Hans 1 • User • The Register Forums

Et tu Accenture? Then fall S3er: Consultancy giant leaks private keys, emails and more online

Wednesday 11th October 2017 07:54 GMT Hans 1

“Secure Store” which held a plaintext file of the master access key for Accenture’s account with AWS' Key Management Service,

Also in that archive were a number of client.jks key stores which, while encrypted, had what appeared to be the passwords to unlock them written down in files next to them in plaintext.

40 000 plain text passwords

etc, etc, etc ...

This, this, this is really the sort of braindead behavior you would expect from Accenture.

Even on a hardened AWS instance, this is simply braindead, n00bS ... as I have written time and time again, Accenture are a bunch retards.

Note, again, that you have to "open up" the AWS instance to expose it in this manner, clicking away several WARNINGS in the process ... just saying ...

Hans 1

Accenture MHP

4 2

How many times can Microsoft kill Mobile?

Tuesday 10th October 2017 07:19 GMT Hans 1

Re: Clusterfcuk

You bought a bad Android

Which part of Android OS sucks golf balls through garden hoses do you not understand ?

I will not go into too many details, google it, the update fiasco is just ONE problem, there are many, many, many more ... like crappy sound management, a default email client that is a sad joke, lousy localization support, especially when you use, say, 4 different languages ... then you have the abysmal storage management ... iOS and BB10 can do all that ... very well ...

2 3

PostgreSQL says SCRAM to MD5 authentication

Tuesday 10th October 2017 06:42 GMT Hans 1

I set up a sandbox (LXC container) with PostgreSQL 10, configured scram-sha-256 auth and Postgres Admin 4 version 2 (latest client I could find) does not support it.

The JDBC driver 42.2.0 supports scram-sha-256 auth, however, at the time of this writing, https://jdbc.postgresql.org/download.html does not list that version for download.

So, since only the server supports SCRAM and the default configuration uses md5, again at the time of this writing, that the config still recommends MD5, I assume it is a bit too early to mention a farewell ... note that you can easily use SSL encryption/tunneling for the database connection if you are paranoid...

0 0

Monday 9th October 2017 12:30 GMT Hans 1

farewelling the deprecated MD5

Hm, md5 is still all over the default pg_hba.conf file, however, scram-sha-256 is a nice addition.

0 0

How much for that Belkin cable? Margin of 1,992%?

Monday 9th October 2017 14:16 GMT Hans 1

It took quite some time for me to get him to believe that literally the only appreciable difference between the two was the price

Was there a difference is amp's ? Some cables can only carry 1 amp max, others 1.5 or 2 amps. If your dad has a high grade charger that can deliver 2 or more amps, then his cable will get "quite warm" and wear out sooner ...

0 0

Microsoft's foray into phones was a bumbling, half-hearted fiasco, and Nadella always knew it

Monday 9th October 2017 13:54 GMT Hans 1

Have I lost my bet ?

Prediction made on 11 Jan 2016:

WP will not survive 2017, 100% sure, I doubt it will be around in January 2017. I hereby declare that I will donate 50 euro to FSF if Windows Phone survives January 2017, and 100 if it survives December 2017. The donations will be made in the name of the RegisterComment@rds ... please do remind me, should I forget (I won't)!

Source: https://forums.theregister.co.uk/forum/2/2016/01/07/new_windows_10_phones_coming_from_acer_alcatel_onetouch_continuum/

So, do I give or keep ?

5 1

Microsoft silently fixes security holes in Windows 10 – dumps Win 7, 8 out in the cold

Monday 9th October 2017 08:33 GMT Hans 1

Re: If they cared about security at all

Dear Professional Gamers,

Ever heard of PoL ?

Thanks,

Hans 1

2 2

Sunday 8th October 2017 21:14 GMT Hans 1

Re: Perhaps money will talk louder:

Apple, Samsung, TV manufacturers

How are they FSF ? They are consumer vendors, not "enterprise" vendors ...

Linux and *BSD, the only enterprise-grade OS' around!

3 3

Sunday 8th October 2017 21:11 GMT Hans 1

Re: Perhaps money will talk louder:

Yes, and then you start waiting and waiting and waiting for the patch ... compare that to FSF software, where patched binaries are usually readily available in the repos, and, if they ain't, just download source, patch it, compile, done ... system patched before your request has had the time to be escalated through MS' support hell desk ...

To the downvoters, you know you are dishonest, you know of course, else you would not be reading stuff on this site.

Listen, you are full of shit ... I post this because I don't care about downvotes, so go ahead, show your ignorance and downvote this one as well ... I love you, especially you dishonest n00bs from the Window Cleaner and Surface Expert brigade ,.... :-P

8 15

Sunday 8th October 2017 08:28 GMT Hans 1

Quite a lot of security issues are fixed in the upstream Linux kernel without a word about their security impact. And I'm not just talking about information disclosures / memory leaks like these, but also about bugs that let you compromise the system on their own.

I think you need a word with Greg!

2 1

Sunday 8th October 2017 08:24 GMT Hans 1

Re: Perhaps money will talk louder:

If you pay for support and find a bug, you can request a fix. That's already the case.

18 9

After selling his site for millions, founder hacked it for a second payday

Sunday 8th October 2017 15:44 GMT Hans 1

That guy was too greedy AND a bit stupid ...

1. Why did he steal email accounts in the first place, they are useless UNLESS you can coerce the account holder to register

2. Why did he try to sell the data to the same guy again???? knowing that he stole the accounts from him ... did he really think he could get away with that ????

2 1

Ex-Harrods IT man cleared of stealing company issued laptop

Thursday 5th October 2017 12:07 GMT Hans 1

Re: IT worker?

If you don't control the device, you've no idea where your data could end up

I assume that since the device was running Windows (it was hooked up to the domain), you do not control the device or where the data ends up?

4 3

FreeBSD gains eMMC support so … errr … watch out, Android

Thursday 5th October 2017 10:05 GMT Hans 1

SD Card ?

eMMC != MMC != SD card

e stands for embedded.

2 0

Thursday 5th October 2017 09:59 GMT Hans 1

Re: Don't Understand....

FreeBSD user here since 4.2, I still have the CD-ROM, in its shrine ... anyway ...

<cheapshot>By the way, how's the Fedora Raspberry PI3 support going?</cheapshot>

Dunno, don't care, FreeBSD cuts it ... so does OpenSuse tumbleweed... needed that for ARM 64-bit software ... well, OpenSuse has some issues, I think, with sound ... and I am not sure it displays the "insufficient power" alert ... so, make sure your PSU's have enough juice.

Ok, tumbleweed has "système d", I could try FreeBSD's linux compatibility layer for my software, not sure it would work, though ...

2 1

Wednesday 4th October 2017 07:15 GMT Hans 1

Hm, I'll soon have a spare iPhone 5S, how do I create a FreeBSD image for that, any thoughts ?

3 1

Oath-my-God: THREE! BILLION! Yahoo! accounts! hacked! in! 2013! – not! 'just!' 1bn!

Wednesday 4th October 2017 08:06 GMT Hans 1

Re: Et toi Equifax....

Mmmmm....Hackers had access to Equifax systems from March to July. Who actually believes that only a portion of Equifax's data was taken. Given the five months it is more believable that all 920 million personal credit records and 91 million company records have been taken,

The hackers had a capped internet connection, could not download more ;-)

8 0

Wednesday 4th October 2017 08:03 GMT Hans 1

Re: Oath...

a solemn promise, often invoking a divine witness

0 0

Azure fell over for 7 hours in Europe because someone accidentally set off the fire extinguishers

Wednesday 4th October 2017 07:31 GMT Hans 1

Re: From the looks of it, cogs were falling off all over the place

High-availability systems across availability zones, backup systems in different geographic regions.

In Theory, maybe, problem is, Slurp held it wrong, else customers would not have noticed.

What I do not understand is why do people go with AWS or Azure ?

Multiple providers offer OpenStack, you can get service from two or three to do ultra high availability and disaster recovery, same stack, MUCH easier to implement ... if you really wanna go cloud, that is. What are the chances for two or three OpenStack vendors to fail at the same time vs AWS or Azure ?

The people highest on their horse on this page against the cloud are the people who know the least. How infuriating!

Generalization, not good.

If you back Azure, your opinion does not count.

2 9

Home Sec Amber Rudd: Yeah, I don't understand encryption. So what?

Tuesday 3rd October 2017 16:30 GMT Hans 1

"I don't need to understand how cutting flesh with a knife works to understand how it's helping the criminals. I will engage with the security services to find the best way to combat that."

There, madam, fixed that for you.

5 1

Oracle CEO Mark Hurd reads 'mean tweets' about his 2025 vision

Tuesday 3rd October 2017 16:26 GMT Hans 1

Re: bothered?

They are so far down the cloud pecking order I'd probably have a greater cloud footprint running a couple of NAS boxes from home!

Funny, I think you forgot the joke icon ... did they not very recently get a big gov contract in the UK ? Need more than a couple NAS boxes for that deal alone ... again, I do not think cloud is a good move ... too much down-time ...

0 0

The axeman strikes again: Microsoft has real commitment issues

Tuesday 3rd October 2017 16:12 GMT Hans 1

Re: What Microsoft has said in the past

Think of the poor sods, for one second, who spent years on the service, a subscription service, now have nothing !

The thing is, they were sold "All the music you want" for, say $10/month ... then, after three years, boom, they go, you lost $360....

A lesson to be had, here ... subscription services will go sooner or later, yours maybe sooner than you expect....

10 5

Tuesday 3rd October 2017 16:07 GMT Hans 1

Venerable AC:

Sad to say, but most of the competition was actually worse than Microsoft - MS did its best to crush them, but they did their best to release more flaky software than MS did.

I hereby invite you to read the anti-trust trial, you will notice that MS did hide core components of their OS to the competition, components that were needed to develop rich ui's is a well -known example. MS also voluntarily caused 3rdparty software to crash, had Windows/DOS spew out "scary warnings" ... you name it ... I do not understand all the hate for Notes, it is way more than an email server, you can use it as an ERP without being a C/ABAP developer ... you could do so much more stuff with Notes in the 90's already that you still cannot do with the Windows/Office/Sharepoint stack today ...

8 5

Linux kernel long term support extended from two to six years

Tuesday 3rd October 2017 06:03 GMT Hans 1

Poor Greg

This means a lot more work for Greg ... I'll raise a pint for him tonight!

Merci!

5 0

Patch alert! Easy-to-exploit flaw in Linux kernel rated 'high risk'

Monday 2nd October 2017 12:30 GMT Hans 1

Elf Binary ?

Boahhh, I have a level 50 Paladin on the watch, nothing to fear here ...

BTW, already patched ;-)

0 2

Monday 2nd October 2017 12:29 GMT Hans 1

Re: Is that recipe Open Sauce?

Made of olives (with pips removed), carrots, goats cheese.

Recipee:

1. Peel carrots, cut them in discs, cut out a segment to be used as beak.

2. Cut half the olives side-ways, stuff with goat's cheese

3. Place the beaks in the other half of the olives, using the opening created when the pip was removed.

4. Place carrot discs, goat-cheese-stuffed olives, carrot stuffed olives above one-another and use a toothpick to attach.

5. Serve with a St Emilion Grand Cru [Classé]

Exactly what I will bring to work next time the guyz from Accenture show their backsides 'round 'ere ...

2 1

Internet-wide security update put on hold over fears 60 million people would be kicked offline

Friday 29th September 2017 09:49 GMT Hans 1

Re: The problem?

Roll it out for a short period then roll back

Hm, ok, I hear the Windows admins screaming already: "Could you please do it once more and wait at least 5 minutes to allow our Windows servers to reboot to apply the change, thanks!"

10 4

Angst in her pants: Alleged US govt leaker Reality Winner stashed docs in her pantyhose

Friday 29th September 2017 09:18 GMT Hans 1

She used her work PC ? Ouch ... why print it out and scan it ? Winner, you know you can print to PDF, don't you ?*

Then, she admits, ok, no choice, but denies being a whistle-blower, her only defense.

Then she pleads not guilty, although they have all the proof and she admitted to doing it.

Hm, not the brightest star in sky, are you, love ?

* Makes me think of that customer of mine ... Windows admin, asked him to email me a screenshot ... the guy printed out the screenshot, scanned it in, then sent me the PDF ... thanks, sir ... next time, you simply "paste" it into your email, makes it much more readable.

5 3

Deloitte is a sitting duck: Key systems with RDP open, VPN and proxy 'login details leaked'

Wednesday 27th September 2017 13:41 GMT Hans 1

Re: Had an interesting experience not so long ago

I am bloody sure those are NOT ALL Deloitte's customers but also TalkTalk's ... pretty sure that bloke used to work for TalkTalk, got hired by Deloitte, simply carried his excel file over to Deloitte and used it there.

The probability of finding two d0uch3s of this kind in the same universe is 1 to a googolplex!

2 0

Hotter than the Sun: JET – Earth’s biggest fusion reactor, in Culham

Monday 25th September 2017 16:49 GMT Hans 1

Re: Do not press

Since Theresa May has committed the country to severing all ties with the ECJ

I understand, who wants Human Rights in Britain, hey ?

6 6

Monday 25th September 2017 16:46 GMT Hans 1

Re: Do not press

…must …not …step …away …from …European …Union. …Can’t …afford …to …do …this …on …our …own.

Crikey, did not know Japan was part of the European Union (yes, they are some more) ... but then again, smart fsck, what do we have in our UK ? Honda plants and the big NSA spy infrastructure that listens on all of us, that is about it ... thank Feynman the continentals are not aware that we betray everybody 'round here for the NSA, hey ?

TBH, I am surprised the EU did not kick us out earlier ...

1 4

Monday 25th September 2017 16:40 GMT Hans 1

Re: scaling up is the answer?

ITER was never intended to produce a surplus, it's just another step on the road to working out the bugs in order that the next iteration will be more likely to do so.

THEY WERE SUPPOSED TO HAVE A WORKING PROTOTYPE BY 2014 that would "survive" mere seconds .... not ANYWHERE NEAR that yet.

The worst is, these guyz are the top boffins when it comes to fusion, they banked their professional life on it, and they have hurdles in the physics, that are way beyond their imagination, Ok, and political ones, too - Massive project with lazy arrogant civil servants....

Again, if you have a precise question, I will forward and get the answer ... on here.

3 15

Monday 25th September 2017 15:54 GMT Hans 1

Re: scaling up is the answer?

To the down-voter:

Smart arse, do you have a question for the boffins ?

Go ahead, I will ask them and report back!

3 12

Monday 25th September 2017 14:48 GMT Hans 1

Re: scaling up is the answer?

@ Ishtiaq

It so happens that I live near leading boffins of ITER and they do not believe they can reach anywhere near a surplus of energy .... simply, because the conditions are so extreme that to keep the plasma going for more than mere seconds they have to replace have the bloody housing, while the plasma is still active (you and I know this is impossible).

Their prototype was due for 2014, alas, that failed miserably ... since then, they try to win time ... ITER is a money well, many governments backing, so where is the incentive ? There is none ... and the problems they face are nothing like humanity has ever faced before, they still cannot cool the chamber appropriately and they know that they are there to give fission an extension of life .... how would that make you feel ? In their situation I commit suicide ...

And the idiots on here who claim whatever, ITER cannot make their system run for more than 7 seconds, have tried for a decade ... any material they use deteriorates too quickly ... make it bigger, sure, good luck, more Watts to dissipate ...

Again, I know REAL BOFFINS from ITER, their kids go to the SAME SCHOOL AS MINE, I see them EVERY FUCKING DAY.

Fusion is a mirage that the fission idiots have cast on us to win time so they can use up all the uranium that is economically feasible to harvest ... and fission by products will be around for not centuries but millennia, but the fission scum don't get to pay the price, we pay it, like we paid for the reactors, the profits are, for the most part, already in private hands ... they need to hold on some more, by any means, doesn't matter ....

French Nuclear Industry has to come up with something like €450bn. 250 to dismantle existing reactors and 200 to build new ones, EDF and Areva are almost bankrupt, who is gonna pay that ... the French ... merci, hein ! The worst thing is, reactors need water, lots of water .... heard of climate change ? The flow in rivers in France already causes enough trouble to the existing fission reactors ...

To the downvoters, you are wrong, you do not believe me ...

3 24

Microsoft sparks up Ignite with fresh Azure, Office 365 features

Monday 25th September 2017 14:23 GMT Hans 1

My Raspberry pi has better uptime than Azure/Office 365, just saying .... and, it occasionally happens, on weekends, that I forget to power it on ...

4 5

The award for worst ISP goes to... it starts with Talk and ends with Talk

Sunday 24th September 2017 18:11 GMT Hans 1

Re: "We strive to give customers the best possible experience...

always bottom of the league tables in their respective sectors, like Npower, Capita, Ryanair, Southern Trains, Sports Direct.

You forgot Microsoft, their support is crap ... like, when you have to explain the poor support fellow how the software he is supposed to support ACTUALLY functions ... that is, when you get a guy competent enough to understand your query ,,,

2 0

Blame Canada? $5.7m IBM IT deal balloons to $185m thanks to 'an open bag of money'

Friday 22nd September 2017 09:24 GMT Hans 1

Re: Phoenix?

Project named Phoenix in the hope that should IBM f*up, IBM will still get the successor project ... which will arise from the ashes of the previous project ... a money well, if you will!

3 0

Red Hat pledges patent protection for 99 per cent of FOSS-ware

Friday 22nd September 2017 07:10 GMT Hans 1

“To the extent a party makes, uses, sells, offers to sell, imports, or otherwise transfers Covered FOSS, Red Hat agrees not to use such actions as a basis for enforcing its patents against the party”.

This means RedHat won't sue you if you use covered software.

Our Promise is not an assurance that Red Hat's patents are enforceable or that practicing Red Hat's patented inventions does not infringe others’ patents or other intellectual property.”

This means you are on your own, should anybody sue you for patent infringement for use of covered software.

Please define "patent protection" ?

2 4

Manchester plod still running 1,500 Windows XP machines

Wednesday 20th September 2017 13:17 GMT Hans 1

Manchester plod still running 1,500 Windows machines

TFTFY

4 17

New HMRC IT boss to 'recuse' herself over Microsoft decisions

Wednesday 20th September 2017 10:47 GMT Hans 1

Re: The words....

What are you all doing on here ? Take to the streets, demonstrate your discomfort !

This is unacceptable, no ifs, buts or maybes ... that person is paid with your taxes !

0 0

Sexploitation gang thrown in clink for 171 years after 'hunting' kids online and luring them in front of webcams

Wednesday 20th September 2017 06:19 GMT Hans 1

Re: interesting how they got their material

I don't rely on schools for this ... my kids all get to use the interwebs starting at age 4, a time when you are not taught this stuff at school.

My kids know how to use Linux, macOS, and Windows, iOS, Android and BB10 (obsolete) ... depending on age, they are not allowed to go into chat rooms ... the teens get briefed, even the boy, and are allowed into chatrooms ... facebook is not allowed ... I do not have webcams on the systems they use, but the 15yo has one and they have used it to see family - they know how it works ... I told them that one can easily fake live re-transmissions with videos ...

I have also told them that some youtube videos are not for them, they understand, and I trust them to skip a video not for them ... they know trust is paramount, here.

BTW, my 4yo is a Minecraft wizard ... youtube to look at houses, then re-constructs them in Minecraft ... so much so the 11yo is impressed ...

0 1

macOS High Sierra more like 'Cry Sierra' for Mac-wielding beta testers

Wednesday 20th September 2017 05:40 GMT Hans 1

he reason, an incompatible Broadcom Wifi Card. It's annoying because it's an easy fix in terms of replacing the Broadcom 94321 PCI-e Wifi Card with a Broadcom PCI-e 94322 PCI-e Wifi Card, just a straight swap. Or easier, a plug-in USB Wifi Card

I agree, however, macOS "just works" and you cannot expect John Doe to know how to do that ... some Doe's cannot even use a screw driver....

1 6

Stack Overflow + Salary Calculator = your worth

Tuesday 19th September 2017 16:00 GMT Hans 1

Re: $ to pound £

Actually, I came across this:

http://www.aplitrak.com/?adid=ZGVjbGFuci42Mzk4NC40NzA3QHNlbml0b3IuYXBsaXRyYWsuY29t

Manchester airport, who would want work at Manchester airport?

£22k-£27k ? Not a joke.

Then comes the reason:

* Scripting knowledge (desirable).

One moment ... how can you even administer servers without scripting knowledge ?

I anticipate a lot of interest in this position so apply NOW to avoid disappointment!

Wow, just wow ... the pisstake ...

5 0

Tuesday 19th September 2017 15:38 GMT Hans 1

Re: No server side development, no Unix

I loved writing code for bare metal.

I prefer paper, all those coins end up weighing their bit!

6 0

Tuesday 19th September 2017 15:35 GMT Hans 1

Re: $ to pound £

Lol the head of IT isn't even on that

Where do you work ??????

3 0

Tuesday 19th September 2017 15:34 GMT Hans 1

Re: Wot, no Fortran!?

Where is your time machine, may I have a go ?

1 0

Tuesday 19th September 2017 15:33 GMT Hans 1

So in theory, according to Stackoverflow, I'm being massively underpaid.

Well, at your next review, I think you can claim to have found an "independent" salary assessment tool that, being on SO, has to be taken into account .... industry standard ... feel happy ;-) Get them!

8 0

Tuesday 19th September 2017 15:31 GMT Hans 1

UK. With my level of skills and experience, if I asked for the salary this tool quoted me in an interview, I'd be laughed out of the building.

I think it is the salary you accept that causes laughter as you leave the premises ... sadly ... bastards.

4 0

What's that, Equifax? Most people expect to be notified of a breach within hours?

Tuesday 19th September 2017 12:05 GMT Hans 1

I guess that since their security team was not notified for almost two months they thought they would wait the same number of hours before notifying the users.... They wanted to be fair, after all ...

Paris, the closest I could find to dumb and dumber ...

3 0

Topics

Special Features

Vendor Voice

Resources

Posts by Hans 1

Page:

Re: Clusterfcuk

Have I lost my bet ?

Re: If they cared about security at all

Re: Perhaps money will talk louder:

Re: Perhaps money will talk louder:

Re: Perhaps money will talk louder:

Re: IT worker?

SD Card ?

Re: Don't Understand....

Re: Et toi Equifax....

Re: Oath...

Re: From the looks of it, cogs were falling off all over the place

Re: bothered?

Re: What Microsoft has said in the past

Poor Greg

Elf Binary ?

Re: Is that recipe Open Sauce?

Re: The problem?

Re: Had an interesting experience not so long ago

Re: Do not press

Re: Do not press

Re: scaling up is the answer?

Re: scaling up is the answer?

Re: scaling up is the answer?

Re: "We strive to give customers the best possible experience...

Re: Phoenix?

Re: The words....

Re: interesting how they got their material

Re: $ to pound £

Re: No server side development, no Unix

Re: $ to pound £

Re: Wot, no Fortran!?

Page:

About Us

Our Websites

Your Privacy