It comes back to my opinion that HTML email is in itself a security hazard. My system is set up to display plain text and considers the presence of HTML to incline it to bounce a message. Stick to plain text, people, you know it makes sense.
Posts by Number6
2293 publicly visible posts • joined 10 Jun 2009
Page:
How CAPTCHAs can cloak phishing URLs in emails
IT blamed after HR forgets to install sockets in new office
Re: Business as usual
I prefer the small companies because the "could you figure this out" can be a great way to learn stuff that would be someone else's job in a larger company, even if what you learn is just "the company is screwed, time to go look for a new job". A lot of start-ups are in this category, great places to work while they last, but inevitably they either fail, or get bought by a larger entity which starts the downhill slide. Even if they survive to grow on their own, they eventually get big enough and have to change operating procedures that they become the same thing.
Very large companies are definitely best avoided, they're often set up as a set of competing fiefdoms and you get casualties as they challenge each other for dominance.
Akamai's Linode buy: Good for enterprise, risky for others
Another Linode customer here, wondering how long it will be for the basic offerings to be ruined by excessive prices for bundling services I don't need. The purpose of a Linux machine in the cloud is that it is set up to do exactly what I want. I can install what I need, all I need from the hosting provider is a reliable platform on which to run the code of my choice and a way to access it (the ssh console is nice) if I screw up.
I really hope that Akami is sensible enough to leave the basic Linode offerings alone. The price/performance is ideal for those of us who are not making money from what we have in the cloud, and so don't have much of a budget to pay for increases in cost.
HMRC: UK techies' IR35 tax appeals could take years
What it needs is a way of getting compensation awarded from HMRC for lost income due to having to wait for the appeal to work its way through the system. That would speed things up a bit, if they ran the risk of having to give some of it back. Of course, the law is written to avoid that happening.
50 lines of Bash to bring a Wordle fan out of their shell
Snap continues to make a spectacle of itself as it tries to trademark the word spectacles
MySQL a 'pretty poor database' says departing Oracle engineer
Tech Bro CEO lays off 900 people in Zoom call and makes himself the victim
Re: Hmm ...
Also when you get a clueless US boss who suddenly discovers he can't just fire a bunch of people in the UK, that he has to go through a 30 or 90 day consultation period first, even if his hit list is unchanged at the end of it. Then there's redundancy pay and, especially if the UK bosses are on the side of the workers, pay in lieu of notice to add to it.
Yes, you can fire people but there's some cost to it, which has to be weighed against the cost of not firing them.
I do remember attending one of two meetings (in the days when we were all in the same building) and being told that while we were OK, the other lot were getting some bad news.
I remember getting an email from the CEO once asking if I was in the office that day (I was working from home as per an existing arrangement). Ended up talking to him on the phone to discover that due to a funding crunch (a peril present in start-ups) I was one of a bunch of people being let go that day. My immediate boss was also on the list. I went in one day the following week to pick up my stuff and wish the survivors luck. I was already looking for a new job, but it's way better if you can do that while still getting paid.
Re: staying in contracting from now on.
I wouldn't knowingly be employed by you either. It's often said that people don't quit jobs, they quit managers. You sound like one of those, it's perfectly possible to be in management and be polite and respectful to employees, it's the difference between being a leader and a boss.
China's Yutu rover spots 'mysterious hut' on far side of the Moon
Oh, Comcast. An Xfinity customer and working from home? Maybe not this morning
I noticed it as I went to bed last night. A quick check showed that TV and phone had also gone down so I decided it was a good excuse to get some sleep. It was back up this morning when I got up. To be fair to them, outages are fairly rare here, we must have more modern kit in the local cabinets than some people.
Looking at some log files, we lost service at 21:43 and it came back at 22:50 (PST).
Computer shuts down when foreman leaves the room: Ghost in the machine? Or an all-too-human bit of silliness?
Re: And their plugs are crap
If you look at a UK plug (and the socket) you can appreciate the safety features.
The flanges to make it hard for your fingers to slip around the sides and grip the live/neutral and yet easy enough to grip.
Earth pin on top, so if a plug is not fully in, anything dropping in the gap hits the earth before possibly contacting the live/neutral.
Sleeving on modern plugs to protect live/neutral even if not fully inserted.
The fuse (if sized correctly).
The socket has the shutters on it so it's hard for kids to poke things in (and why those plastic guards are dangerous)
Switch on socket to cut power to the live terminal
That's off the top of my head.
No, they just restrict kettles to 1.5kW, 15A from the weedy volts. Means it takes over twice as long to boil water for a cuppa.
Then, because it's a spur system, you find you've plugged the kettle and microwave into the same circuit and the 20A breaker trips, whereas a 30A UK ring main would cope. In many US kitchens you find all the convenient sockets are on the same circuit, which makes it all too easy to do this.
Except when you find a light switch that doesn't appear to do anything, only to discover that it's in series with a particular power outlet. The intention is that you plug an uplighter or other free-standing lamp into it. Often found in rooms where there is no permanently-installed light. We have such a room in the house, not gotten around to fixing it yet though.
Not impressed with US wiring practice.
How Windows NTFS finally made it into Linux
Re: I can only warn
NTFS was written with Windows in mind (obviously) and may well make assumptions about how it's used by the OS. Linux might not do stuff quite the same way and could well expose weaknesses that have been "fixed" by changes to Windows rather than to the NTFS driver. I am happy to let others find these bugs for me before I use NTFS from my Linux system, not that I'd bother, given that here it's mostly ext4 and an instance of zfs on my file server.
Far more use would be a solid implementation of ext4 on Windows.
What if Chrome broke features of the web and Google forgot to tell anyone? Oh wait, that's exactly what happened
Google is the new Microsoft in terms of ignoring anything outside its own monoculture. I gave up on Chrome some time back. I tend to use Firefox at the moment, with Chromium as a reluctant last resort if something really doesn't like Firefox. I still remember stuff that only works on IE and MS systems (and sends email notifications that use ancient encryption methods that modern SMTP doesn't support by default). Sadly I still have some of that in the house because I haven't gotten around to upgrading it.
As for checking against latest browser releases, that's a fool's game. I tend to hand-write boring HTML with an occasional bit of CSS and rarely some Javascript, and if that doesn't work on your browser then I guess you're not going to look at my page. I check it out when I write it to make sure I haven't done anything too stupid, but then it just sits there taking up space on the web.
BOFH: Here in my car I feel safest of all. I can listen to you ... It keeps me stable for days
Wanna feel old? It is 10 years since the Space Shuttle left the launchpad for the last time
Happy with your existing Windows 10 setup? Good, because Windows 11 could turn its nose up at your CPU
That's me screwed then. My desktop dates back to 2013. Having said that, I only run Win10 in a VM on this machine anyway, it has always been a Linux box and it's got 32GB RAM in it.
What benefits might I get (running Win11 is not considered a benefit) from an upgrade to a more modern CPU. I don't consider a lighter wallet to be a benefit either. If one is not doing high-end graphics or CAD then why upgrade something that's still working just fine?
Traffic lights, who needs 'em? Lucky Kentucky residents up in arms over first roundabout
Re: Bunch of wusses
First time I found the Swindon one, I was through it before I realised what it was. Clearly my brain is equally convoluted. I did the Hemel Hempstead one a few times, used to visit BSI Labs there, and never had a problem with that either.
In the US they spoil some roundabouts by putting STOP signs on the entrances, so you can't time your approach for the gap you can see coming.
BOFH: Postman BOFH's Special Delivery Service
Re: Peace and quiet
I remember the boss apologising to us when he had an office built where he'd previously been open plan with the rest of us. A shift in company organisation meant he'd suddenly become the CEO rather than the local director and there are things that are required to be kept confidential. To be fair he kept his office door open as much as he could and was open to casual drop-ins if people had stuff they wanted to tell him.
Who'd have thought the US senator who fist pumped Jan 6 insurrectionists would propose totally unworkable anti-Big Tech law?
It's been a long time coming but AWS has at last enabled an interactive serial console for de-borking VMs
Splunk junks 'hanging' processes, suggests you don't 'hit' a key: More peaceful words now preferred in docs
When it comes to typing, they're clearly not old enough to remember typewriters, nor allow for those who used them because we do tend to hit the keys. I'm not sure that "peer" is an alternative to "slave" either, peers are equals, whereas when you have an architecture where one unit is controlling others, the others could be minions, subordinates or secondaries.
They missed kicking the watchdog though, when the nicer term is to pat the dog.
All us HW types will have to think up some creative alternative meanings for MISO and MOSI, found on a lot of SPI documentation.
War on Section 230 begins in earnest as Dem senators look to limit legal immunity for social networks, websites etc
Time to bring back Usenet (not that it ever went away, but it lost market share to all these annoying web-based things).
US politicians should be careful about taking out section 230, I suspect a lot of them could fall foul of it. If you're going to change it, just provide immunity until a legal take-down notice turns up, at which point there's 24 hours to remove the offending item, and that if the removed party wishes to challenge it they should be awarded costs (and possibly more) against the legal firm issuing the takedown notice if they win the challenge. That should help cap the frivolous notices, I assume most legal firms will be smart enough to pass on such costs to the originator.
Knock, knock. Who's there? NAT. Nat who? A NAT URL-borne killer
Re: Web browsers need a built-in firewall....
There are useful things that javascript can do, such as hide/display various bits of text and re-jig drop-down menus based on selections in other menus. That level of functionality does not need any ability to generate network traffic though.
One of the biggest dangers with javascript is the malicious scripts occasionally delivered by ad servers. If all the ad stuff could be done server side then (a) we'd be a lot safer and (b) ad blockers probably wouldn't hide the ads because they could be streamed in from the main site without any of the obvious flags of an advert.
We regret to inform you the professor teaching your online course is already dead
Europe considers making it law that your boss can’t bug you outside of office hours
Re: It depends upon your boss
If your phone is off or otherwise muted then you wouldn't know about the calls until after the funeral. There are ways to mitigate such things, and in the limit, a new job beckons if the boss is a chronic arsehole. It is said that a lot of people change jobs because of their boss.
The advantage of ignoring the house phone (that's what the answering machine is for) and carefully leaving the mobile I use for work by the bed on charge. It also has a nice Do Not Disturb feature which means it won't make a noise outside certain hours unless it's a call from one of a few people, none of whom are likely to call that phone anyway. The boss also has his own dedicated ring tone so I know immediately if it's him.
That's not to say I don't occasionally check in on work email during the evening, but then it's during the working day now and I'm posting here, so I figure that balances out.
On his way out, Trump emits exec order suggesting US cloud giants must verify ID of all foreign customers
Loser Trump is no longer useful to Twitter, entire account deleted over fears he'll whip up more mayhem
Re: An elephant in the room
The President gives the order and gives his authorisation code. A bunch of people with him also have to give their codes to certify that he's not under duress and is in a suitable state of mind. In a real situation they would also presumably be privy to other information about the world situation and would also be receiving their own independent data to back up their assessment of the CinC's mental processes and the tactical situation. The process is designed so things can be done very quickly, but there are a few safeguards thrown in so it can't be done at the whim of a single person.
Search history can calculate better credit ratings than pay slips, says International Monetary Fund
About $15m in advertising booked to appear on millions of smart TVs was never seen by anyone, says Oracle
Ad blocking made Google throw its toys out of the pram – and now even more control is being taken from us
All ads should be selected server-side. That would make it way safer for us as users and stop our browsers being bogged down with badly-written or malicious scripts. It would also make them way harder to block because if done well, they'd be indistinguishable from other images in the downloaded page. Then it's between the ad brokers and the server owners. Given how the money flows, that would give the ad brokers every incentive to make the server-side code efficient.
From a practical side of things, if Google wants to handle everything on their servers and just throw out static images with no scripts running on the client side then I'd tolerate ads way more because that vastly improves security at my end.
Flashy banners and pop-ups are still unwelcome and result in me doing my best not to buy anything so advertised.
BOFH: Switch off the building? Great idea, Boss
Re: Parts of it date back to when fire was invented
One of my son's classes had a practical demonstration of pouring water on a frying pan fire. They did it outdoors in the car park, and invited the local fire brigade along to watch just in case. It was impressive, and hopefully a lot of kids learned an important lesson. The fire chief said his team appreciated the demonstration because normally they don't get to see that bit of the event, they just get invited to clear up the mess afterwards,
Pure frustration: What happens when someone uses your email address to sign up for PayPal, car hire, doctors, security systems and more
Re: Same problem here
There is something to be said for responding and wasting their time for a bit, especially if they've been wasting yours. It might get you through to a real person.
As for the "click here to unsubscribe", if I didn't originally ask for it then I'm not going to click on a link that might be dodgy and merely confirm that the email address is valid and in use. I edit my spam filter and bounce the stuff instead.