. This is what caught Nixon and forced him to resign.
It also begs the question... if there are tapes, then what else did Trump record? And again those recordings would be subpoenaed as well.
Its a bad bluff on the part of Trump.
But the real question... did Comey lie under oath because he claimed Trump's tweet is what forced him to leak (which is itself a crime) or is Trump's lawyer right that Comey leaked before Trump's tweet.
That would be a very easy thing to prove.
Exactly.
Alan Dershowitz, a very liberal democrat and Harvard Prof on Law, also pointed this out.
Trump can pardon anyone after the fact. Where the fact is the alleged crime even if there are no charges.
Hypothetically, the POTUS can't hand someone a pardon for killing X before they killed X, but if X was killed and that someone was a suspect, the POTUS could pardon them even if they weren't yet under investigation... (Note: Bad example, but proves the point...)
This is why you really don't have obstruction. Comey admitted that Trump didn't say go do X which would have forced Comey to do X, or resign because to not do X would be insubordination. Many don't understand the law, and those in Congress who do are willfully being ignorant for their own political gain.
Wow.
So many things wrong that I don't know where to begin.
First, Obama made public statements stating an opinion during the investigation. This was in fact putting his finger on scale.
Second Obama claimed he did nothing to interfere with the investigation. Yet he had many meetings with Lynch who then, according to Comey's testimony yesterday, attempted to influence (obstruct) the investigation in to Clinton. In fact there is more evidence against Lynch and Obama than there is against Trump. Not to mention Comey previously testified that he did not feel Trump's comments were in fact obstruction.
Your tirade about Trump's tax returns is old news. Trump won the election and Trump was under NO LEGAL OBLIGATION to submit his tax returns. Yeah. There is no law requiring it although Jimmy Carter was the first POTUS candidate to do so setting precedence. With respect to Trump's tax returns... the leaked page (which was illegal to leak) showed he paid more in taxes than any of the other candidates.
So please drop the red herrings.
No.
Where's the cover up?
Trump didn't use executive privilege to stop Comey. (He could have)
Trump encouraged Comey to testify because Comey couldn't accuse Trump without himself getting charged on a couple of counts.
The worst thing for Trump, Comey called him a liar because their recollection of the meeting differ. The Democrats and the MSM pounced on that.
No.
Here's the problem.
Under the law, if Trump wanted to shut down the investigation to Flynn, he would merely just issue a pardon to Flynn. He can do this any time after the alleged act occurs, even if there are no charges present.
That would put an end to the issue, however it would cause more fodder.
Under the law...
If Comey believed that Trump's conversation was an attempt at Obstruction, he would have been obligated to report it ASAP. He did not. By waiting... Comey violated the law. Were he to now claim it was obstruction, Comey could face criminal charges.
In the past, under oath, Comey told Congress that he did not feel that there was any obstruction on the part of Trump. So... if Comey said anything different, he would be in trouble for lying under oath. It would result in a perjury charge and then Comey would have to defend himself.
So Comey was already boxed in to a corner before his testimony.
Beyond that...
In order to impeach Trump, you would have to show intent.
There is more evidence to say Obama committed obstruction when it came to Clinton's email investigation. And also Lynch.
So only a rabid Democrat would call for impeachment while others in the Democratic Party will not yet call for more investigation in to this...
Lawyers learn that unless you're under oath, where you are compelled to be truthful, its ok to lie. And even under oath, as long as its not an outright lie, you can say things that are less than truthful. There exists a willful intent to twist the interpretation of the facts to their favor.
If caught in a lie, the lawyer will apologize and say that they misspoke. Mea Culpa.
Mr. Comey is a lawyer. Don't forget that.
Here's the take-away from Comey's testimony.
His recollection of the events differ from those of Trump. Since they were the only ones present this becomes a he said, she said issue. Both parties will recollect the meeting differently.
With respect to Trump's lawyer's statement...
He honed in on the timeline of events.
Comey said he leaked the memo because of Trump's tweet about there being tapes.
Yet the lawyer indicated that Comey leaked the memo before Trump's tweet.
This should be easy to corroborate. If true, it will hurt Comey.
Hogwash.
I've seen sales managers who run and work out daily and are in top shape.
I've seen engineers that are also the same.
And then I've seen fat slobs in either position.
As someone who's traveled across the pond... If I travel in coach, even economy plus, there isn't enough room. The seats were not designed for someone who is 6'2" with broad shoulders. And then you have the guy next to you. So you're fighting for shoulder space. Try sleeping twisted and then go to work the next day... it doesn't end well.
The key question ... do they expect you to function when you land? Also those seats are a death trap if you aren't able to get up and move about.
It depends.
On small retailers, their website provider would capture the details and handle the online billing.
With larger chains... no they handle all of the information.
There is tokenization but that happens by a third party at the time of authorization. Its relatively new and it allows the hotel chain not to capture or store the CC info, but the token which is unique to the chain. The actual cc info is stored by the 3rd party. This causes a bit of a headache with the CC providers for a couple of things... (I could say more, but then I'd get in to trouble.., which is why I avoided the tokenization issue. Note: Not everyone is there...)
Things are moving towards the tokenization, however... your CC info is stored by the provider and if they ever get cracked... whoa mamma.
Yes, she was foolish in her use of the Debit card.
Were she a he, I'd say the same thing.
Its not a sexist thing either.
But its funny that you went there.
BTW, I've talked to all of my relatives and my wife about not using the debit card for anything but use at an ATM within a bank and not out in the open. Have you done the same?
Smug?
Hardly.
In the past 27 years, I've had fraud on my Amex card 3 times.
Each time, I cancelled my card, got a new one and the charges were dropped.
No harm, no foul.
So I am protected from stupidity.
There's more to it, like a bad experience at a boutique hotel I was forced to stay at once that was a dive and of course the company made me prepay the room.
Fraud will hit, however using my Amex makes my life easier, not to mention I was in the middle of BFE and they delivered a card to me within 48 hours after they contacted me about the fraud.
And yeah Debit card mischarged? Phone up, report fraud... wait until the money is back in to your account.
Why the girl didn't do that immediately... is something not found in the article.
Its not a question of victim blaming.
Is it not completely obvious that the hotel screwed up bad? Really bad?
The question... is there a potential lawsuit? Maybe, however it can be avoided if the hotel makes restitution to the woman. Which any good lawyer would tell them to settle ASAP.
As to the use of your debit card. Yes, that's the thing. You will get your money back eventually. What wasn't said in the article was if or when the woman contacted the bank. She would have eventually gotten her money back so she's protected, however its the temporary loss that can be problematic.
Calling the woman dumb because she made the mistake of using her debit card isn't blaming the victim unless of course you believe that trying to avoid being the victim isn't a smarter course of action.
Mate, you really need to learn a bit more about what happens on the back end and PCI compliance.
The retailer stores the CC information. They have to in order to charge the customer. So they have the full credit card number. The web site, and users do not have access to the whole card, only the last 4 digits because that's all they need to confirm the identity of the person based on those numbers. Now they are asking for more information as a way to verify the person. (Home address, email, phone #, etc...)
The last 4 digits is used to identify the account information. That doesn't mean only the last four digits are stored. The whole account info is stored. That data has to stored in an encrypted format while at rest.
And they have to show that only authorized people have access to the information. There's more... maybe you should learn it.
With respect to the lawsuit... if the hotel doesn't make restitution, there could be a lawsuit, however... the hotel will make restitution. Why the woman didn't contact her bank, even w a debit card, there are laws that they have to follow.
With respect to the hotel... yeah, they are going to have a major problem with their card processing company. It theoretically could bankrupt them.
The Debit cards have the same rules, however it will take time before the money is back in her bank account. Whereas Credit Cards can't get to the money until its withdrawn.
Not to mention there are rules about disputed charges and what the parties have to do...
Never use a Debit card unless you're doing an ATM transaction at your bank. Only at the banks.
No,
No lawsuit as long as they make restitution. In addition, she should have contacted her bank.
As you said the hotel is on the hook for refunding her money, plus and bank charges (over drafts) she incurred.
If she had to get a lawyer, they would be best to also pay her legal fees. (This would be in a settlement.)
The hotel did have the right to store her credit card information, however the first question would be if their system was PCI compliant.
The larger issue... why would someone in IT use a Debit Card for a transaction. The only time I use mine is at the Bank's branded ATMs at their branches. Other stuff on Credit Cards. (Amex for one)
And people wonder why I stay at the larger branded hotels when I travel for work...
And you're right... their IT staff should be terminated. Not just one but several people.
Sorry, but there are many companies that are profiting from their use of big data solutions.
"The answer may come down to one tweet from a Gartner analyst. The spoiler? Virtually no one has been successful with their big data projects. They're spending lots of money but having little success."
Hogwash.
The issue is that those who are successful are not sharing their success stories. Nor are they talking to Gartner.
If Matt meant to talk about those companies supporting the open source product, then sure, Hortonworks and Cloudera are still burning thru cash. MapR hasn't gone public and they really haven't released their financials and their results may be interesting.
There are a couple of reasons why Cloudera and Hortonworks are having problems turning a profit but that's a different story.
Companies that have invested in Big Data are having mixed results.
In part, they hire cheap labor who don't know what they are doing.
In part, they are still early on the adoption curve and need to level set expectations.
In part, many companies don't understand the value in their data and have over estimated its worth and under estimated the costs involved in attempting to extract that data.
And yes, I am one of those 'experts' but rather than the blue talking head, I went with the flame icon.
Matt needs to do his homework before writing yet another "Hadoop is Dead" story.
The truth... Hadoop is hard. Too many learn only the basics yet fail to learn what is needed to make things actually work. Free clue. All of those on shore gray haired guys who've been in IT for more than 25+ years ... you need those guys to help with the infrastructure engineering and to help level set expectations on what you can do with the data.
And to your list:
Facebook, Google, and others that I personally know but legally can't name.
That sort of client travel is permitted and isn't normally an expense.
That's where the work is being performed. Its the non-billable expense that has been hit.
The issue though is that these guys and gals will do the heavy lifting and train their replacements where they will then fade away to find a new job.
Lloyds just made their systems worse and they don't even care because the bean counters can show the savings to the bottom line as long as things go smoothly.
No, not ignorance and greed.
Try micro services in additional to having legacy systems in place where it is cheaper to add another micro service in to the chain than it is to rewrite the original service, test it, with the additional feature.
The one advantage is that if you have only a certain class of travelers who have an additional process to check some sort of security... you don't have to run everyone thru that process.
Note, I'm not suggesting that this is the case, or that this model is the best fit for BA, but it could be viable and it what is happening when you consider stream processing.
The issue is that at some point you run in to a problem when the chain gets too long and it breaks in places and you don't know how to move forward or handle the errors.
You are spot on...
You need to separate prod from dev and not allow dev access to prod.
So while the Reg asks who should be fired ... there are several people involved.
1) CTO / CIO for not managing the infrastructure properly because there was no wall between dev and prod.
2) The author and owner of the doc. You should never have actual passwords, system names, etc in a written doc that gets distributed around the company. The manager too should also get a talking...
3) The developer himself.
Sure he's new to the job, however he should have been experienced enough to not to cookbook the instructions and should have made sure that they were correct. He was the one who actually did the damage.
As to getting legal involved.... if this happened in the US... it wouldn't go anywhere. As an employee, he's covered and the worst they could do was fire him. If he were a contractor... he could get sued.
We know this wasn't Scotland or the UK. (Across country? Edinburgh to Glasgow ... 40 min drive. )
I do have some sympathy for the guy... however, he should have known to ask questions if things weren't clear in the instructions.
He should chalk this up to a life lesson and be glad that his mistake didn't cost someone their life.
Son, software development isn't a meritocracy. Its a dictatorship or a push from the top down.
When you attempt to push from the bottom up, your projects tend to lose vision and you end up with a duck billed platypus. (Ever see a duck billed platypus take home chicks from the bar? Its not a pretty sight.)
This will probably get down voted by commentards who lack the years of experience. In the Open Source world, those projects where you have a strong leadership team, you tend to have a better project. And when the leadership team fades and isn't replaced, you can see the code quality fall apart.
This has nothing to do with sociopaths.
Too many people think that they know what the whole Open Source movement is about. Stallman gave us Gnu. Apache? that's a whole different view on the reality of open source. Two very different philosophies. Don't pretend you know what drives people to contribute or why they don't.
My nephew got the email.
Lucky for him, his friends had seen it first and had been talking about it...
Man, if they hadn't admitted to the cock up, I'll wager my sister would have had a cow.
Unlike you locals, foreigners pay to go to Uni... it ain't cheap, but its a fair deal for a good education.
This is because the device has limited memory/storage to retain many images. So it has to save space.
This isn't that nefarious.
What I don't like or trust is that you have to send the data up to their cloud instead of keeping it local. They say Google doesn't have access to the data. Yeah right. And Google didn't war drive either.
And what's to say that they can't change their T&Cs that everyone clicks thru and doesn't read to allow Google access to those images and data?