So then...
...Let's just hope that the private key protecting the credit card data table is better protected than the game disk code signing key, huh?
Posts by Jeremy 2
268 publicly visible posts • joined 11 Jun 2009
PlayStation Network credit cards protected by encryption
Red Dwarf to blast off on new adventure
Tuesday 12th April 2011 13:21 GMT 
Oh lord...
You're 11 days late with the April Fools post, Lester... It's not? Oh...
The specials weren't a "big hit", they were embarrassingly awkward and not very funny. Like watching a drunken uncle attempt to dance at a wedding...
Let Red Dwarf die with dignity, not dribbling in the corner like an old incontinent dog.
Security researcher warns over Dropbox authentication security flaw
Tuesday 12th April 2011 12:44 GMT
Using Dropbox for sensitive files...
Don't get me wrong, Dropbox is a massively useful application that saves me bucket loads of time syncing stuff around the place but this sort of thing is why the only sensitive files I have on there are otherwise encrypted in their own right.
It all boils down to the standard rule of not storing anything 'in the cloud' (god I hate that term) that you wouldn't want your mother to see without taking your own measures to ensure sufficient security. It's just common sense.
The Sun still not shining on Nintendo's 3DS
Halifax cuts investment accounts off from the web until April 2012
Mozilla puts squeeze on slow Firefox add-ons
April Fools Day's Finest
Interwebs stunned by musical atrocity
Nintendo 3DS bothers Brits about blinkers
Wednesday 9th March 2011 10:10 GMT 
What twaddle
That kind of survey is only ever done to get the name of the company who commissioned it into the news.
Here's a press release about a health concern. On a scale of 1 to 5, how much does this press release about a health concern, concern you?
1) Not at all concerned.
2)
3) Somewhat concerned
4)
5) Very concerned
Most people will of course, pick a response somewhere in the middle and all responses >1 can be used to describe the person as "concerned"
Then of course, there's the relevance of who they surveyed ("3000 adults" isn't exactly clear).... If it's 3000 parents of young kids (the target of Nintendo's advisory) then the result is going to be skewed more in the direction of 'concerned' than if they asked 3000 parents of teenagers.
Crappy question, crappy survey, cheap publicity... Simples!
Julian Assange™ applies to trademark himself
Mozilla ices Firefox 4 beta 12 release to nail final bugs
Tuesday 22nd February 2011 15:11 GMT
Extensions, extensions, extensions...
I'm sure most of the people who complain it crashes are using dozens of the buggers. I've been using FF4 beta whatever for at least a month now and I can count the number of crashes on the fingers of one hand. My wife, on the same machine, is cursing it for falling over every single day. The difference? I have a handful of well maintained extensions (Firebug, ABP and whatnot) whereas she has about 2 dozen of the buggers and it only takes one crappy one...
Kid spanks a grand on Xbox using Mum's bank card
Thursday 10th February 2011 08:46 GMT
Re: Kids NOT to blame
"MS are liable in allowed a child to make a credit card purchase."
When they provide multiple ways of stopping it happening, (child accounts, parental controls, pre-pay cards to avoid using a CC altogether) then no, they're not - it's a basic convenience the responsible majority.
The wording of the articles is all very careful to avoid being so blunt about it but let's call a spade a spade for a minute. The real issue here is that the kid *stole* over a grand from his mother. The root cause of all of this is that he didn't seem to realise that what he was doing was wrong and the actual mechanism used, whether it be through stored details, nicking it from her purse or taking her card and going to the hole in the wall, is almost irrelevant.
Wednesday 9th February 2011 16:02 GMT
Well yes, but...
"XBox Live shouldn't have allowed this to happen in the first place."
Well maybe but just what do you expect Microsoft to do? Refuse a transaction from somebody who, as far as they can possibly tell is an authorised used of the card? Like they're going to do that. He spent a grand over the course of six months so on average, about £170 month. That's way more than you'd ever catch me spending on there but I'd wager it's not all that unusual to do so.
The whole thing is ultimately her liability as well she probably knows. Being technically illiterate is not an excuse for not reading the T&Cs or not checking your bank statements especially if things keep bouncing!
Instead of the two decent options available to her; either taking it on the chin or maybe appealing to Microsoft's 'good nature' (hehe), she's implying that she's going to sue. I'm sorry, but my sympathy for her situation ended right there.
When you try and purchase something that requires more MS Points than you have onhand, XBL puts up a prompt saying words to the effect of "if you agree, £x.xx will be charged to your credit card xxxx-xxxx-xxxx-1234". The kid may only be 11 but you can bet your life he damn well knew what that meant.
She should give the kid a right bollocking, sell his xbox and games to recoup some of the loss and consider it a life lesson - for both of them!
ROBOT COP scatters LIVE GRENADES in San Francisco STREET
Microsoft reinfects Chrome with closed video codec
ICO pays through the nose for 'website development'
Photo loss blogger to Flickr: You're f*cking kidding
Wednesday 2nd February 2011 14:43 GMT
@Jeff 11
"Because partial rollback systems can be inordinately complex to develop, especially on scale-out infrastructure. It's probably several orders of magnitude cheaper to get someone knowledgable enough to manually restore data from a recent snapshot on the rare occasion that data is lost due to human error."
Maybe so but there's no need for that complexity:
- Flag account as publicly inaccessible (404 from user pov).
- Flag as pending deletion in say, 90 days.
- Wait......
- Delete.
Such that accounts are 'deleted' from a public point of view immediately but all data and the all important comments, relationships, etc, are maintained for a grace period before actual storage-level deletion 'just in case', to avoid PR disasters like this one.
It's just common sense.
Ryanair disses booking system security fears
Wednesday 2nd February 2011 14:42 GMT
It's not just RyanAir
A lot of airlines have 'login' systems for flight modifications that those of us with an understanding of how it should be done would turn our noses up at. Normally all you need is the record locator and perhaps the passenger surname which admittedly isn't as poor as the email/date/origin example in the article but it isn't exactly what you'd consider a strong password either - they're typically 6 character alpha-numeric codes.
Last year, my mother flew BA to visit me. To make sure I had the right flight numbers, arrival times, etc, she forwarded the itinerary email which contained a direct link to edit her booking (no login required) and do anything from the silly like order a special meal to the serious like cancellation, modifications and entering passport numbers, etc. You'd think that the airline would be smart enough to separate the itinerary (which they must realise some people are going to forward) and the account/e-ticket information into separate emails.
You'd think in this day and age (and I mean of computer security not 'terr-ists') that they'd have a clue about how to write a login system but I guess not?
Angry Birds 2 shots spied on web?
Texter who fell in fountain threatens to sue
Friday 21st January 2011 21:53 GMT
@Indomitable Gall, yesyesyesyes...
You're probably right that the mall cops in the camera office shouldn't have leaked it to Youtube. America being what it is, I'm sure they probably started looking for new jobs pretty much as soon as it went viral, which is punishment enough.
However.
- It's her fault she wasn't looking where she was going (not in dispute, I suspect)
- She cannot have an expectation of privacy in a publicly accessible space.
- The security employees didn't violate her privacy because they didn't ID her in any way.
- An employee (admittedly a rather bemused looking employee but who wouldn't be) *did* ask if she was OK, if you watch the video through.
- It's her fault alone that the whole world now knows who she is and where she's from because she couldn't resist claiming her fifteen minutes of fame.
- It's her fault alone that the whole world now knows that she's possibly going to be a convicted felon quite soon because she didn't stop to think that the press would dig into her private life.
Every angle she could possibly think of suing over is undermined by the fact that she brought it upon herself.
Friday 21st January 2011 05:11 GMT
The title is required, and must contain letters and/or digits.
"Instead of laughing, they should have said, 'Is she OK?' and been down there right away to check on me."
Yeah, and, you know, instead of not looking where you were going, you should have, you know, looked where you were going.
Walking into something while not concentrating: Silly but normal.
Appearing on national television: Dumb.
Reinforcing the stereotype of litigation-happy Americans threatening to sue for something that's entirely her own stupid fault: Priceless.
^^^^ Stop icon because, well she should have...
FAA to pilots: Expect 'unreliable or unavailable' GPS signals
Friday 21st January 2011 05:13 GMT 
Didn't seem to affect reception...
I left the GPS out in the back garden near Atlanta from an hour or two before the test supposedly started until just now, 30 minutes or so before the scheduled end. The tracklog never wandered more than little bit from it's actual location (within 10m ish throughout, and 43m off for a split second) which is perfectly normal.
I'm sure they were just covering their arses issuing the notice - just in case something unexpected and they got fingered for it. If they were going to do something that they knew would _actually_ hit GPS accuracy to any significant degree, there would have been a bit more warning, I suspect, given the potential safety implications of loss of civilian GPS these days (the emergency services use it for starters).
Facebook suspends personal data-sharing feature
Tuesday 18th January 2011 22:17 GMT 
Address feature removed...
...in other words, the company that paid $$$$$$$$ for access to that data has got all they want now (how many unique users access the most popular apps daily?) so the feature can now be turned off and quietly forgotten.
Just how many addresses and phone numbers have been slurped in the past 72 hours?
More to the point, why is that despite there being a story like this about Facebook every other week, people still ask me why I don't have (and won't make) an account there? Isn't it bloody obvious!?
Pavement hogging Segway rider convicted
Tuesday 18th January 2011 21:15 GMT
I can beat that...
The altogether real cops at Atlanta airport ride monstrous things. They're not Segways, more sort of tricycles but they are to Segways as Humvees are to a Ford Fiesta. Of course, they come complete with blue flashing lights and a very silly sounding siren....
http://www.atlanta-airport.com/HJN/2009/11/customer3.htm
The cops ride them around the airport like they own the place, naturally, while every kid wishes they had one and every adult tries to suppress their laughter.
Apple tightens rules for iPad news delivery
Sunday 16th January 2011 00:45 GMT
I've said this before...
Jobs is a controlling, egomaniacal, anti-competitive Big Brother from hell but he's clearly a savvy businessman. Those who enter his domain should know that he can (and if you're wildly successful without giving him his cut, probably will) pull the rug from under your feet.
If developers still choose to play the App Store game despite knowing fully well that Apple exercise total control over what is and is not allowed and move the goalposts regularly and arbitrarily, they can't then be surprised when it happens to them.
In the early days of the App Store, developers had every right to cry bloody murder when Apple decreed from on-high that their application wasn't allowed any more but now *everybody* knows they do it. Accept the risk or keep away.
Gamers raid medical server to host Call of Duty
Friday 14th January 2011 22:44 GMT
Ah, memories...
Of the time me and the rest of the class of computer systems students all joined the sysadmin's quake server at college *many* moons ago. Somebody spotted they were running dedicated server in their little office. Since they oh so helpfully put a little sticker on the front of each machine with it's IP written on, it would've been rude not to frag them to pieces, no?....
Good times :)
Becks offloads Posh Porsche on eBay
Who will rid me of these obsolete PCs?
Ubuntu tablet rumored for early 2011 launch
Wednesday 29th December 2010 15:31 GMT
Erm, not quite!
Before you call somebody stupid, be very careful about putting your foot in your mouth and chewing upon it.
For reference, the current (and previous) Ubuntu logo is available here:
http://en.wikipedia.org/wiki/File:Ubuntu_logo.svg
Here's the photo, brightened up and with the very-Windows-like logo labelled just for you:
http://hotimg23.fotki.com/a/85_237/211_171/unbuntu-tablet-win-logo.jpg
If you look down this thread, eben80 has done the legwork and found said Chinese Windows 7 tablet on eBay:
http://cgi.ebay.co.uk/10-1-window-7-Camera-Wifi-Tablet-PC-MID-Multi-Touch-UPS-/310283066479?pt=LH_DefaultDomain_3&hash=item483e4fdc6f#ht_3924wt_1139
So there we go then, it's an existing tablet that somebody has just shoved Ubuntu on with a view to selling it. Interesting, perhaps, but hardly exciting.
Wednesday 29th December 2010 00:35 GMT 
I smell a rat...
...If you brighten up this photo:
http://www.gizchina.com/wp-content/uploads/images/ubuntu-linux-tablet-spy-picture.jpg
or this one:
http://www.gizchina.com/wp-content/uploads/images/ubuntu-linux-tablet-menu-screen.jpg
You'll notice something that looks very much like a Windows logo on the right-hand edge as shown.
I don't know enough about the tablet market to identify what it is, but I'd wager it's just some Windows-based tablet PC that somebody has whacked Ubuntu on or some Chinese knock-off thereof. Or perhaps some screenshots of Ubuntu displayed in fullscreen.
Either that, or it is real and the manufacturer of the thing has made a really stupid choice of logo.
Mozilla takes on web data miners with privacy icon release
Monday 27th December 2010 23:18 GMT
Or...
Domains are nice but even without, you can just use the old +appendage trick:
somebody+facebook@gmail.com
A lot of mail providers will deliver mail addressed as such to the username specified before the + symbol so even without a domain, you know who's messing you about. Kinda like the old 'fake middle initial' trick for snail mail. Don't ask me to be more specific about which mail providers support this, though - way too much Christmas booze consumed already but Gmail definitely do.
On topic, these icons will never gain widespread use. Well, the 'good' icon might but with one having a green outline and the other red, the latter basically screaming 'WE SELL YOUR INFO' from the page, no company that does is going to put them up voluntarily.
'Porn lock' heralds death of WikiLeaks, internet, democracy, universe
Monday 20th December 2010 16:02 GMT
Don't worry, it'll never happen...
...The Aussies started all this at a time of economic plenty when all the streets were paved with gold (or printouts of internet porn, one or the other).
The tories are trying to start the same thing when everything's gone to hell, with budget cuts and the smell of mothballs lingering in every corner of Whitehall.
This begs the obvious question. Leaving aside the technical and philosophical flaws with the idea, examining all the worlds websites to decide which are naughty and which are nice is going to be an astronomically expensive and never ending process. So who's gonna pay for it?
Assuming government don't want to have to pay for it (that's normally what "we don't want to legislate" means) then it would come down to the ISPs who would obviously pass the cost to their customers, which would be commercial suicide.
So even if they then push on (which they won't), you'll be able to have your clean-feed internet if you want but if you take the filthy-dirty-middle-england-offending-wont-somebody-please-think-of-the-children-feed instead, it'll cost you a tenner a month less because it's so much cheaper to administer. Which will people choose?
Anonymous turns attack drones against fax machines
Dutch police arrest 16-year-old WikiLeaks avenger
Anonymous attacks PayPal in 'Operation Avenge Assange'
Tuesday 7th December 2010 08:41 GMT
Boring...
I remember when Anonymous used to pull stunts that at least raised a smile. Flash-mobbing in front of Scientology places in V For Vendetta masks and whatnot. These days, it's all just "Hmmm, let's 'protest' <insert cause here>. But what should we do?...... Hmmmm...... Oh, I know! Let's DDoS them!"
*yawn*
Apple says no to Android-oriented iPad mag
Wednesday 1st December 2010 08:07 GMT
Exactly.
Enough with this There's an App for That crap. Last time I checked, we had this wonderful, stable (ish), well established medium for formatting articles for online publishing that Just Works on just about every device ever made. It's called... erm...... oh, that's right, I remember now: HTML.
Paris because even she knows not to reinvent the wheel.
Privacy-protecting social network opens up
Wednesday 24th November 2010 21:51 GMT
Noble perhaps...
...but unfortunately, it'll still fail.
The vast, *vast* majority of Facebook users are sheep. They just don't care about privacy or security, they just want what they're used to and they'll be loathed to switch. They think that the problems they read about on the rare occasion it makes the mainstream press are things that happen to other people. Hell, even if this new site is better than Facebook and offers more with less exposure of data, people will still stick with Facebook because it's what Aunty Nora and that guy they had a crush on at school 20 years ago use.
That and refusing to even serve the site's homepage to IE users just makes them look like a load of spotty computer nerds in their mother's basement. "You need to use a real browser"? Seriously?! A bit of testing suggests they slam the door on users of IE6, 7 and 8. What kind of a moron decided snobbishness was a good policy direction for a site that intends to try and break into a tightly monopolised market?
And don't get me started on the name...
Hacker sinks Royal Navy website
Friday 12th November 2010 23:49 GMT
Re: Accessibility 101
"Actually a human would create a blank alt tag if the image was purely presentational and conveyed no information."
Except the image we're talking about DID convey information. In fact, it was (is still) the *only* element of the document conveying that the site is down for maintenance (not even a <title> element). The text shown in the article screenshot was part of the image, not imposed over it!
It seems to have been improved a bit now but it still doesn't quite work :)
Monday 8th November 2010 21:28 GMT
Comical.
Oh dear, oh dear, oh dear. That really is quite special.
I particularly like <centre> vice <center>, going to the effort of specifying the alt attribute only to leave it blank and the particularly comical 'lightbox effect' on the error message cum GIF-from-hell (score one for accessibility there). Unless I'm very much mistaken, it was achieved with MS Paint - that god-awful dithering is always a give away.
I plugged it into the W3C's validator for giggles expecting it to implode but alas it only found eight things to complain about. Still, for 70 bytes of code, that's pretty impressive.
Hacker unshackles Kinect from Xbox
Tuesday 9th November 2010 19:24 GMT
Actually...
The first time you power up an Xbox 360, doesn't it 'ask' you to accept an EULA? I seem to remember so...
Now I suppose the EULA might relate to the software it contains rather than it's hardware (I can't say I actually read it...) but given that you can't actually use the hardware until you agree to the EULA, use of the hardware is clearly dependant on accepting it, whether it states such or not.
USB fanboys teased with 16-port hub
Bare breast ballot finds scant support in small US town
PARIS laid bare in intimate snaps
UK nuke station denies Stuxnet shutdown
Tuesday 2nd November 2010 23:41 GMT
Hmmm
I did my work experience as a PFY in the IT dept at Heysham 1* about a decade back. I distinctly remember being told that the safety critical systems ran on UNIX-based boxes so unless things have changed since, EDF's claim that there's no S7 stuff in a safety critical role probably holds water since I believe S7's software is a Windows thing?
* Not as exciting as it sounds - two weeks of making tea, upgrading RAM, changing toner cartridges and plugging those god-awful type-1 token ring connectors back together because nobody had bothered with that locking clip thingy with enough self-important, demanding yet unappreciative users to scare me off Hell Desk work for life. It was a very interesting place to spend a fortnight, though. Good grub in the canteen, too.
First tube station to get Wi-Fi next week
Daily Mail rails at Street View in women's refuge wrongness
Friday 29th October 2010 15:09 GMT 
<title/>
"We hold no brief for Google Street View but the Mail has really gone out on a limb on this one"
And you're surprised about this because..........? This is the Daily Make-it-up we're talking about here.
Anyway, they've missed the bigger picture, like how does Google (not) revealing the locations of refuges affect middle-class taxation and house prices? Daily Mail readers have to know these things!
Biting the hand that feeds IT
